The purpose of the talk is to present data-at-rest encryption implementation in Percona Server for MySQL.
Differences between Oracle's MySQL and MariaDB implementation.
- How it is implemented?
- What is encrypted:
- General tablespace?
- Double write buffer/parallel double write buffer?
- Temporary tablespaces? (KEY BLOCKS)
- Slow/general/error logs?
- MyISAM? MyRocks? X?
- Performance overhead.
- Transportable tablespaces. Transfer key.
- Keyrings in general
- Key rotation?
- General-Purpose Keyring Key-Management Functions
- Is useful? How to make it profitable?
- Keyring Vault
- How does it work?
- How to make a transition from keyring_file
Iwo is a Percona Support Engineer (EMEA) since August 2017.
Prior to joining Percona Iwo was a System Administrator for more than 10 years with a focus on high availability, performance and automation. He also was helping many companies in designing infrastructure and ha/failover solutions.
Bartlomiej Oles is a MySQL and Oracle DBA, with over 15 years experience in managing highly available production systems at IBM, Nordea Bank, Acxiom, Lufthansa, and other Fortune 500 companies. In the past five years, his focus has been on building and applying automation tools to manage multi-datacenter database environments.