B
B
BonBon Slick2017-06-12 14:51:49
Data protection
BonBon Slick, 2017-06-12 14:51:49

Laravel Crypt, does it make sense to encrypt data in a DB?

For example, there is a card number (product / service). I would like to encrypt it on the DB side in case the DB is hijacked. However, after all, the decryption algorithm can be seen how the Crypt provider in Lara works.
Does it make sense to encrypt? After all, the algorithm is open.

Answer the question

In order to leave comments, you need to log in

1 answer(s)
D
DevMan, 2017-06-12
@BonBonSlick

and with what joy do you keep your card number?
maybe you already got PCI-DSS? but then you would not have such questions.
in general, the data is encrypted to minimize the possible consequences (for example, stealing a backup copy or dumping only the database). algorithms, although open, but without a secret, they will not help to recover data in any way.
but if everything has already been leaked (both the base and the source code with the secret) - then pichal-bida.

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question