Two-way encryption on a local web server that could be stolen

Question

Two-way encryption on a local web server that could be stolen

I have a standalone kiosk computer on which the LAMP web server will be launched, and you will have a form for people who will walk and fill out. The data that they represent will be encrypted and stored in the MySQL database (all of them are stored locally on this computer).

The problem is that if the entire box were stolen, someone could potentially enter the code, see the encryption keys and decrypt the data.

Is there a way to make this setting so that the encrypted data is useless even if the whole machine has been stolen? (that is, an encryption password that is stored elsewhere, but still allows you to encrypt and save the newly entered form data while using the kiosk)?

Thank.

+3

security php mysql encryption kiosk

insomniak29 Oct 14 '10 at 15:18

source share

3 answers

How smart are your "attackers"?

You could, but the key is in the ram, so it (kind of) disappears when the car loses power. To do this, you can install some drum in the form of a section (ramdisk) and let the code load the key from there.

But keeping the key away from touching the drive can be difficult. OS can, for example, replace it.

Edit:

Smart attackers can work around this:

Copy a key before they steal a window
, .. , , , . , ..

. , ( ) .

0

Øyvind Skaar 14 . '10 15:28

( RSA). , . , , , , , . , - , .

0

Tara Singh Oct 15 '10 at 6:47

source share

Alex howansky · Accepted Answer · 2010-10-14T15:27:53+0000

Try the following: http://andytson.com/blog/2009/07/php-public-key-cryptography-using-openssl/

Two-way encryption on a local web server that could be stolen

More articles: