MySQL Encryption-at-rest capability

Hi MySQL Community, Greetings ! I have a query regarding encryption-at-rest feature in MySQL Community Edition - What i understand is that Encryption-at-rest is supported from MySQL-5.7.11 community edition and only on file-per-table basis which means encryption at table-level can be implement

Re: MySQL Encryption

On Sun, Mar 21, 2010 at 9:49 PM, mos wrote: > At 03:21 PM 3/21/2010, John Daisley wrote: > >> Mike, >> >> Encrypted filesystems can seriously impact performance of MySQL. >> >> Its an entirely different issue to MySQL encryption but one would hope >&g

RE: MySQL Encryption

At 03:21 PM 3/21/2010, John Daisley wrote: Mike, Encrypted filesystems can seriously impact performance of MySQL. Its an entirely different issue to MySQL encryption but one would hope that, if you are going to go to all the trouble of using two part keys and the strongest encryption

RE: MySQL Encryption

Mike, Encrypted filesystems can seriously impact performance of MySQL. Its an entirely different issue to MySQL encryption but one would hope that, if you are going to go to all the trouble of using two part keys and the strongest encryption available in your database, you would also take as

RE: MySQL Encryption

to a few people in your company. Never trust the internet service provider to be your only means to protect your data or your drives. Mike -Original Message- From: Jim Sent: Friday, March 19, 2010 4:22 PM To: John Daisley ; mysql@lists.mysql.com Subject: Re: MySQL Encryption T

RE: MySQL Encryption

-Original Message- From: Jim Sent: Friday, March 19, 2010 4:22 PM To: John Daisley ; mysql@lists.mysql.com Subject: Re: MySQL Encryption Thanks for the reply, John. What you are describing seems to be the approach I've seen on the few places I've seen this topic discusse

Re: MySQL Encryption

Hi Neil. Information (in most cases a string < 100 chars, but that's probably not important) that actually needs to be decrypted, so a hash won't do. Jim On 3/20/2010 5:09 PM, Tompkins Neil wrote: Hi What sort of information are you looking to encrypt ? If it is for user passwords I'd reco

Re: MySQL Encryption

Hi What sort of information are you looking to encrypt ? If it is for user passwords I'd recommend SHA256 which is one way encryption. Or are you looking to encrypt more sensitive information like card holder data ? Regards Neil On Fri, Mar 19, 2010 at 4:22 PM, Jim wrote: > Thanks for the re

Re: MySQL Encryption

Thanks for the reply, John. What you are describing seems to be the approach I've seen on the few places I've seen this topic discussed. I've been considering something along those lines, essentially a two part key. Part one of the key is made from some data that is in the record I want to

Re: MySQL Encryption

Jim, I tend to derive a key based on a separate character string and the contents of the data in the same or a related table. This means each row has a unique encryption key and you never have to have the whole key stored somewhere (you don't even know it :p ). Biggest advantage to this is should

MySQL Encryption

In terms of encryption functions AES_DECRYPT and AES_ENCRYPT, can anyone point to any good links or offer any suggestions in terms of best practices on storage of the associated symmetric key? I've found very little information on this when searching. Does MySQL offer any asymmetric encryption

RE: MySQL Encryption - Third-party tools

uk] > Sent: Tuesday, August 25, 2009 2:08 AM > To: Mike Scully > Cc: mysql@lists.mysql.com > Subject: Re: MySQL Encryption - Third-party tools > > On Mon, 24 Aug 2009, Mike Scully wrote: > > > Hello, all. > > =20 > > Can any of you share with me the names o

Re: MySQL Encryption - Third-party tools

On Mon, 24 Aug 2009, Mike Scully wrote: > Hello, all. > =20 > Can any of you share with me the names of any third-party tools or > appliances that you are using to encrypt your MySQL databases? I am > doing a search and would like to narrow down the initial search list. > Thanks! > =20 > Mike I

MySQL Encryption - Third-party tools

Hello, all. Can any of you share with me the names of any third-party tools or appliances that you are using to encrypt your MySQL databases? I am doing a search and would like to narrow down the initial search list. Thanks! Mike

AES_BLOCK size for MySQL Encryption

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I am interested in feedback, advice from anyone who has changed the AES_BLOCK_SIZE (default 16 bytes, for 128 bit) to 32 bytes, or 256 bit encryption as mentioned on: http://dev.mysql.com/doc/mysql/en/Encryption_functions.html I am only attempting to p

Re: Mysql & Encryption

On Fri, Nov 22, 2002 at 10:32:59AM +0100, Roger Baklund wrote: > > How would MySQL react to having some of its data files stored on > > encrypted loop-back devices that aren't available all the time, but are > > always available when a certain user logs in? > > I'm sorry, I don't understand the qu

Re: Mysql & Encryption

* Fraser Stuart > Here are my two main security issues. > > 1) (valid) user does a sudo to root and runs "strings .MYD" - out > drops all the sensitive text > 2) (clever) user gets hold of the application user/password for > MySQL (it's > in the app config somewhere) - they run "mysql --user=foo --

