Search DominoPower's 10,675 Lotus-related article archive 
Home
EasyPrint
News details Click here for the RSS feed's XML code. This is not a browser URL.
Articles-only Click here for the RSS feed's XML code. This is not a browser URL.
Twitter Feed Click here for the Twitter feed.
MORE ENCRYPTION TIPS
Using public key encryption to secure Notes documents
By Tom Lowery

Last month, I described how to use secret key encryption to conceal confidential information in Notes documents. Although I hinted that the same could be done with public key encryption, I didn't provide any details. Some readers took me to task for glossing over the issue. This month I hope to right that wrong.

For a general description of public key encryption and how it differs from the secret key variety, please see last month's article at http://www.dominopower.com/issues/issue199909/encryption001.html. I'll cover the nuts and bolts of public key encryption here.

"Notes architecture assumes public key encryption will be used for mail and secret key encryption will be used for documents."

If you look through Lotus' developer documentation, you'll find very little about public key encryption. What you do find will apply to sending mail, not to saving documents in a database. This is because the Notes architecture assumes public key encryption will be used for mail and secret key encryption will be used for documents. I don't think this is stated anywhere explicitly, but it's certainly implied in the design.

Fortunately, we can use an undocumented feature to encrypt saved documents with public keys. The process differs depending on whether your users have the R4 or R5 client. I'll cover the R5 procedure first because it's simpler.

As is always the case with undocumented features: tread at your own risk. Features are often undocumented because they don't work reliably, may change measurably in future releases, or may vanish without notice.

R5 Public key encryption
To set up R5 public key encryption, you'll use almost the same procedure I described last month for secret key. Let's go back to the Human Resources database example (if you're not sure what this example is, check out last month's article first). The HR department wants to track each employee's name, department, job title, salary range, and current salary, as shown in Figure A.

FIGURE A


The Employee form contains attributes which describe each employee. Roll over picture for a larger image.

Say we want to limit access to the SalaryRangeLow, SalaryRangeHigh, and CurrentSalary fields. First select a field to encrypt. I'll start with SalaryRangeLow. Double-click it to bring up the Field Properties dialog. Click the Options (beanie) tab, and at the bottom of the window under Security options, select "Enable encryption for this field", as shown in Figure B. Repeat this step for each field on the form you want to encrypt, for example SalaryRangeHigh and CurrentSalary.

FIGURE B


Enable encryption in the Field Properties dialog for each field you want to encrypt. Roll over picture for a larger image.


1  ·  2  ·  3  ·  Next »
Other articles you might like
Home > Strategies > Security (19 articles)
   Incident report: denial of service attack against ConnectedPhotographer.com
   Centralised email encryption at the Domino server level
   Analysis: Spying Chinese temptress steals senior Brit's BlackBerry
Home > Lotus Technologies > LotusScript (64 articles)
   When the debugger won't debug hidden code that isn't hidden
   What to do if the LotusScript debugger won't single-step over code
   Little known traps about Lotus Notes fields
Home > Tips & Techniques (95 articles)
   When the debugger won't debug hidden code that isn't hidden
   What to do if the LotusScript debugger won't single-step over code
   Troubleshooting an OpenSuse Notes install
Get Weekly Email Updates
Subscribe to our regular weekly email newsletter. It's packed with tips, reviews, deep analysis, and the latest news.
 
Recent DominoPower Articles
What to look for in a Domino-based document management solution
Understanding Domino.doc end-of-life options
When the debugger won't debug hidden code that isn't hidden
What to do if the LotusScript debugger won't single-step over code
Top 10 ways to launch and build a Lotus consulting practice (with a little help from the Beatles)
Troubleshooting an OpenSuse Notes install
Incident report: denial of service attack against ConnectedPhotographer.com
Latest Lotus Headlines
SnTT - Enabling ALL the bells and whistles!
Tivoli Data protection causes Domino to crash
Fun when running DB2 CLP scripts
Introducing Flippr, the easy way to admin Quickr
DXL and fake security
Using search forms in IBM Workplace Collaborative Learning 2.7
Schmidt, Freed, and Gering on the OVF Toolkit
>> Read all the news
More from the ZATZ journals
Computing Unplugged: Eight steps to successful and reliable home backups
David Gewirtz Online: CNN commentary and analysis
OutlookPower: Can Outlook run when it's not running (and other mysteries)?
-- Advertisement --

PDF Conversion for Lotus Notes
Convert Lotus Notes documents to PDF for sharing, archiving or web printing.

  • 1-step PDF: As easy as clicking a Lotus Notes toolbar icon
  • Archive email folders or views as a self-contained PDF
  • Convert any document collection into a PDF file
  • Produce print-quality output from Web applications
  • Client side or Server side conversion
  • Doesn't require any DLL files
  • LotusScript API for developers


Ready to learn more?
-- Advertisement --

Integrate your Notes Applications with Microsoft Office and Symphony
Integra for Notes Integrates Microsoft Office and/or IBM Lotus Symphony
Requires NO change to the design of the appliation or Installations of DLL's and EXE's
  • Integra is a ready to use solution, enhance static reports with Excel data analysis, pivot tables, macros
  • User friendly aproach, using a point and click access to features
  • Reports from any Lotus Notes databases
  • Runs reports through a Notes client, web browser and scheduled basis
  • Allows use of LotusScript for advanced data manipulation
  • Enables self service reporting capabilities to end-users


Learn more at www.integra4notes.com.
ZATZ Home  ·  News  ·  Back Issues  ·  Credits/Trademarks ·  Link To Us
Copyright © 1998-2009, ZATZ Publishing. All rights reserved worldwide.
Editor's Login