Hey, Jason. You're right in that folks that care about encryption sometimes provide that capability in file storage. We see that with some of the customers we're working with. The problem with that approach is that from a threat assessment perspective, you've still got a fair amount of exposure to who can access the data if you put the encryption in the file system, specifically sysadmins that have access to the server that's hosting the xml database or any piece of code that can access the database. To eliminate those kinds of threats, folks in the relational database world have introduced the notion of field level encryption into their products. It can be a PITA, because it can introduce some tight coupling between your data and your application (the app needs to provide some sort of secret or shared secret in order to decrypt the data) but it does reduce the possible attack points to your data.
I'd be curious if other folks have seen interest in providing encryption directly in ML. thx, g George Florentine VP, Engineering +1 (303) 542-2173 | Office +1 (303) 669-8628 | Cell +1 (303) 544-0522 | Fax [email protected] http://www.flatironssolutions.com -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Jason Hunter Sent: Monday, April 23, 2012 12:08 PM To: MarkLogic Developer Discussion Subject: Re: [MarkLogic Dev General] ML Data Encryption No, people who care about that use encrypted filesystems. -jh- On Apr 23, 2012, at 10:30 AM, Danny Sinang wrote: > Hello, > > I know ML compresses data when storing it on disk. > > But does it also encrypt it ? > > Regards, > Danny > > > _______________________________________________ > General mailing list > [email protected] > http://developer.marklogic.com/mailman/listinfo/general _______________________________________________ General mailing list [email protected] http://developer.marklogic.com/mailman/listinfo/general _______________________________________________ General mailing list [email protected] http://developer.marklogic.com/mailman/listinfo/general
