Xojo Programming Forum

Is the encryption of a db predictable?

Edwin_van_den_Akker (Edwin van den Akker) October 31, 2016, 11:48am 1

I am just wondering. What if…

I store data in SQLite DB that a user can select.
The user can choose if the DB is going to be encrypted.
The EncryptionKey is a static string of characters

Can one figure out the EncryptionKey by just saving two sets of identical data, where one set is encrypted, and the other one isn’t?

Christian_Schmitz (Christian Schmitz) October 31, 2016, 11:53am 2

that would be a plain text attack and sounds possible.

Christian_Schmitz (Christian Schmitz) October 31, 2016, 11:55am 3

If you use a secure hash on the password, the encryption key may be recoverable, but not the text used for the hash.

Forum for Xojo Programming Language and IDE. Copyright © 2024 Xojo, Inc.