Have you looked into Fully-Homomorphic-Encryption?

[Leopere]

Read number 1 https://paragonie.com/blog/2019/01/ciphersweet-searchable-encryption-doesn-t-have-be-bitter Read number 2 https://blog.cryptographyengineering.com/2012/01/02/very-casual-introduction-to-fully/

Source Code that claims to be FHE https://github.com/paragonie/ciphersweet

[Leopere]

This would be a way where you could securely store health records while encrypted by default in the database and yet remain searchable.

[petrk94]

I dont understand what you mean with searchable? The data which you save in the web application, are plain text and get encrypted via php in the processing part, after its encrypted, the encrypted data are stored in the database. If you open the web application, the data get loaded by decrypting it.

If you want to search it inside of the database, than sorry, but this is not a good idea, if the database get hacked, the data are visible for everyone and this is not the target. If someone break into the database, you can be sure, that it cant be decrypted and you have less to worry about.

[Leopere]

This type of encryption was specifically designed for cases like this but okay.

[petrk94]

I will keep it in mind, but would make it more complicated and than even with further database models, it would get mess

[Leopere]

Hey no big deal it's not easily accessible yet it only has a PHP Library currently anyways just seems like a good idea to learn about.

On Fri, Feb 8, 2019, 9:23 AM Petr K., notifications@github.com wrote:

I will keep it in mind, but would make it more complicated and than even with further database models, it would get mess

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/petrk94/ownhealthrecord/issues/11#issuecomment-461818210, or mute the thread https://github.com/notifications/unsubscribe-auth/ABBNVll8gbZcbKGF6Snh9Yfl0XKrYS2xks5vLYhEgaJpZM4as2i1 .