encrypting/decrypting into mysql db

Slarti

Hi folks,

Was wondering what should I use for de/encrypting data which I store in my DB? mcrypt? DES.

Security level should be high.

For any feedback it will be much appreciated.

Cheers
Slarti

laserlight

Why do you want to encrypt the data, and how do you plan to keep the secret key secret?

Slarti

Well for security reasons, in case someone gains access to the sql or dump (shouldn't happen, but you never know 😃).

The key I thought storing in a casual file (not called like 'key' 'secret' or similar 😃)

laserlight

Slarti wrote:
The key I thought storing in a casual file (not called like 'key' 'secret' or similar 😃)

Then you are really just relying on security through obscurity, so your desire that the "security level should be high" may well be unrealistic even before you select a cryptosystem.

That said, a common choice these days is to use AES, since it is, after all, a standard. But encryption is not magic dust that magically ensures that your data is secret.

Slarti

Well I am open for every sort of solution, hence my posting. What would you do?

dagon

Slarti;10951507 wrote:
Well I am open for every sort of solution, hence my posting. What would you do?

very few systems store there data encrypted, it slows everything down, instead they store the db files on a secure server. If some one gained access to the server, they would also gain access to the encryption key so it does not add security. if you where transferring the data over the internet as opposed to within a secure network then you may consider encryption.