I like to write a service program that has a hard coded password to
unlock the DCM. I then have this service program use all the DCM API's
to retrieve the certificate to decrypt the database fields. You
basically pass the application name to the service program and retrieve
the certificate key. Once tested and working, I store the source in an
encrypted ZIP file on a CD locked up. The pass phrase for the zip file
is stored under separate lock and key. DCM is a great place to store
your keys forever.


Chris Bipes
Director of I.S.
CrossCheck, Inc.

-----Original Message-----
From: midrange-l-bounces@xxxxxxxxxxxx
[mailto:midrange-l-bounces@xxxxxxxxxxxx] On Behalf Of Mike Cunningham
Sent: Wednesday, January 23, 2008 12:06 PM
To: 'Midrange Systems Technical Discussion'
Subject: Where to store encrypted field passwords

We are setting up our first use of an encrypted database field and can
see this expanding once we get the process worked out. We are looking
for ideas on the best place to store the password(s) needed to
encrypt/decrypt the fields. We have one LDAP communication process where
we stored the password in a dataarea since it was needed by multiple
applications. We are not sure a dataarea is best for each of the
passwords we might have in the future. Has anyone found the perfect
solution for where to store passwords that you may need to know forever?

As an Amazon Associate we earn from qualifying purchases.

This thread ...

Follow-Ups:
Replies:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.