Re: Regd. the Implementation of Wallet (in Oracle) config equivalent in postgreSQL whilst the database migration

Поиск
Список
Период
Сортировка
От Peter J. Holzer
Тема Re: Regd. the Implementation of Wallet (in Oracle) config equivalent in postgreSQL whilst the database migration
Дата
Msg-id 20221222094622.y26t5reutijwnlop@hjp.at
обсуждение исходный текст
Ответ на Re: Regd. the Implementation of Wallet (in Oracle) config equivalent in postgreSQL whilst the database migration  (Rainer Duffner <rainer@ultra-secure.de>)
Ответы Re: Regd. the Implementation of Wallet (in Oracle) config equivalent in postgreSQL whilst the database migration  (Rainer Duffner <rainer@ultra-secure.de>)
Список pgsql-general
Дерево обсуждения 
On 2022-12-22 09:17:18 +0100, Rainer Duffner wrote:
>     Am 22.12.2022 um 00:57 schrieb Benedict Holland <
>     benedict.m.holland@gmail.com>:
>
>     If someone has root, I don't know how they also don't have your
>     encryption keys.
>
>
> They are not on the same box. They are in a HSM. A dedicated piece of
> tamper-proof hardware that stores secrets (keys).
> The Oracle-server needs to talk to the HSM to get the keys.

If the hacker has root access: What prevents them from talking to the
HSM?

        hp

--
   _  | Peter J. Holzer    | Story must make more sense than reality.
|_|_) |                    |
| |   | hjp@hjp.at         |    -- Charles Stross, "Creative writing
__/   | http://www.hjp.at/ |       challenge!"
Вложения

В списке pgsql-general по дате отправления:

Предыдущее
От: Rainer Duffner
Дата:
Сообщение: Re: Regd. the Implementation of Wallet (in Oracle) config equivalent in postgreSQL whilst the database migration
Следующее
От: Rainer Duffner
Дата:
Сообщение: Re: Regd. the Implementation of Wallet (in Oracle) config equivalent in postgreSQL whilst the database migration