Architecture of a secure application that encrypts data in the database
Question
I need to design an application that protects some data in a database against root attack. It means, that even if the aggressor takes control over the machine where data is stored or machine with the application server, he can't read some business critical data from the database. This is a customer's requirement. I'm going to encrypt data with some assymetric algorithm and I need some good ideas, where to store private keys, so that data is secure as well as the application usability was quite comfortable? We can assume, for simplicity, that only one key pair is used.
4 answers
solution1
8 2010-04-16 13:33:35
This is a customer's requirement.
Customer's requirements must be projected onto the real world.
If your application can read some business data, and if the aggresor takes control of your application, then the agressor can read that business data.
Assymetric cryptography won't do magic.
solution2
3 2010-04-16 13:42:00
The place to store the private key is with the client, and decrypt it only on the client. The data would need to be at no time decrypted, read or passed through the server in unencrypted form.
solution3
1 2010-04-16 13:24:05
Have a look at this question , especially to the resources mentioned in the original question.
I can endorse the book as an excellent overview of the problems in building this kind of systems.
solution4
1 ACCPTED 2010-04-16 14:02:54
I am not sure about the database options, but it's worth to have a look at Oracle Advanced Security (OAS). But, the key is not stored inside the database but in Oracle wallet (OS managed), as far as I can see, compromising this is hard.
OAS supports encryption at tablespace level and at column level. All these, it claims to be performing with no overhead.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.