Both have benefits.
- data is encrypted during transmit, too
- processing is offloaded from your hard-to-scale database server
- decrypt keys don't pass your database, so dba or other users can't peek
- Guaranteed consistent implementation regardless of client
Can't think of other benefits of DB-side encryption, offhand :-) I would go
for the app-side every time. Let the database worry about managing the data,
don't bother it with application stuff.
On Mon, Sep 27, 2010 at 3:15 PM, Vikram A <vikkiatbipl@stripped> wrote:
> Hello experts!
> Can i have your valuable suggestion on the following?
> I would like to encrypt a particular table of records.
> I hope can choose two ways,number one, application level encryption method
> choosing our own encryption algorithm and an another is database level
> my question is, which is portable, which is consistent? or altogether the
> encryption should not degrades the performance.
> Note: The application is going to be across an intranet
> Suggestions are appreciated!
> Thank you in advance.
> Vikram A
Bier met grenadyn
Is als mosterd by den wyn
Sy die't drinkt, is eene kwezel
Hy die't drinkt, is ras een ezel