How to store the password of my SQLite Cipher database?

In my C# project, I need to use SQLite Cipher to store some data. While the password of the database also meets the problem: where to store it.

My application should be able to work when it is offline (disconnected from any server). So that means the password must be saved in either some encrypted file or in source code.

If the password is saved in a encrypted file, then the next problem is where to save the encrypted file's password...

My company has strict requirements for software security, e.g. cannot hardcode password, etc.

Any advise?

This is a classic problem with no perfect solution, only "less bad" solutions.

Typically, the master password is stored in a file/location that only the machine's root account or startup process has access to.

The root/startup account reads the password, then starts the application as a lower privilege process that doesn't have access to the password file, and gives it the password.

> My company has strict requirements for software security, e.g. cannot hardcode password, etc.

How you implement this depends on your company's specific standards. It's entirely possible that they don't allow storing it anywhere and that a human would need to input the credentials at startup.

This isn't common, but is done in some very high risk situation.

Instead of guessing, I would suggest asking how their current software implements these requirements and doing whatever they currently do.

Security and encryption is very easy to do badly even if it looks correct.