So does the Six RDD. I was responding to Jack's request to just encrypt a couple of fields. I don't know if the Six RDD will do this, but I don't know why it would be useful either.I use the free ADS encryption. It encrypts the entire file.
James
encrypting dbf files
-
James Bott
- Posts: 4654
- Joined: Fri Nov 18, 2005 4:52 pm
- Location: San Diego, California, USA
- Contact:
Re: encrypting dbf files
Jeff,
James
James
-
James Bott
- Posts: 4654
- Joined: Fri Nov 18, 2005 4:52 pm
- Location: San Diego, California, USA
- Contact:
Re: encrypting dbf files
Hunter,
I just reread this:
Are the SX functions documented somewhere online, or is there a downloadable manual?
What would be really nice is just something like SET ENCRYPTION ON, then using the database as you normally would. Is this possible? Or, better yet, if the Six RDD could automatically detect if the file was encrypted, and then automatically (and transparently) encrypt and decrypt the data as needed. Now that would that be nice!
However, if we had the capability to encrypt and decrypt records, then we could build the encryption/decryption into a database class so it would all be transparent.
James
I just reread this:
This leaves me wondering, are there functions to encrypt and decrypt a record (or field)? I can't see how decrypting an entire DBF would be practical in an application.(x)Harbour supports three functions to handle encryption / decryption transparently:
1. Sx_DBFencrypt (cPassword) - encrypts all records in database file.
2. Sx_DBFdecrypt () - decrypts all records in database file.
Are the SX functions documented somewhere online, or is there a downloadable manual?
What would be really nice is just something like SET ENCRYPTION ON, then using the database as you normally would. Is this possible? Or, better yet, if the Six RDD could automatically detect if the file was encrypted, and then automatically (and transparently) encrypt and decrypt the data as needed. Now that would that be nice!
However, if we had the capability to encrypt and decrypt records, then we could build the encryption/decryption into a database class so it would all be transparent.
James
Re: encrypting dbf files
Most of the SX functions are documented in the SIX3.NG. It´s a 500kb file. I have it but I´m not sure it´s allowed to publicly share it. If yes I can upload it to my FTP server, if not I can send as email attachment. Just let me know.
Regards,
André Dutheil
FWH 13.04 HB 3.2 BCC 5.82 MinGW 4.5.2 MSVS 10
André Dutheil
FWH 13.04 HB 3.2 BCC 5.82 MinGW 4.5.2 MSVS 10
-
Enrico Maria Giordano
- Posts: 7355
- Joined: Thu Oct 06, 2005 8:17 pm
- Location: Roma - Italia
- Contact:
Re: encrypting dbf files
James,
EMG
Please have a look at Marco's message at the start of this thread.James Bott wrote:What would be really nice is just something like SET ENCRYPTION ON, then using the database as you normally would. Is this possible? Or, better yet, if the Six RDD could automatically detect if the file was encrypted, and then automatically (and transparently) encrypt and decrypt the data as needed. Now that would that be nice!
EMG
-
James Bott
- Posts: 4654
- Joined: Fri Nov 18, 2005 4:52 pm
- Location: San Diego, California, USA
- Contact:
Re: encrypting dbf files
Enrico,
As I mentioned, it seems impractical to decrypt all DBFs when running a program. When it the program is multi-user, it gets a lot more complicated as the files need only to be decrypted when the first user runs the program. If the DBFs are large then it could take 10 minutes or more to decrypt the files. You would have to move all DBFs across the network twice--once to read and once to write.
Then when the last user exited the program all the files would then have to encrypted again and all the decrypted files would have to be securely erased. This would take even longer than opening the program.
While all the files are decrypted, they are vulnerable to unsecure access. Anyone could open the files and copy them.
Record or field level decryption seems to be the only feasible method of working with encrypted databases. So, I guess the Six driver is out and FW's own encrypt/decrypt functions are in. Since FW's functions only work with character fields, then we need to keep track of fieldtypes in a datadictionary file so we can convert the character data to the proper fieldtype on-the-fly.
