Skip to first unread message
Victor Congionti
Dec 22, 2014, 2:34:43 PM12/22/14
to openesig...@googlegroups.com
Hello - I was wondering what encryption schemes Open ESF uses on our databases of transactions. We were wondering if our database was somehow compromised, will it be crackable without the SQL password and is the database encrypted?
Open eSignForms
Dec 22, 2014, 3:29:40 PM12/22/14
to openesig...@googlegroups.com
We cannot speak directly for PostgreSQL's DB security features for user+password access, but we have our tech info here:
http://www.yozons.com/technology.jsp
In general, all document snapshots and data stored inside of documents (as well as configuration for the system, property sets, etc.) are encrypted using 256-bit AES. Unlike full disk encryption, this means that even if someone can hack engineer an SQL query command, they will not be able to read the data returned. Same if they have a DB backup.
In general, if you lose control of your server, your data is sure to follow.
http://www.yozons.com/technology.jsp
In general, all document snapshots and data stored inside of documents (as well as configuration for the system, property sets, etc.) are encrypted using 256-bit AES. Unlike full disk encryption, this means that even if someone can hack engineer an SQL query command, they will not be able to read the data returned. Same if they have a DB backup.
In general, if you lose control of your server, your data is sure to follow.
Victor Congionti
Dec 22, 2014, 4:40:48 PM12/22/14
to openesig...@googlegroups.com
Thank you for the reply. Noted.
Reply all
Reply to author
Forward
0 new messages