Neil Tompkins wrote:
> What do you recommend I use ?
That should help you.
However... keep in mind that if your application is likely to be
accessing this data all the time anyway, if someone compromises your
database, chances are they will compromise your code, leaving to them
being able to get your key, and then decrypt all your data anyway.
I'm not saying encrypting it in the database is pointless, it's just far
from enough to say your data is secure.
A quick google on the subject returned this:
which honestly, I've not read - but you might want to :)
Ian P. Christian ~ http://pookey.co.uk