How to Encrypt Sensitive Data in Microsoft Access

Glad it was helpful!

My pleasure!

I love how you ended the video with a instrumental as audio and simple notes as a summary. Very progressive channel, especially for a technology like MS access! ;) @seanmackenziedataengineering

Glad it was helpful! Thanks for your suggestion on this earlier. It is a great topic!

Grazie!

Many thanks!

Good point! That would certainly add some security. An admin could also use a different passphrase combo just for the password operation, with different parameters that are only used for that purpose.

I added one way SHA256 functions to the latest version for this purpose. Thanks for suggesting! ua-cam.com/video/2VrFXQd7xDQ/v-deo.html

@@seanmackenziedataengineering awesome! I'll check it out. Thanks!

That's a great idea - you could probably decrypt the parts that you know you'll be working on or something like that. Decrypting all the data in a field might take some time but you could roll through and decrypt that field in the morning before starting using something like this: ua-cam.com/video/7HckYjH_wg4/v-deo.html Maybe get a coffee while it is running!

The answer to this is "kinda sorta".. You can indeed write encryption algorithms, but with (in my experience) much more difficulty. This is partly due to the fact that VBA is pretty old. 25 years ago, encryption was not the same as it is today, and Windows was not the same, and encryption deployments were not the same. So, if you write something in vbScript or VBA, you have to leap forward in time from their last major releases (afaik 1999) to use stronger methods etc. Sure, you can find some DLL or something to put in your project to do it but then.. ..you're just using another program like you see here. Dot net is newer and has built-in stuff to work with newer Windows environments easily and directly, modern encryption tech directly (like 256-bit encryption), and other modern dot net technologies. So, for me, it was the fastest, best option to completion for the least amount of effort. Also, using dot net Framework via a console app means that it will run on just about any version of Windows (with no or little update) back by a decade and almost for sure forward by more than a decade. It will be a stable solution.
Edit: spelling

Good test! It seems like sometimes the return string receives a Enter key (or vbCrLF) on the end. If you see this, you can add one line to EncryptOrDecrypt, just AFTER the Fn_Exit: line
If Right(strReturn, 2) = vbCrLf Then strReturn = Left(strReturn, Len(strReturn) - 2)
Give it a try and let me know how it goes!

Great question. That's always the trick.. trying not to install a bunch of libraries etc. There is a nice way to do it using installed .net libraries, so I may just add this to my SmackoCrypt exe as an alternate call that returns only True or False when you input user/pwd combos. Stay tuned. Which methods have you looked at so far?

You bet! It is just a slightly different kind of deployment. It is possible to use objShell.Run in our VBA instead of Execute. Using Run instead of Execute does not have the feature where we can capture the output "on-the-fly", but is does allow us to run the command in a minimized or hidden window.
Since we cannot get the return value from the output window with Run, we have to direct the output to a text file somewhere, which we can by specifying this in the command line. After the text file is created, we can read it and get our value, then resume.
Notice that this will not change our exe file at all. We just change our VBA.
The downside is that it will leave a text file on your drive, in some cases with unencrypted data that you don't want others to see outside of your app. For password hashes (in the next video as you mentioned ua-cam.com/video/2VrFXQd7xDQ/v-deo.html), this is not as big of a deal, but for other data be aware that some drive data will be left in a txt somewhere that you need to delete (maybe we can delete it after we read it with VBA).
When I get a chance, I'll post here the VBA alternate way to deploy it!

🙃