[rt-users] encrypting fields and email

Jesse Vincent jesse at bestpractical.com
Thu Sep 30 12:41:03 EDT 2004


On Sep 30, 2004, at 11:02 AM, david.falkenburger at rbc.com wrote:

> I was thinking more along the lines of public and private key 
> technology. If I was to use the private key to encrypt all the data in 
> one or more fields, a key that I as developer generate, then having 
> access to the database or the server will not do you any good unless 
> you have the corresponding private key to decrypt. I could distribute 
> the private key to authorized individuals only. So now you would not 
> only have to be authorized to access RT, and the appropriate queue, 
> but would also need the public key available to your browser for 
> decryption.

So would all searching be done on the client side? If so, does that 
mean that I'd have to shovel several gigs of ticket content to the end 
user for searching?




More information about the rt-users mailing list