RE: Mysql & Encryption

-Original Message- | From: Roger Baklund [mailto:[EMAIL PROTECTED]] | Sent: Tuesday, 19 November 2002 1:15 AM | To: [EMAIL PROTECTED] | Cc: Alexandre Aguiar; Fraser Stuart | Subject: Re: Mysql & Encryption | | | * Alexandre Aguiar | > On 14 Nov 2002 Fraser Stuart shaped the elec

RE: Mysql & Encryption

: Mike Hillyer [mailto:[EMAIL PROTECTED]] > Sent: Monday, November 18, 2002 2:24 PM > To: Muir, Michael (OTS-EDH); 'Andy Eastham'; Mysql@Lists. Mysql. Com > Subject: RE: Mysql & Encryption > > > As far as I know you have to have a shell account to use ssh > tunnel

RE: Mysql & Encryption

Mysql. Com Subject: RE: Mysql & Encryption PuTTY is a nice freeware SSH client. http://www.chiark.greenend.org.uk/~sgtatham/putty/ -mike > -Original Message- > From: Andy Eastham [mailto:[EMAIL PROTECTED]] > Sent: Monday, November 18, 2002 8:39 AM > To: Mysql@L

RE: Mysql & Encryption

PuTTY is a nice freeware SSH client. http://www.chiark.greenend.org.uk/~sgtatham/putty/ -mike > -Original Message- > From: Andy Eastham [mailto:[EMAIL PROTECTED]] > Sent: Monday, November 18, 2002 8:39 AM > To: Mysql@Lists. Mysql. Com > Subject: RE: Mys

Re: Mysql & Encryption

r > > > On 14 Nov 2002 Fraser Stuart shaped the electrons to write something > > > about [Mysql & Encryption] > > > > > > > We are about to embark on a project that requires data encryption - > > > > mainly to stop sensitive information bei

Re: Mysql & Encryption

At 08:15 AM 11/18/2002, you wrote: * Alexandre Aguiar > On 14 Nov 2002 Fraser Stuart shaped the electrons to write something > about [Mysql & Encryption] > > > We are about to embark on a project that requires data encryption - > > mainly to stop sensitive information

RE: Mysql & Encryption

Sent: 18 November 2002 13:54 > To: Alexandre Aguiar; Fraser Stuart > Cc: [EMAIL PROTECTED] > Subject: RE: Mysql & Encryption > > > A windows versionof Stunnel is available from the stunnel website > (www.stunnel.org), I would reccomend using it for your needs. > > Mike

Fw: Mysql & Encryption

ComIT Solutions Inc. www.comit.ca - Original Message - From: "Alexandre Aguiar" <[EMAIL PROTECTED]> To: "Fraser Stuart" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Monday, November 18, 2002 8:09 AM Subject: Re: Mysql & Encryption On 14 Nov 2

Re: Mysql & Encryption

* Alexandre Aguiar > On 14 Nov 2002 Fraser Stuart shaped the electrons to write something > about [Mysql & Encryption] > > > We are about to embark on a project that requires data encryption - > > mainly to stop sensitive information being viewed accidentally (ie > &

RE: Mysql & Encryption

PROTECTED] Subject: Re: Mysql & Encryption On 14 Nov 2002 Fraser Stuart shaped the electrons to write something about [Mysql & Encryption] > We are about to embark on a project that requires data encryption - > mainly to stop sensitive information being viewed accidentally (ie Isn´t

Re: Mysql & Encryption

On 14 Nov 2002 Fraser Stuart shaped the electrons to write something about [Mysql & Encryption] > We are about to embark on a project that requires data encryption - > mainly to stop sensitive information being viewed accidentally (ie Isn´t it possible to tunnel MySQL connections t

Re: Mysql & Encryption

Roger Baklund wrote: Wouldn't you be better of using GRANT? If you encrypt the content of the database, any searching must be done on the encrypted value, and sorting would be difficult... How would MySQL react to having some of its data files stored on encrypted loop-back devices that aren'

Re: Mysql & Encryption

* Fraser Stuart > We are about to embark on a project that requires data encryption - mainly > to stop sensitive information being viewed accidentally (ie viewing tables > directly through odbc connections or standard mysql clients). The server > (solaris) will not be publicly accessible. Wouldn't

Re: Mysql & Encryption

Fraser Stuart wrote: From this I'm leaning towards DES encryption - only because I can store the key on the server. Don't use DES for any secure information. If by "secure" you mean "I don't care if they see it, but I'd prefer if they didn't", the go ahead. If by "secure" you mean "No way!

Mysql & Encryption

Hi All, We are about to embark on a project that requires data encryption - mainly to stop sensitive information being viewed accidentally (ie viewing tables directly through odbc connections or standard mysql clients). The server (solaris) will not be publicly accessible. Mysql has a variety of e