Ah, the kingdom for SET ENCRYPTION ON.
Regards,
James
Hmm, I guess you are telling me, no there are no record or field level decryption Six functions?Please have a look at Marco's message at the start of this thread.
As I mentioned, it seems impractical to decrypt all DBFs when running a program. When it the program is multi-user, it gets a lot more complicated as the files need only to be decrypted when the first user runs the program. If the DBFs are large then it could take 10 minutes or more to decrypt the files. You would have to move all DBFs across the network twice--once to read and once to write.
Then when the last user exited the program all the files would then have to encrypted again and all the decrypted files would have to be securely erased. This would take even longer than opening the program.
While all the files are decrypted, they are vulnerable to unsecure access. Anyone could open the files and copy them.
Record or field level decryption seems to be the only feasible method of working with encrypted databases. So, I guess the Six driver is out and FW's own encrypt/decrypt functions are in. Since FW's functions only work with character fields, then we need to keep track of fieldtypes in a datadictionary file so we can convert the character data to the proper fieldtype on-the-fly.
Ah, the kingdom for SET ENCRYPTION ON.
Regards,
James
-
Enrico Maria Giordano
- Posts: 7355
- Joined: Thu Oct 06, 2005 8:17 pm
- Location: Roma - Italia
- Contact:
Re: encrypting dbf files
James,
I think you have not read Marco's message carefully. Please do it.
EMG
I think you have not read Marco's message carefully. Please do it.
EMG
Re: encrypting dbf files
James, Enrico:
The Sx_DBFencrypt & Sx_DBFdecrypt functions are used in a separate program, as the one I posted earlier in this post's thread. Afterwards you just open your DBF files and call the Sx_SetPass (cPassWord) function. The SIx driver handles everything transparently, meaning that you DON'T have to decrypt / encrypt any record at all before / after processing. It's done all automatically. As Antonio posted in one of my posts, all drivers (DBFCDX, DBFNTX) on Harbour supports these functions.
As to how to find out if a DBF is encrypted, you can use the Sx_TableType() and it will return a. 1 - for non encrypted b. 2 - encrypted. You can also encrypt the file a couple of times, just make sure you decrypt it in reverse order.
This function encrypts the whole record without the need to set all field types as character ones. It is not possible to encrypt just a couple of fields only. As James pointed out, it will be useless, better to encrypt all data fields.
Hope this clarifies a couple of questions.
The Sx_DBFencrypt & Sx_DBFdecrypt functions are used in a separate program, as the one I posted earlier in this post's thread. Afterwards you just open your DBF files and call the Sx_SetPass (cPassWord) function. The SIx driver handles everything transparently, meaning that you DON'T have to decrypt / encrypt any record at all before / after processing. It's done all automatically. As Antonio posted in one of my posts, all drivers (DBFCDX, DBFNTX) on Harbour supports these functions.
As to how to find out if a DBF is encrypted, you can use the Sx_TableType() and it will return a. 1 - for non encrypted b. 2 - encrypted. You can also encrypt the file a couple of times, just make sure you decrypt it in reverse order.
This function encrypts the whole record without the need to set all field types as character ones. It is not possible to encrypt just a couple of fields only. As James pointed out, it will be useless, better to encrypt all data fields.
Hope this clarifies a couple of questions.
-
Enrico Maria Giordano
- Posts: 7355
- Joined: Thu Oct 06, 2005 8:17 pm
- Location: Roma - Italia
- Contact:
Re: encrypting dbf files
HunterEC,
I'm trying the following sample:
It prints: .F. and 1. What am I missing?
EMG
I'm trying the following sample:
Code: Select all
FUNCTION MAIN()
USE MYTABLE EXCLUSIVE
? SX_DBFENCRYPT( "EMAG" )
? SX_TABLETYPE()
INKEY( 0 )
RETURN NILEMG
-
reinaldocrespo
- Posts: 918
- Joined: Thu Nov 17, 2005 5:49 pm
- Location: Fort Lauderdale, FL
Re: encrypting dbf files
Hi.
