Security

Deploy a MongoDB Replica Set with Transport Encryption (Part 1)

MongoDB Replica Set

In this article series, we will talk about the basic high availability architecture of a MongoDB: the MongoDB replica set.
We’ll cover it in three parts:

Part 1 (this post): We’ll introduce basic replica set concepts, how it works and what its main features
Part 2: We’ll provide a step-by-step guide to configure a three-node replica set
Part […]

Read more

Keep Sensitive Data Secure in a Replication Setup

Keep sensitive data secure

This blog post describes how to keep sensitive data secure on slave servers in a MySQL async replication setup.
Almost every web application has a sensitive data: passwords, SNN, credit cards, emails, etc. Splitting the database to secure and “public” parts allows for restricting user and application parts access to sensitive data.
(more…)

Read more

Percona Live 2018: Securing Access to Facebook’s Databases

Andrew Facebook Percona Live 2018

We’re moving along at Percona Live 2018, and there are still packed and energetic talks after lunch.
My next session was with Andrew Regner, Production Engineer at Facebook. His talk was on securing access to Facebook’s databases.
Since the beginning, Facebook has used a conventional username/password to secure access to production MySQL instances. Over the last […]

Read more

Percona Server for MySQL 5.7.21-21 Is Now Available with Increased Built-In Security Enhancements

Percona Server for MySQL

Percona announces the GA release of Percona Server for MySQL 5.7.21-21 on on April 24, 2018. Download the latest version from the Percona web site or the Percona Software Repositories. You can also run Docker containers from the images in the Docker Hub repository.
This version of Percona Server for MySQL 5.7.21 includes three new encryption features – Vault keyring […]

Read more

Percona Live 2018 Featured Talk: Data Integrity at Scale with Alexis Guajardo

Alexis Google Percona Live 2018

Welcome to another interview blog for the rapidly-approaching Percona Live 2018. Each post in this series highlights a Percona Live 2018 featured talk at the conference and gives a short preview of what attendees can expect to learn from the presenter.
This blog post highlights Alexis Guajardo, Senior Software Engineer at Google.com. His session talk is titled […]

Read more

MongoDB Data at Rest Encryption Using eCryptFS

In this post, we’ll look at MongoDB data at rest encryption using eCryptFS, and how to deploy a MongoDB server using encrypted data files.
When dealing with data, a good security policy should enforce the use of “no trivial” passwords, the use of encrypted connections and hopefully encrypted files on the disks.
Only the MongoDB Enterprise […]

Read more

Don’t Get Hit with a Database Disaster: Database Security Compliance

Percona Live 2018 security talks

In this post, we discuss database security compliance, what you should be looking at and where to get more information.
As Percona’s Chief Customer Officer, I get the opportunity to talk with a lot of customers. Hearing about the problems that both their technical teams face, as well as the business challenges their companies experience […]

Read more

This Week in Data with Colin Charles 31: Meltdown/Spectre Performance Regressions and Percona Live 2018

Colin Charles

Join Percona Chief Evangelist Colin Charles as he covers happenings, gives pointers and provides musings on the open source database community.
Have you been following the Meltdown/Spectre performance regressions? Some of the best blog posts have been coming from Brendan Gregg, who’s keynoting at Percona Live this year. We’ve also got Scott Simpson from Upwork giving a keynote […]

Read more

Binlog Encryption with Percona Server for MySQL

binlog encryption

In this blog post, we’ll look at how to turn on binlog encryption in Percona Server for MySQL.
Why do I need this?
As you probably know, Percona Server for MySQL’s binlog contains sensitive information. Replication uses the binlog to copy events between servers. They contain all the information from one server so that it can be […]

Read more

Percona Live 2018 Featured Talk: Securing Your Data on PostgreSQL with Payal Singh

Payal PostgreSQL 1

Welcome to another interview blog for the rapidly-approaching Percona Live 2018. Each post in this series highlights a Percona Live 2018 featured talk at the conference and gives a short preview of what attendees can expect to learn from the presenter.
This blog post highlights Payal Singh, DBA at OmniTI Computer Consulting Inc. Her talk is […]

Read more