Storing and searching encrypted data in the database for a web application
Posted on 2013-01-04
Linux, Apache, MySQL, PHP
I have developed a web form which asks an applicant to supply personal information that I want to make sure is always protected. Currently I use SSL and encrypt the data in the database.
I am in the process of developing a web application where I can search the information I've collected from the above process. The challenge is that the data in the database is encrypted so if I'm trying to search by a name like 'john' I won't find it because it doesn't exist in the database that way. It exists in its encrypted form. I have many thousands of records so decrypting the data on the fly is not ideal.
I'm looking for a recommendation for a better way to store and search for data while always making sure the data is protected.