Re: Random access to an encrypted file
rossum wrote:
On Mon, 26 Apr 2010 14:28:42 -0700, "Mike Schilling"
<mscottschilling@hotmail.com> wrote:
Martin Gregorie wrote:
On Mon, 26 Apr 2010 10:41:36 -0500, Spud wrote:
We've been told that we need to implement on-disk encryption of our
data files. We currently write them using RandomAccessFile and read
them using FileChannel.read(ByteBuffer).
Why not simply store the files in an encrypted disk partition?
The OS does all the grunt-work, including prompting for the password
at boot time, and the application(s) don't need to change. The
encryption is transparent to them because it takes place at a lower
level.
Then any app that can gain access to open the file can read it as
clear text. Or am I missing something?
Any app that knows the password.
It sounds like in the implementation Martin was discussing it's the OS that
needs the password to mount the disk, not each application that uses that
disk.