Need to encrypt few attributes in a Parse class, as part of a design requirement. Encryption and decryption are easy enough; however, I am not sure as how to go about "hiding" the cipher key. At the moment, putting the key in an object, with restricted ACL, seems to be the only option. However, if Parse account is compromised, so are the user data. Ideally, would like to set the key as a persistent volatile variable within main.js. Is this possible? Alternatively, what are the best set of practices? Cheers,
You can use IQrypt Vault to store the encryption key. With IQryptParse you can also encrypt/decrypt fields values.