Hi David, the link you provided is quite interesting. Is such database(translucent database) actually exist? Or is it just a concept?
Thanks
Sarah,
These databases do exist. Transparent (translucent) encryption has been around for a while (at least on Windows machines). Take a look at Advantage database from Extended Systems http://advantagedatabase.com. They have a Windows and Linux version. They use AES to encrypt the data, index, blobs (including memos). You just enter your password when you want access to the table, and only your program can see the data. It does the decryption on a record by record basis in memory only, so no one else who has access to your machine when you are viewing your data can see any unencrypted data. There is no need to re-encrypt the data you've changed because it is done when the record is saved. It's all transparent.
I've found adding encryption does not slow down record access. Their LAN version (Advantage Local Server:ALS) is free to use and distribute. Their C/S version (Advantage Database Server:ADS) costs $. Unfortunately their license agreement does not allow ALS to be used as a webserver, but you can legally connect from one ALS application to another ALS application that resides on a webserver (thin client). See their license agreement for more info. I've had ALS up to 1 million rows and it is still lightning fast.
By default ALS allows for 5 connected users at a time, but this can be bumped up to around 20 if you request it. For more users you should really use their ADS product. Applications are typically written in Delphi or C++Builder for Windows but they have free ODBC driver and also one that works with PHP and another for Linux using Borland's Kylix). They also have a database architect program that has simple query access to the tables without writing any code. So you can define your tables, enter the data, and query it all from the data architect program.
It would be nice if MySQL had the same capabilities, because if someone steals your computer with your MySQL database on it, you're screwed.<g> If you have your MySQL database on a virtual server, you also have a security problem. With Advantage they still won't be able to break into it because each encrypted table can have their own password. Using hex editors is of no use and like I said, even indexes and blobs are encrypted. Passwords are not transmitted in the clear.
Mike
-- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED]
