Best way to find encrypted data inside MySQL

Question

Best way to find encrypted data inside MySQL

I encrypt using PHP before storing the encrypted data in MySQL. I am convinced that this is the best way in the long run using MySQL AES_ * functions.

Now my question is: is there an efficient way to search for encrypted data besides saving an available hashed version of the data? For example, two columns for data: first_name_encrypted, first_name_hashed.

$hashed_search = myhash('John');    
$q = "SELECT * FROM table WHERE first_name_hashed = '$hashed_search'";

This is what I'm doing now, is there a better way?

+4

php mysql encryption encryption-symmetric

IMB Apr 15 '16 at 19:14

source share

2 answers

Scott Arciszewski · Answer 1 · 2016-04-15T21:26:03+0000

Now my question is: is there an efficient way to search for encrypted data besides saving an available hashed version of the data? For example, two columns for data: first_name_encrypted, first_name_hashed.

Close but no cigar. See: How to search for encrypted information with a blind index .

, AES_*() MySQL:

$first_name_hash = hash_hmac('sha256', $firstName, $secretKey);
$stmt = $db->prepare('SELECT * FROM table WHERE first_name_idx = ?');
$result = $db->execute([$first_name_hash])
    ->fetch(PDO::FETCH_ASSOC);
if ($result) {
    $first_name = Crypto::decrypt($result['first_name_encrypted'], $otherSecretKey);
}

, HMAC-SHA256, .

: . .

Joe Bubna · Answer 2 · 2016-04-15T19:53:01+0000

, , , .

, , , ...

$hashed_search = myhash('John');    
$q = 'SELECT * FROM table WHERE first_name_hashed = '.$hashed_search;

-, ? (, "https" ).

, - ? , . ?

, , , , (.. "first_name" ). , . , (, , , ..) .

, , - , .

TL;DR: - . , , .

Best way to find encrypted data inside MySQL

More articles: