Do we need to encrypt everything stored in database, or just sensitive datas?

Personally I would encrypt or hash sensitive data only. There is this trade between security and performance to consider, secured data needs decryption before they can be used, and be encrypted again after a modification (on saving modified data, as necessary). The process of encryption/decryption takes relative amount of processing power, meaning lesser performance, it is inarguably important though.

tho.tran.# I'm not sure about the necessity for encrypting e-mail addresses. If you don't want it visible as raw text you can hash it. But again, personally, I still think it is rather impractical for search purposes : )

tho.tran.# This is an interesting topic, I'm just sharing what I found from web search, in relation to e-mail address encryption in table fields: https://stackoverflow.com/questions/70450/is-it-worth-encrypting-email-addresses-in-the-database https://security.stackexchange.com/questions/222103/encrypting-email-addresses-in-php

Ipang thanks for sharing

You're welcome tho.tran.# 👌

Thanks. In addition can you suggest some encrypt algo (in PHP,...) to secure email or other sensitive datas? Hashing isnt suitable for securing and working with these datas.

Ipang emails can be used later for verification and other purposes. I dont think hashing email is a good idea. Encrypting it for storing and decrypting it for using is a better idea. I think we should encrypt email before putting it into database, but not by hashing functions

Free Internet