Dear All Team,
Due attacker Will always more ways to breach data, how to encrypt all data information every rows, because as I know, only password has encryption feature when in the database the password showing in random data, but attacker not targeting password as we know they Will also get all information.
I mean, does any library that can protect all data include email, date of birth, address, and so on (all data in Postgresql is become random code/salt)
Maybe this…
Encrypting everything (not at rest) doesn’t really make sense, as if attacker gains RCE, then you have lost, and it is irrelevant to the fact that you have or have not encrypted everything. And encrypting everything mean that you cannot do queries against such DB without decrypting data, which mean that each query need to have access to decryption key, which makes whole encryption moot.
The good approach there would be to not store information that you 100% need. From my experience a lot of services do not need DoB or physical address at all.
© Copyright Elixir Forum | Terms | Privacy & Cookies
