Re: Securing Data
From: Don Grover (dgrover_at_assoft.com.au)
Date: 01/28/05
- Next message: Massimo: "Re: Perhaps the most OBVIOUS question you will ever see."
- Previous message: Roger Abell: "Re: Perhaps the most OBVIOUS question you will ever see."
- In reply to: Robert Cohen: "Securing Data"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 28 Jan 2005 13:46:59 +1100
Create a dll that can be used by asp, have the dll write a crc of your
sensitive data to a secondary table.
Or you can encrypt a copy of sensitive data by calling function in dll and
write that to secondary table.
In your asp just check for a match from table and dll, if you want to be
smart put the date as last 10 characters in crc'd or encrypted data and just
strip out.
Your asp app could then display a valid data gif along with date from
encrypted data
Regard
Don Grover
"Robert Cohen" <dont@want.spam.com> wrote in message
news:OhVL9JJBFHA.3596@TK2MSFTNGP12.phx.gbl...
> Hello All,
>
> Our organization is developing an electronic medical record for our
> organization using ASP and SQL. The issue we are stuck at is how to
> ensure the data hasn't been tampered. Obviously we can protect the data
> from our regular users. But how do you protect it from the network
> administrators? We want to be able to attest in court that the database
> hasn't been modified. So I am curious how others are handling this issue.
> I see all this stuff like digitial certificates and things like that, but
> am unsure what is best (ideally we don't want have to buy certificates for
> each entry into the database).
>
> Please help.
>
> --
> Robert Cohen
> A legend in his own mind
> --
>
>
- Next message: Massimo: "Re: Perhaps the most OBVIOUS question you will ever see."
- Previous message: Roger Abell: "Re: Perhaps the most OBVIOUS question you will ever see."
- In reply to: Robert Cohen: "Securing Data"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