By simply changing to ADS rdd, you get to use their encryption functions on free .dbf tables as well as data dictionary bound tables -- and it is all very well documented on the help file.
Reinaldo.
By simply changing to ADS rdd, you get to use their encryption functions on free .dbf tables as well as data dictionary bound tables -- and it is all very well documented on the help file.
Reinaldo.
Re: encrypting dbf files
Enrico:
For encryption / decryption via the Sx_DBFencrypt() and Sx_DBFdecrypt() you have to open the DBF with the SIX driver. Afterwards you can keep using the DBFCDX or DBFNTX one. This is due to the fact that these function changes one byte at the DBF header that the Sx_TableType() inspects (first byte). That is the reason that I use a separate tool for encrypting / decrypting DBFs.
For encryption / decryption via the Sx_DBFencrypt() and Sx_DBFdecrypt() you have to open the DBF with the SIX driver. Afterwards you can keep using the DBFCDX or DBFNTX one. This is due to the fact that these function changes one byte at the DBF header that the Sx_TableType() inspects (first byte). That is the reason that I use a separate tool for encrypting / decrypting DBFs.
Code: Select all
FUNCTION MAIN()
USE MYTABLE EXCLUSIVE VIA "SIX" <--- AFTER THIS SX_TABLETYPE() WILL RETURN A 2
? SX_DBFENCRYPT( "EMAG" )
? SX_TABLETYPE()
INKEY( 0 )
RETURN NIL-
Enrico Maria Giordano
- Posts: 7355
- Joined: Thu Oct 06, 2005 8:17 pm
- Location: Roma - Italia
- Contact:
Re: encrypting dbf files
HunterEC,
EMG
Sorry, no changes I'm still missing something...HunterEC wrote:For encryption / decryption via the Sx_DBFencrypt() and Sx_DBFdecrypt() you have to open the DBF with the SIX driver.
Code: Select all
REQUEST SIXCDX
FUNCTION MAIN()
USE POLIZZE EXCLUSIVE VIA "SIXCDX"
? SX_DBFENCRYPT( "EMAG" )
? SX_TABLETYPE()
INKEY( 0 )
RETURN NIL-
Enrico Maria Giordano
- Posts: 7355
- Joined: Thu Oct 06, 2005 8:17 pm
- Location: Roma - Italia
- Contact:
Re: encrypting dbf files
I also tried this but no lack:
EMG
Code: Select all
#include "Hbsix.ch"
REQUEST SIXCDX
FUNCTION MAIN()
USE POLIZZE EXCLUSIVE VIA "SIXCDX"
? SX_DBFENCRYPT( "EMAG" )
? SX_TABLETYPE()
INKEY( 0 )
RETURN NIL-
James Bott
- Posts: 4654
- Joined: Fri Nov 18, 2005 4:52 pm
- Location: San Diego, California, USA
- Contact:
Re: encrypting dbf files
Hunter,
OK, I got SIX encryption working. Decrypting on the fly. I love it! This is going to be really useful.
Do you know what form of encryption is being used? I'm sure my customer's are going to want to know.
Regards,
James
OK, I got SIX encryption working. Decrypting on the fly. I love it! This is going to be really useful.
Do you know what form of encryption is being used? I'm sure my customer's are going to want to know.
Regards,
James
-
James Bott
- Posts: 4654
- Joined: Fri Nov 18, 2005 4:52 pm
- Location: San Diego, California, USA
- Contact:
Re: encrypting dbf files
Enrico,
It seems to be really transparent. You don't even need the REQUEST or the VIA.
Are you sure you are starting with an unencrypted file?
James
It seems to be really transparent. You don't even need the REQUEST or the VIA.
Are you sure you are starting with an unencrypted file?
James
-
Enrico Maria Giordano
- Posts: 7355
- Joined: Thu Oct 06, 2005 8:17 pm
- Location: Roma - Italia
- Contact:
Re: encrypting dbf files
James,
EMG
Of course.James Bott wrote:Are you sure you are starting with an unencrypted file?
EMG