Retrieving

0
We are implementing PII data encryption and encrypted email addresses in Account entity/table   Our scenario is we have a forgot password feature where user enters an email address.   Currently, we are retrieving all account email addresses, decrypt them all and then match with the user entered email address .   This is a really ineffective way to retrieve all existing data do match a single row. ideally we should be able to just encrypt the user entered email and match with the encrypted email addresses in the account entity/table but the encrypted value of the user entered email address is different than the one stored in the database even though it is the same email address.   Does anyone else have this problem? Did anyone else run into this problem or scenario and has a solution?
asked
1 answers
1

If you are encrypting email addresses in Account, can you use the same method to encrypt the email address the user enters in your forgot password feature? You can then do a database retrieve with an XPath constraint that matches the encrypted value rather than having to decrypt all your existing data.

 

I assume you are using the Encrypt action in the Encryption module to do this. This takes a string and returns the encrypted string.

 

 

answered