Hacker News new | ask | show | jobs
by ktimespi 108 days ago
SQLite has its own closed-source page-level cipher format, so I don't think this argument makes sense.

https://www.sqlite.org/see/doc/trunk/www/readme.wiki

A weakness though, again, is that this is closed source...
2 comments
wps 108 days ago
The biggest weakness is the cost. Each client would have to purchase an expensive license. The source code is provided upon purchase though, but essentially destroys the ability to build a client from source due to the compiled binary distribution.
link
ktimespi 108 days ago
yeah, that was the point that I was making. Although I do wonder if encrypting the whole file is necessary.
link
wps 108 days ago
I really doubt it. I have not seen any evidence to suggest that there are irreconcilable issues with SQLCipher's page level encryption over a flat file. Codebook, Enpass, Signal, and a ton of other important clients use it just fine.
link
thayne 108 days ago
That isn't really an option for an open source project like keepass(xc)
link