tags:

views:

479

answers:

8
+2  Q: 

How to implement local database in .NET when the Database files cannot be Protected?

I was asked to write a database and it's GUI frontend for some non-profit organization I am member of.

The decision was to use .NET as I know C# fariy good and writing GUI is quite easy. I though of implementing local SQL Server database (as I worked earlier with MySQL) and connect to it via SqlClient interface. But then I discover some problem:

Machine with database installed is public. Even account from which database would be accessed is freely available. So as far as I know anyone who will bring portable MS Access would gain a free access to any data stored in database. Perhaps I am wrong and it is possible to encrypt database with password independent from user account. But I don't know how to do that (I do not have MS Access, only basic Office and Visual Studio Express).

Or if it is impossible, what is the best way to replace SQL Server database?

+4  A: 

If the database files are accessible to anyone, then anyone can just delete them. Encryption won't prevent that.

Having said that, if you can't use the file system to make the database files themselves secure, then you'll have to use database encryption. SQL Server does support this.

John Saunders  2010-01-11 18:03:57
The only one I can think about it is to ask database users to make regular backups. There is no other way to secure from deletion in such environment. But still there are security problems (exposing data)
PiotrK  2010-01-11 18:53:36
My point is that, if the database files are not secure, then the application is not secure.
John Saunders  2010-01-11 19:43:53
I do not have any influence in this field. I want to focus on that what I can change. So, even if the user copy database (solid encryption) or delete it (backups) he wouldn't do major damages.
PiotrK  2010-01-12 02:15:21
+2  A: 

Have you considered SQLite? There is a .NET library for it, and installation/setup are very easy. It runs as an "embedded" database, so it would be just another DLL and data file for your app.

http://sqlite.phxsoftware.com/

Encryption does exist for SQLite, but I haven't used that feature so I cannot personally recommend it.

FrustratedWithFormsDesigner  2010-01-11 18:05:10
This looks like the best answer so far - if someone has experience with encryption in SQLite, I would be thankful for some feedback. Is it solid? Is it hard to break excluding brutal-force attack? (I will force my users to use long and complicated passwords)
PiotrK  2010-01-11 18:58:12
+2  A: 

Just because the machine is public doesn't mean the data is freely accessible. You need to investigate security on MS-SQL. You can limit access to databases, specific tables, and stored procedures on a user by user level, or on a group level.

Nick  2010-01-11 18:06:49
That's only true if you're connecting to SQL Server properly -- with an ADO.NET connection or similar. In this case, the actual raw MDF files are unprotected and someone could copy them onto a USB pen or open them in notepad.
Steve Cooper  2010-01-11 18:19:34
I guess that really depends on how one defines "freely accessible". If a computer has no security defined on it at all.. ie... all guest users have access to the C$ share, etc., then this guy has much more significant issues at hand, and no database would satisfy his security requirements.
Nick  2010-01-11 18:59:18
+1  A: 

If your database requirements are not too heavy, you could use sqlite. It doesn't have a 'server' and doesn't require authentication. It would reside on the same machine as your actual application as a file.

Assuming the actual machine on which you run your app (as opposed to the public machine on which the db runs) doesn't have any public accounts, it should be fairly safe.

Noufal Ibrahim  2010-01-11 18:06:57
"doesnt require authentication" is what he's trying to avoid
Ariel  2010-01-11 18:08:09
As I understand, the authentication is a problem since the db server is public with public accounts. If the db were not a separate machine and were linked directly with the application, it would be as secure as the actual application.
Noufal Ibrahim  2010-01-11 18:15:03
could someone log onto the public account, copy the sqlite data files, and then read their data in notepad? If so, the data would be less secure than the app, because an attacker wouldn't need to use the app itself.
Steve Cooper  2010-01-11 18:22:25
Yes but I assume (and have edited my question to reflect this) that the machine on which the app is running is secure.
Noufal Ibrahim  2010-01-11 18:31:53
No, it is not. Everyone has access to it. The only way to prevent deletion is to make backups, but still anyone can copy it and open via notepad. I want to have way to encrypt database file(s) independent of user accounts.
PiotrK  2010-01-11 18:55:27
A: 

MSSQL or MySQL would be your best bet. You can set a user (independent from the OS) on both and use it to login from your C# code.

Ariel  2010-01-11 18:07:25
+2  A: 

You may want to check out SQL Express. It is free and lightweight. It does not have all the features of a fully licensed SQL Server, but it probably has what you need.

SQL Express

Devtron  2010-01-11 18:08:00
+1  A: 

If the file system must be open to anyone, then you'll need to encrypt the database. People who suggest setting up users with limited access are wrong; this won't prevent someone from simply opening the files and peeking at the data. The logins for SQL server don't protect you from someone simply opening the underlying data files in notepad. They are not easy to understand, but not encrypted.

SQL Server does have the ability to encrpyt the data files -- see databasejournal.com -- but I wouldn't recommend it.

If you can, look to securing the machine using standard Windows file security. Then make sure that you deny read permissions to these files to every user except the one running SQL Server -- usually the local system or network user, IIRC.

Steve Cooper  2010-01-11 18:18:14
+2  A: 

As several people have pointed out, if the database files are public then the data is public. Encryption is not going to help you. Switching to SQLite will not help; you have to make the database files non-public.

One way to do this is to store your database on a private server and expose the data through a public API via SOAP, REST, web services or such. The GUI front-end will send requests to the private server and display the results.

Consider making the application a web app; the GUI front-end becomes an ordinary web browser.

Dour High Arch  2010-01-11 19:16:31
Good point (web app)
PiotrK  2010-01-12 02:16:59

related questions

Subsonic Vs NHibernate
How to check For File Lock in C# ?
Is nAnt still supported and suitable for .net 3.5/VS2008?
Limit size of Queue<T> in .NET?
Viewstate invalid when using Safari
Free OCR library
Unhandled Exception Handler in .NET 1.1
Localising date format descriptors
Get a new object instance from a Type in C#
VFP .NET OLEdb provider does not work in Win 64-Bits. Help
.NET Testing Framework Advice
Embedded Database for .net that can run off a network
Automatically update version number
Homegrown consumption of web services
How do you migrate a large app from VB6 to VB .net ?
.NET Migrations Engine
Adding Scripting functionality to .NET applications
SQLite and XSD
Floating Point Number parsing: Is there a Catch All algorithm?
How do I programmatically create a PDF in my .NET application?
How do I sync the SVN revision number with my ASP.NET web site?
XSD DataSets and ignoring foreign keys
Anatomy of a "Memory Leak"
Reliable Timer in a Console Application
How do I calculate relative time?