Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
File Encryption
- Thread starter dle46163
- Start date
that doesn't feel like a great idea to me. the data is still unencrypted at the weak points of the chain (the transfer from server to browser). crypting on the server side would only be necessary if the physical or logical security of the server was not good, in which case i'd rather focus on improving those than an encryption routine at the server side.
alternatively why not get the user to do the encrytion client side and upload the encrypted file.
failing all of that, consider using the mcrypt functions I would not use the user key as the only key, i'd use a mesh of a programmatic salt and the users key.
alternatively why not get the user to do the encrytion client side and upload the encrypted file.
failing all of that, consider using the mcrypt functions I would not use the user key as the only key, i'd use a mesh of a programmatic salt and the users key.
- Status
