undefined | Better HN

0 pointsjessaustin11y ago0 comments

Perhaps the data you need to search is not the same as the data you might want to encrypt? For instance name, address, ssn (or similar), billing info, etc. could all be encrypted and you could still look for e.g. 50yo women in the Northeast USA who haven't had a checkup in the last three years.

Of course many DBs need to search by name, but maybe it can be set up to search by a hash of name? Hashes seem a bit simpler than homomorphic search.

0 comments

1 comments · 1 top-level

droopybuns11y ago

>>Perhaps the data you need to search is not the same as the data you might want to encrypt?

Bingo. That would be the correct middle ground. This is why some of the database compromises that have happened are not complete disasters. I know there have been a few instances of systems that had their db's dumped, but passwords were safely protected by appropriate salting solutions.

j / k navigate · click thread line to collapse