[jboss-dev-forums] [Design the new POJO MicroContainer] - Re: Security services deployer for the MC
david.lloyd@jboss.com
do-not-reply at jboss.com
Thu Jan 22 09:53:32 EST 2009
The classic problem with encrypting values is that somewhere - somehow - you have to store or acquire the secret/private key or password so that the server can decrypt the value. For a server starting up, it's hard to imagine a place that a key/password could be stored that would be more secure than where its regular configuration could be stored.
While this module would definitely make it easer, in some ways, to get the tools needed to perform the encryption/decryption, it does nothing to solve this basic problem.
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4204037#4204037
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4204037
More information about the jboss-dev-forums
mailing list