• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: Fastest Datastore?
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Fastest Datastore?

  • Subject: Re: Fastest Datastore?
  • From: Greg Herlihy <email@hidden>
  • Date: Sun, 05 Mar 2006 16:36:03 -0800
  • Thread-topic: Fastest Datastore?
Using an encrypted disk image would be the easiest solution, since the
encryption is transparent to every process reading and writing to the
mounted disk image.

But there are some drawbacks with this approach. For one, as long as the
disk is mounted, it can be accessed by any process with the appropriate
permissions - no differently than any unencrypted volume. So the disk image
contents are protected only when the disk image is not mounted, that is,
only when your program is not running.

Furthermore, a technically sophisticated user could set up this arrangement
on their own. And in fact, if you do go with this solution, you could have
an installer or shell script set it up, and not have touch the application's
code at all.

A more fine-grained and more secure solution, would be to encrypt and
decrypt the data as it is read and written to the data store. There are at
least two advantages with this solution. For one, the unencrypted data is
never written to a file - a fact that makes it far more difficult for
another process to read the data in an unencrypted form. Furthermore, an
internal solution allows for a finer-grained control over what information
to encrypt. The app would be able to encrypt some fields and leave the other
ones unchanged. In fact there are two Core Data routines: -primitive<Key>
and setPrimitive<Key> that would be ideal places to intercept data to and
from the data store.

The downside is that the app would have to encrypt and decrypt the data
itself. Cryptography in general is a pretty arcane area, and it's easy to
make mistakes. So some outside expertise may be needed to vet the security
of this kind of implementation.

Greg


On 3/5/06 3:34 PM, "Rick Langschultz" <email@hidden> wrote:

> I have a package document and I was looking at the different
> datastore offered by core data. I was wondering what would be the
> fastest datastore to use. I also was wondering if encryption within a
> datastore is possible. I was thinking about utilizing .dmg files with
> AES-128 encryption inside the document package to store sensative data.
>
> Is there anything I should know about using Core Data and Encryption?
>  _______________________________________________
> Do not post admin requests to the list. They will be ignored.
> Cocoa-dev mailing list      (email@hidden)
> Help/Unsubscribe/Update your Subscription:
>
> This email sent to email@hidden


 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Cocoa-dev mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:

This email sent to email@hidden
  • Follow-Ups:
    • Re: Fastest Datastore?
      • From: mmalcolm crawford <email@hidden>
References: 
 >Fastest Datastore? (From: Rick Langschultz <email@hidden>)

  • Prev by Date: Re: Help with custom NSCell and Bindings in Table View
  • Next by Date: Re: NSArrayController's contentArray and selectedIndexes don't match when sorted
  • Previous by thread: Fastest Datastore?
  • Next by thread: Re: Fastest Datastore?
  • Index(es):
    • Date
    • Thread