And if you can keep the keystore secret and protected, couldn't you keep
the password secret and protected?
Dominique Devienne wrote:
OK, I see your point, although the key store has to remain 'secret'
somehow, using file-system dependent permissions I guess, otherwise
it's exposed as well. --D
The classic response to the classic topic: if you can protect the
decryption key adequately, why not simply protect the password adequately?
Using encryption to enhance data security isn't a simple matter of
"turning it on" - you have to consider these sorts of issues or all
you'll be doing is
