| From: | Decibel! <decibel(at)decibel(dot)org> |
|---|---|
| To: | Peter Eisentraut <peter_e(at)gmx(dot)net> |
| Cc: | pgsql-hackers(at)postgresql(dot)org, Hans-Juergen Schoenig <postgres(at)cybertec(dot)at>, Andrew Dunstan <andrew(at)dunslane(dot)net> |
| Subject: | Re: crypting prosrc in pg_proc |
| Date: | 2007-08-09 15:06:06 |
| Message-ID: | 20070809150606.GN20424@nasby.net |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On Thu, Aug 09, 2007 at 04:34:48PM +0200, Peter Eisentraut wrote:
> Am Donnerstag, 9. August 2007 16:09 schrieb Hans-Juergen Schoenig:
> > the idea is basically to hide codes - many companies want that and ?
> > ask for it again and again.
>
> If you want to design a security feature, you need to offer a threat and risk
> analysis, not just the whining of customers.
This isn't as much a security feature as a means for people to keep
their code private. To some degree you could just get away with storing
nothing but a parsed representation of the code, though of course
someone could always decompile that.
There's a non-trivial amount of work involved in handling key
management, etc, so I think we don't want to try and build that in. What
would be interesting is providing hooks for en/decrypting function code
and having the backend call those hooks as appropriate. That should
allow someone to develop the ability to encrypt the code in the database
outside of the backend.
--
Decibel!, aka Jim Nasby decibel(at)decibel(dot)org
EnterpriseDB http://enterprisedb.com 512.569.9461 (cell)
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Hans-Juergen Schoenig | 2007-08-09 15:09:05 | Re: crypting prosrc in pg_proc |
| Previous Message | Greg Smith | 2007-08-09 15:03:22 | Re: crypting prosrc in pg_proc |