DBSec MysqlTDE

DBSEC Cloud Database Encryption (MysqlTDE for short) is a database leak prevention product based on transparent encryption technology. The product can encrypt and store sensitive data in the database, enhance access control, and separate powers. TDE (Transparent Data Encryption) encryption: A transparent data encryption technology that enables data addition and decryption functions at the storage layer by modifying the MySQL InnoDB storage engine code. On the basis of not affecting the original functionality of MySQL, the data files of the InnoDB engine are encrypted and protected. MySQLTDE can prevent data leaks caused by shared storage space, prevent external hacker attacks that break through boundary protection, prevent data leaks caused by dragging databases, prevent data theft from internal high-authority users, and prevent sensitive data from being leaked at the root. By using this product, the following values can be provided:

1. Prevent database marks due to shared storage resources Threats: The migration and release of databases on the cloud will cause users to worry about leaving traces of data, and they need to confirm that the data really cannot be reused. Protection: Efficient encryption technology. Only authorized users can decrypt encrypted data, and unauthorized users cannot obtain plain text even if they get the data. Make data storage and transfer more secure.
2. Prevent cross-disclosure of sensitive data Threats: Copies of data and backups may take away irrelevant related content, causing cross-disclosure of data. Protection: Key information is encrypted through MySQLTDE. The encrypted data storage layer exists in the form of a ciphertext file to ensure that others cannot use the data file even if they get it.
3. Prevent external hackers from stealing data Threat: Database privilege escalation is an attack commonly used by hackers in current database vulnerabilities. Through this method, hackers directly obtain DBA identity and access sensitive data at will. Protection: MySQLTDE's ciphertext access control system can ensure that even if the database's own permissions are breached, unauthorized users will not be able to access the ciphertext data.
4. Preventing data breaches within the organization Threats: Business system database accounts are often controlled by developers and database operators. Through this account, these personnel can directly access the database. All sensitive information in the database can be viewed and exported, which does not meet security management requirements. Protection: MySQLTDE ensures that even highly authorized operation and maintenance users cannot access sensitive data without special authorization, and will not affect their daily operation and maintenance work. This product supports BYOL and provides a seven-day free trial license. You can call our technical support hotline at 400 923 1376 for help.