[nycphp-talk] Encrypt and decrypt to store in DB
tedd
tedd at sperling.com
Fri Aug 4 16:05:50 EDT 2006
At 2:07 PM -0400 8/4/06, Aaron Fischer wrote:
>In my case I am thinking about encrypting (and decrypting) the user's
>social security number.
>
>Where to store the key is a similar problem as where to store the
>username/password credentials for DB access, correct?
If it's something that only the user would know (like a password),
then hash it and forget it -- you don't need to have the actual
number in your dB, but rather the hash for it, right?
tedd
--
-------
http://sperling.com http://ancientstones.com http://earthstones.com
More information about the talk
mailing list