-1

In April 2017, Jacob Henning asked "What are the chances that AES-256 encryption is cracked?" and part of his question was how best the transmitted data, now in his web database, a.k.a. "data at rest" might be protected.

Hence my question:

What is the best way to protect data on a server after it has been "safely" transmitted over a communication line?

Robin Maybury
  • 1
  • 1

1 Answers1

0
  1. Why are you using AES-256 at all? You encrypt information to protect it. Does it make sense to use a particular algo, it if you think it is cracked?
  2. If you are not sure about particular algo, pick up another one you trust to, ChaCha, ThreeFish, etc.
  3. Once you transmit anything via network, you should expect that an attacker has a copy of it. Does it make any sense to protect it after transmitting?
  4. Token can be used as a reference to the data. But to get the data, you have to decrypt the encrypted data completely. Suppose you have an encrypted 100 MB file and want that your partner reads this document. Token will not help. Your partner will have to download this encrypted 100 MB file and decrypt it.
mentallurg
  • 2,661
  • 1
  • 17
  • 24