What Victor is (correctly) trying to say is that you have not yet defined the problem.
"encrypting each file" is a possible solution. It is not the problem. What is your data, what is it's value, where does it exist over its life, who is the attacker, what is the access, what will the attacker try to do (read the data, write the data, change the data, deny access to the data, replay old data, detect read or write patterns)? > Sorry Victor, Im not explaining it very well. Let me try again. > > What we need to do is to protect data from the point of view of > ensuring that if the media it is on be that a hard drive, tape, or > optical disk is encrypted. For our system that is best done by > encrypting each file on a file by file basis. Our design team is > looking to use AES-128 in CBC, and a pass phrase protected key. -- Ken Goldman [EMAIL PROTECTED] 914-784-7646 ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
