The forum will experience an outage sometime between February 10 at 7:00pm EST and February 12 at 11:59 EST for installation of security updates. The actual time and duration of the outage are unknown but attempts will be made to minimize the downtime. We apologize for any inconvenience.

I need to encrypt some data, store it in the database, and decrypt it in a client application. I see that SQLA11 has an ENCRYPT() method, which is great, but it only supports AES128 and AES256 encryption. Unfortunately, I can't decrypt using those methods. Is there any other means of encrypting data in SQLA? Perhaps RSA RC4?

asked 04 May '10, 17:12

Jason%20%27Bug%27%20Fenter's gravatar image

Jason 'Bug' ...
accept rate: 50%

SQL Anywhere offers AES and FIPS-approved AES encryption for the database file. For Transport Layer Security we offer RSA, FIPS-approved RSA and ECC encryption for the communication stream between the client application and the database. Is there a specific reason AES encryption for the database and RSA/ECC TLS is not sufficient?

permanent link

answered 04 May '10, 20:28

Josh%20Savill's gravatar image

Josh Savill
accept rate: 27%


As a comment, I do not see why calling an encryption method in the application, then inserting encrypted data into the database wouldn't work. Just make sure you using the same method for encrypting/decrypting the data.

(04 May '10, 20:33) Josh Savill

I have one system encrypting the data and a second system decrypting the data. This explanation may require more than one comment so...

The database has an exposed web service for registering customers. The client provides a couple of identifiers. The database validates them and generates a "key". This "key" is passed back to the client through said web service.

The client stores this key locally. The client must be able to decrypt this key and validate the contents. This is to keep someone from simply adding dummy keys to the local data store. That local data store may not be SQLA. (end)

(04 May '10, 23:06) Jason 'Bug' ...

@Jason: Then I think you should use an encryption method that is available outside the database (and wich might be used inside SA by means of an external procedure call). So maybe a classic C-style library might be useful.

(05 May '10, 09:13) Volker Barth
Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here



Answers and Comments

Markdown Basics

  • *italic* or _italic_
  • **bold** or __bold__
  • link:[text]( "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Question tags:


question asked: 04 May '10, 17:12

question was seen: 1,071 times

last updated: 04 May '10, 20:28