Storing Credit Cards and Other Sensitive Information

Database Administration
24 April 4:30pm - 5:20pm @ Ballroom G

High profile break ins as of late all have one thing in common: the database was the target. Databases are unprotected when compared to the rest of the operating system, and once the host operating system is compromised, the thief can do whatever he wants to the Database service. Usually this is a smash and grab operation, stealing a snapshot of interesting tables and trying to decrypt at one's leisure.
This talk covers securing your database against even a root OS user who acts hastily, as well as some PCI compliance tricks employed to prevent credit cards and other decryptable information from getting stolen.


Solomon Chang
Solomon Chang is a fully certified MySQL DBA, working for Oracle ACS supporting Visa Inc.. He is a co-author of the MySQL Cluster Certification Study Guide and was a former president of LAMPSIG of Los Angeles. He exhibits an unnatural fondness for anything caffeinated.