|
From: | catmat |
Subject: | Re: [Gnumed-devel] Time for a major re-think in 2005 - opinions |
Date: | Sun, 09 Jan 2005 10:41:59 +1100 |
User-agent: | Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.5) Gecko/20041231 |
Karsten Hilbert wrote:
with audit trailing of table updates in gnumed, what about the use of signing with private keys , or other authentication /non-repudiation mechanism ?The intention on my part was to do a clear-text dump (pg_dump) of the entire database and hash that, send the hashes to the notary servers and archive the dump along with the hashes signed by the notary (and the public key thereof).
does sound simpler, and one could only subvert the audit between dumps. If an identity's record was exported to another system, what would be the protocol for supplying a verified audit with the record?
So, yes, writing code to facilitate that process would be very welcome. Note that this should be run in the background without any need for user interaction - it should not be part of the GnuMed *client*. It could even run entirely on the server. Karsten
[Prev in Thread] | Current Thread | [Next in Thread] |