End-to-end encryption for databases
Encrypting data on the client side before it reaches the server appears to be very useful for protection against data breaches and meeting regulatory requirements. However, it is challenging to implement it for databases without losing functionality. We compare our [ZeroDB] approach to other ways of implementing it (deterministic encryption with SQL/NoSQL databases, CryptDB). We show security strengths and weaknesses and performance implications of these approaches and appropriate areas to apply them.
MacLane Wilkison is a co-founder at ZeroDB, an end-to-end encrypted database that lets you run queries without exposing the decrypted data to the server. It also maintaines all the functionality you would expect from a modern database.