I am currently planning a project in which the security of database version data is important. This means: we want to be able to prove that the data in the database has not been softened since it was imported - not a single user changed the value, not a single db administrator entered the database and changed it.
What is the best way to achieve this?
So far I like the idea of ββbest enclosing a database string: I create an MD5 hash of all the fields in the string, and then send it to the signature server with a time stamp ( look at wikipedia ) and save the created signature with the string. From now on, we can prove that no one has changed the line since the creation of this brand.
Any better ideas? And, if you like the idea as much as I do, which timestamp server should I use and how can I access it? Verisign Timestamp Server seems to be used a lot, but I could not find documentation on how to use its "raw", for example. without Microsoft code signing tools, etc.
Thanks!
source share