Hi, Thanks for the article, great work! There’s one question left:

“Encrypt any sensitive data in the database when saving and decrypt when viewing using something like Encrypt any sensitive data in the database when saving and decrypt when viewing using something like KeyCzar (SHA-1) (SHA-1)”

To be really secure, i assume, that the password for data encryption should stored locally on the clients computer. But how would a webapplication work then? I cannot search for customers by name for example, since the data is encrypted in the database. Whats the best practice for this approach?