you're reading...

Founders BLOG

MySQL with ClouSE is the first Secure Database in the Cloud

Want to learn how you can store your sensitive data in the cloud storage? Take a look at the thorough and honest security analysis of the approach you can take to deploy your existing MySQL workloads to cloud.

keep reading in August issue of Hackin9 security magazine.

Discussion

3 Responses to “MySQL with ClouSE is the first Secure Database in the Cloud”

  1. This is BS.

    Encrypting data doesn’t make the database secure. If an attacker finds a SQL injection or privilage escalation vulnerability your data can be read by the hacker regardless of the S3 encryption you are employing.

    If the attacker drops a database or table you are really screwed as you’ve previously recommended that you don’t even need to back up your data since it is in S3.

    Stop making unreasonable claims about your products.

    Posted by Justin Swanhart | August 8, 2012, 12:58 pm
    • Hi Justin,

      Thank you for sharing your thoughts.

      If you were to point to a statement of mine where I made a claim that data encryption on the storage level protects from SQL injections, I would be happy to correct it (I would be very surprised if there is any, though). Of course, data encryption does not protect from SQL injections. Neither does it protect from the infinite number of attack vectors that can happen at any layer of the application stack: PHP, Apache, MySQL, Linux, application code, application users, etc.

      See further thoughts on this topic in my blog.

      Posted by Artem Livshits | August 9, 2012, 12:04 pm

Trackbacks/Pingbacks

  1. [...] Read more: MySQL with ClouSE is the first Secure Database in the Cloud … [...]

Post a Comment

Categories

Twitting ...