[Owasp-leaders] DB encryption (here: MySQL)

devops gregory.disney at owasp.org
Tue Mar 12 20:30:08 UTC 2013


If I was to do encryption for db, AES is not the be all I actually
prefer camellia. S box crypto is S box crypto, that said. With mongo I
use pgp to encrypt decrypt the db for every read and write, but beware
any unconventional encryption on a database can cause massive
corruptions.  

On Tue, 2013-03-12 at 18:43 +0100, Dirk Wetter wrote:
> Hi all,
> 
> am I just too stupid to find it?
> 
> Basically I found at OWASP only a bit regarding this topic,
> e.g. useful was Ralph Durkee's talk
> 
> http://www.owasp.org/images/c/c1/Database_Encryption.ppt
> 
> and some vague slides elsewhere regarding PCI DSS (they seem
> to recommend AES_DE/ENCRYPT which is critical for
> transaction and other logs.)
> 
> There seems to be no such thing as a best practice
> guide.
> 
> Any hints?
> 
> Best,
> 
> Dirk
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders




More information about the OWASP-Leaders mailing list