WebApp Sec mailing list archives

Securing encrypted data in RAM vs MSSQL

From: "Dave Andrews" <dave () pint com>
Date: Wed, 30 Jun 2004 17:51:47 -0700

Hello All, 

Is anyone aware of a way to store encrypted sensitive data in RAM for
access via a web application using ASP?  It would be posted in the same
manner.
Is storing in RAM preferable to using an encrypted database, in this
case SQL 2000?
Is there anyway to securely delete or timeout the data after a certain
period of time?  
If you discard the data are there potential problems with California SB
1386 and being able to track intrusions and possible data compromise?

I'm not a developer, but want a better solution than what the developers
and client have proposed.

Thanks in advance
Dave Andrews
PINT, Inc 
2105 Garnet Ave. Suite E 
San Diego, CA 92109 
TEL 858.270.2086 
FAX 858.270.0410

Current thread:

Securing encrypted data in RAM vs MSSQL Dave Andrews (Jul 01)
- Re: Securing encrypted data in RAM vs MSSQL George Capehart (Jul 01)
- <Possible follow-ups>
- RE: Securing encrypted data in RAM vs MSSQL Stan Guzik (Jul 01)
  - Re: Securing encrypted data in RAM vs MSSQL Toro, Daniel (Jul 01)
- RE: Securing encrypted data in RAM vs MSSQL Bénoni MARTIN (Jul 01)
  - RE: Securing encrypted data in RAM vs MSSQL Yvan Boily (Jul 01)
- RE: Securing encrypted data in RAM vs MSSQL Dean Saxe (Jul 01)
- RE: Securing encrypted data in RAM vs MSSQL Bénoni MARTIN (Jul 01)
  - RE: Securing encrypted data in RAM vs MSSQL Mark Curphey (Jul 01)
- RE: Securing encrypted data in RAM vs MSSQL Dave Andrews (Jul 01)
  - RE: Securing encrypted data in RAM vs MSSQL Philip Wagenaar (Jul 02)

(Thread continues...)