Re: _cipher API vs Qc3Encrypt/Qc3DecryptData vs SQL -- RPG400-L

Good News Everybody!

The new search engine is LIVE!

Please report any problems to david (at) midrange.com.

Subject: Re: _cipher API vs Qc3Encrypt/Qc3DecryptData vs SQL
From: CRPence <crp@xxxxxxxxxxxxxxxxxxxx>
Date: Thu, 27 Mar 2008 09:39:37 -0500
List-archive: <http://archive.midrange.com/rpg400-l>
List-help: <mailto:rpg400-l-request@midrange.com?subject=help>
List-id: RPG programming on the AS400 / iSeries <rpg400-l.midrange.com>
List-post: <mailto:rpg400-l@midrange.com>
List-subscribe: <http://lists.midrange.com/mailman/listinfo/rpg400-l>, <mailto:rpg400-l-request@midrange.com?subject=subscribe>
List-unsubscribe: <http://lists.midrange.com/mailman/listinfo/rpg400-l>, <mailto:rpg400-l-request@midrange.com?subject=unsubscribe>

Depends on what the point is in encrypting, and data protected from whom. Obviously that does not prevent *ALLOBJ users from seeing the decrypted data, when the VIEW decrypts implicitly; i.e. if the password is in the VIEW or application. The password should probably come from someplace other than stored in the application or the VIEW [key store?], and for an SQL VIEW, be set for the session that reads the VIEW.

I provided some input to a relatively new Redbooks document; I do not recall the document id.... and I have not searched for it.

Regards, Chuck

As an Amazon Associate we earn from qualifying purchases.

This mailing list archive is Copyright 1997-2026 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.