Transparent tablespace and log encryption on MariaDB 10.1 using Amazon Key Management Service
Nearly everyone owns data of immense value: customer data, construction plans, recipes, product designs and other information. These data are stored in clear text on your storage media. Everyone with file system access is able to read and modify the data. If this data falls into the wrong hands this may result in serious consequences. With encryption you protect Data At Rest i.e. database files are protected against unauthorized access. MariaDB allows the user to configure flexibly what to encrypt in InnoDB: everything, all tablespaces (with all tables) and redo log files, individual tables, everything, excluding individual tables In this talk we will introduce this important feature and its usage and configuration with Amazon Web Services (AWS) Key Management Service (KMS) and present some experimental results.
Principal Engineer, MariaDB Corporation
Jan works as principal engineer for InnoDB/XtraDB storage engines and Galera Cluster. Before joining MariDB Corporation he has worked on IBM, solidDB and Innobase developing storage engines for MySQL and database systems. He holds PhD in computer science from University of Helsinki.