From derby-user-return-1231-apmail-db-derby-user-archive=db.apache.org@db.apache.org Tue May 10 20:49:16 2005
Return-Path: <derby-user-return-1231-apmail-db-derby-user-archive=db.apache.org@db.apache.org>
Delivered-To: apmail-db-derby-user-archive@www.apache.org
Received: (qmail 50425 invoked from network); 10 May 2005 20:49:16 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199)
  by minotaur.apache.org with SMTP; 10 May 2005 20:49:16 -0000
Received: (qmail 42352 invoked by uid 500); 10 May 2005 20:52:27 -0000
Delivered-To: apmail-db-derby-user-archive@db.apache.org
Received: (qmail 42267 invoked by uid 500); 10 May 2005 20:52:27 -0000
Mailing-List: contact derby-user-help@db.apache.org; run by ezmlm
Precedence: bulk
list-help: <mailto:derby-user-help@db.apache.org>
list-unsubscribe: <mailto:derby-user-unsubscribe@db.apache.org>
List-Post: <mailto:derby-user@db.apache.org>
List-Id: <derby-user.db.apache.org>
Reply-To: "Derby Discussion" <derby-user@db.apache.org>
Delivered-To: mailing list derby-user@db.apache.org
Received: (qmail 42124 invoked by uid 99); 10 May 2005 20:52:26 -0000
X-ASF-Spam-Status: No, hits=1.2 required=10.0
	tests=HTML_30_40,HTML_MESSAGE,MIME_HTML_ONLY,MSGID_FROM_MTA_HEADER
X-Spam-Check-By: apache.org
Received-SPF: pass (hermes.apache.org: domain of p_byford@hotmail.com designates 64.4.56.48 as permitted sender)
Received: from bay101-f38.bay101.hotmail.com (HELO hotmail.com) (64.4.56.48)
  by apache.org (qpsmtpd/0.28) with ESMTP; Tue, 10 May 2005 13:52:25 -0700
Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC;
	 Tue, 10 May 2005 13:48:49 -0700
Message-ID: <BAY101-F38AE63D5266438C155DC28E41F0@phx.gbl>
Received: from 64.4.56.203 by by101fd.bay101.hotmail.msn.com with HTTP;
	Tue, 10 May 2005 20:48:49 GMT
X-Originating-IP: [64.4.56.203]
X-Originating-Email: [p_byford@hotmail.com]
X-Sender: p_byford@hotmail.com
From: "Paul Byford" <p_byford@hotmail.com>
To: derby-user@db.apache.org
Bcc: 
Subject: derby encryption
Date: Tue, 10 May 2005 20:48:49 +0000
Mime-Version: 1.0
Content-Type: text/html; format=flowed
X-OriginalArrivalTime: 10 May 2005 20:48:49.0590 (UTC) FILETIME=[AAF05560:01C555A1]
X-Virus-Checked: Checked
X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N

<html><div style='background-color:'><DIV>
<DIV>
<DIV class=RTE>hi,</DIV>
<DIV class=RTE>i intend to deploy derby in embedded form as part of an application. to protect the data i would like to use the disk encryption feature.</DIV>
<DIV class=RTE>&nbsp;</DIV>
<DIV class=RTE>the issue i have is that for my application to have access to the encrypted database data I must also deploy the bootPassword with the application in among one of my application java classes. i am concerned someone with access to the java classes will have access to the password, and if theydesire they can therefore access the encrypted database.</DIV>
<DIV class=RTE>&nbsp;</DIV>
<DIV class=RTE>my requirement is that the data is only made available if the bootPassword is provided by my application.</DIV>
<DIV class=RTE>&nbsp;</DIV>
<DIV class=RTE>is this possible in derby at present? the documentation does not explicitly cover this.</DIV>
<DIV class=RTE>&nbsp;</DIV>
<DIV class=RTE>thank you</DIV>
<DIV class=RTE>&nbsp;</DIV>
<DIV class=RTE>paul</DIV></DIV></DIV></div></html>