The business way to store personal data in database (any)

[m0]

Hello,

What is the current modern way to store private information such as credit
card, social insurrance etc... into the database. There are standards that we
have to request like FIPS.

I could use AES with 256bit keysize length, but the secret key should be
exactly 7 characters long. If I do less than 7 or greater than 7 characters,
it states invalid AES key length.

Is that the best way to crypt those types of data in the database? Or what
is the better way to encrypt/decrypt those private data?

Any information would help! I am kinda new to this process.

 

[Charles Calvert]

What is the current modern way to store private information such as credit
card, social insurrance etc... into the database. There are standards that we
have to request like FIPS.

You'd be better off asking this question in comp.databases or a
similar group. It has nothing to do with C# and you're likely to get
more good responses in a database group.

 

[Ignacio Machin ( .NET/ C# MVP )]

Hello,

What is the current modern way to store private information such as credit
card, social insurrance etc... into the database. There are standards thatwe
have to request like FIPS.

I could use AES with 256bit keysize length, but the secret key should be
exactly 7 characters long. If I do less than 7 or greater than 7 characters,
it states invalid AES key length.

Is that the best way to crypt those types of data in the database? Or what
is the better way to encrypt/decrypt those private data?

Any information would help! I am kinda new to this process.

Hi,

I think that it depends in part of the DB server you are using, how
are you accessing the data and from where.
SQL 2005 has some encription features already in place.

In case that you are using it (sql 2005) you should ask this question
in the sqlserver.* NG