Xojo Programming Forum

Is the encryption of a db predictable?

Edwin_van_den_Akker (Edwin van den Akker) October 31, 2016, 11:48am #1

I am just wondering. What if…

I store data in SQLite DB that a user can select.
The user can choose if the DB is going to be encrypted.
The EncryptionKey is a static string of characters

Can one figure out the EncryptionKey by just saving two sets of identical data, where one set is encrypted, and the other one isn’t?

Christian_Schmitz (Christian Schmitz) October 31, 2016, 11:53am #2

that would be a plain text attack and sounds possible.

Christian_Schmitz (Christian Schmitz) October 31, 2016, 11:55am #3

If you use a secure hash on the password, the encryption key may be recoverable, but not the text used for the hash.

system (system) closed October 29, 2020, 6:32pm #4

Forum for Xojo Programming Language and IDE. Copyright © 2022 Xojo, Inc.