Methods and systems for transparent data encryption and decryption
申请公布号:US7426745(B2)
申请号:US20030422667
申请日期:2003.04.24
申请公布日期:2008.09.16
发明人:MCCARTY RICHARD JAMES
分类号:H04L9/00;G06F21/00;H04L9/32
主分类号:H04L9/00
摘要:A method and system for transparently encrypting (and decrypting) sensitive data stored in a directory (or other database) is provided. Sensitive data, a password for example, may be required by a client in a distributed data processing environment. When the database entry is created, the sensitive data received from a user, or more generally, a client, may be encrypted, and saved in the directory entry in encrypted form. Encryption of sensitive data may be performed in accordance with a predetermined set of policies. When the sensitive information is needed, it may be selectively delivered in encrypted or unencrypted form based on a policy in the set. Policies may include criteria external to the database, and interfaced to the database via a policy engine.