Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
S
S
Sergey Savostin2013-06-05 23:05:04
PHP
Sergey Savostin, 2013-06-05 23:05:04

SQLite3 database encryption

Greetings!

In php, the SQLite3 database opening function has an encryption_key parameter. There is no such parameter in
C. Great Google says that encryption in C/C++ etc. is done by third party, often not free for commercial use, libraries. Questions: 1. What algorithm is used in PHP and how well is it encrypted? I understand that you can see the PHP sources, but I'm afraid this is beyond my understanding. 2. Can a database encrypted in PHP be opened in C/C++ and how? 3. Do I understand correctly that encryption with your own algorithm is possible through create_function , or update_hook , or even vfs ?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

3 answer(s)
Report
A
Alexey Obukhov, 2013-06-11
@Obukhoff

Since it is unrealistic to get money for libraries in our office, I implemented my bike with encryption using vfs.
Used page-by-page RCA encryption. The key was generated on the fly based on the passphrase.
Inside vfs, encryption is carried out on all pages except the first one. Because the sqlite engine calls it very often to lock/unlock the database file.
Then I added an exception for log files, I don’t need to encrypt them.
If the hands are not crooked - work 2 days + tests to automate for your task.
My database is not loaded and the overall performance of the application has fallen within the measurement errors.
Z.Y. And yet - to detect that the database is encrypted on the first page of the database file, I insert a label into the unused part of the database header.

Report
J
jonie, 2013-06-06
@jonie

And what in the php source codes it is impossible to look at answers to questions chtol?

Report
A
Alexey Obukhov, 2013-06-11
@Obukhoff

Using the function, you can only encrypt individual fields in the database.
Moreover, this function will have to be inserted into all requests that use encrypted fields. Not very comfortable.
True, with encryption of the entire database, there are some disadvantages:
- the overhead for encrypting any service information (it would be possible not to do it)
- in case of damage to the database, the entire database can be thrown out.
But in my case, these disadvantages are not significant.

Similar questions
B
bio2015-03-31 04:08:43
How to make a soap xml parser? 2Reply
R
Rooly2021-03-23 11:40:40
How to properly organize apiResource Laravel? 2Reply
I
Isaac Clark2017-04-05 13:43:42
HTML5 GAME: Is it better to use Canvas or DIV for sprite animation? 5Reply
Z
Zorgios2021-07-14 21:32:46
How to draw an arc for an SVG file using PHP? 1Reply
I
Ilya Beloborodov2015-11-12 16:09:46
How to add new element in xml? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question