We are developing an app which will contain sensitive data. Internal
security will be assigned using roles. I want to password protect the
roles,
but do not want the users to know the passwords, or to hardcode them in the
app. This is to prevent any tool but the app having update privs on the app
tables.
Ideally, I would like to encrypt the passwords, store them in blobs, and
use the obfuscation toolkit to encrypt/decrypt them - but it looks like we
dont have a secure key server.
Are there any other alternatives for implementing secure role based
security?
Regards
Mark
- ERG Group --------------------------
The contents of this email and any attachments are confidential
and may only be read by the intended recipient.
Received on Thu Dec 14 2000 - 23:16:22 CST
