Re: Protecting data against local admin
- From: Rik Hemsley <rik@xxxxxxxxxxx>
- Date: Tue, 27 Feb 2007 10:39:35 +0000
Erland Sommarskog wrote:
If you install your own instance, you can set up your own master key. But the application needs to provide the password, and that can of course be
eavesdropped, even if I believe it will be hidden in Profiler.
In that case, would it be best to use asymmetric encryption, so that only the public key will be transmitted to the server? We'd still have to somehow obfuscate the private key in the client application, of course.
Cheers,
Rik
.
- References:
- Protecting data against local admin
- From: Rik Hemsley
- Re: Protecting data against local admin
- From: Rik Hemsley
- Protecting data against local admin
- Prev by Date: Re: Error 0x80070534 when changing service account
- Next by Date: Re: Password is "too recent to change"
- Previous by thread: Re: Protecting data against local admin
- Next by thread: Re: Error 28055 when creating mirroring endpoint.
- Index(es):
