zdm/envoy
zdm/envoy
Archived
3
Fork 0
Code Issues 22 Pull Requests Releases 1 Wiki Activity

Encrypt LocalDB #1

New Issue
Closed
opened 2020-09-06 10:43:31 +02:00 by kske · 2 comments
kske commented 2020-09-06 10:43:31 +02:00
Owner
Copy Link

Encrypt the user specific LocalDB file with the user's password.

This prevents unauthorized access to the file by other users or from outside the application.

Encrypt the user specific LocalDB file with the user's password. This prevents unauthorized access to the file by other users or from outside the application.
kske added the
client
M
 labels 2020-09-06 10:43:31 +02:00
kske self-assigned this 2020-09-06 10:43:31 +02:00
kske added this to the v0.2-beta milestone 2020-09-06 10:43:34 +02:00
kske added a new dependency 2020-09-18 08:55:13 +02:00
#28 Token-Based Authentication
kske commented 2020-09-18 08:56:23 +02:00
Author
Owner
Copy Link

Once token based authentication is implemented, the password cannot be used as an encryption key, because it is not entered during every application startup.

Instead, the authentication token could be used, but this is obviously insecure as that token is stored on the same system in plain text.

Once token based authentication is implemented, the password cannot be used as an encryption key, because it is not entered during every application startup. Instead, the authentication token could be used, but this is obviously insecure as that token is stored on the same system in plain text.
kske commented 2020-09-19 13:55:45 +02:00
Author
Owner
Copy Link

As the user doesn't enter his password upon every startup when using token-based authentication, encrypting the local database securely is impossible without compromising offline mode or relying on external software such as policykit.

As the user doesn't enter his password upon every startup when using token-based authentication, encrypting the local database securely is impossible without compromising offline mode or relying on external software such as policykit.
kske removed a dependency 2020-09-19 13:55:57 +02:00
#28 Token-Based Authentication
kske closed this issue 2020-09-19 13:55:59 +02:00
This repo is archived. You cannot comment on issues.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels   
client

Envoy Client

  
server

Envoy Server

  
user made

This issue has been created through Envoy

  
L

Branches where 300 < X <= 600 lines are added and more than one work day is needed

  
M

Branches where 100 < X <=300 lines are added

  
S

Branches where X <= 100 lines are added or less than 30 minutes are needed

  
XL

Branch where X > 600 lines are added and more than two work days are needed

  
bug

Something is not working

  
bugfix

Fixes a bug

  
discussion

This has to be discussed

  
documentation

Related to documentation

  
feature

Introduces a new feature

  
maintenance

Related to project maintenance

  
postponed

Won't be done in the immediate future

  
refactoring

Refactoring code or architectures

  
wontfix

Will not be fixed in this state of development

No Label
client
server
user made
L
M
S
XL
bug
bugfix
discussion
documentation
feature
maintenance
postponed
refactoring
wontfix
Milestone
Clear milestone
No items
No Milestone
v0.2-beta
Assignees
Clear assignees
No Assignees
kske
1 Participants
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: zdm/envoy#1
No description provided.
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?