[sldev] SL Database purge
Thomas Shikami
thomas.shikami at online.de
Tue Apr 29 06:25:05 PDT 2008
Thomas Grimshaw wrote:
> Thomas Shikami wrote:
> This would require the storage of encryption keys on linden equipment,
> therefore no redundancy is provided, therefore it's not a backup.
I think of using the same key more or less. But keyed using the Agent
UUID and a good salt to make cracking hard enough. Someone who studied
cryptography could help with this. I'm thinking of generated keys here,
so virtually no storage is needed to store keys.
>
> Unless you're planning on using the same key for everything, in which
> case it will be cracked wide open.
That's why cryptography isn't easy. It's easy to make something that
seems safe but is cracked quickly if it's some homebrewn stuff. To make
it secure, I think it's best to make that system open-source and allow
wide testing of it.
More information about the SLDev
mailing list