Security in MySQL Enterprise Edition
Following a number of high-profile cyber-attacks against leading companies such as Apple and Sony, security has become a top priority.
MySQL Enterprise Edition provides advanced security features to protect the data behind your mission critical applications:
- MySQL Enterprise Authentication –This feature provides ready to use external authentication modules to easily integrate MySQL with existing security infrastructures including PAM and Windows Active Directory. MySQL users can be authenticated using Pluggable Authentication Modules (“PAM”) or native Windows OS services.
- MySQL Enterprise Encryption – Encryption, key generation, digital signatures and other cryptographic features to help your customers protect their confidential data and comply with regulatory requirements.
- MySQL Enterprise Transparent Data Encryption – TDE enable data-at-rest encryption by encrypting the physical files of the database. Data is encrypted automatically, in real time, prior to writing to storage and decrypted when read from storage.
- MySQL Enterprise Firewall – This guards against cyber security threats by providing real-time protection against database specific attacks, such as an SQL injection. MySQL Enterprise Firewall monitors for database threats, automatically creates a whitelist of approved SQL statements and blocks unauthorised database activity.
- MySQL Enterprise Audit – MySQL Enterprise Audit enables you to quickly and seamlessly add policy-based auditing compliance to new and existing applications. You can dynamically enable user level activity logging, implement activity-based policies, manage audit log files and integrate MySQL auditing with Oracle and third-party solutions.
How does MySQL Enterprise Edition help your customers comply with GDPR?
As organisations prepare for the new European Union (EU) General Data Protection Regulation (GDPR) by considering changes in processes, people, and technical controls, it is important that your customers consider how MySQL Enterprise Edition can help to accelerate adoption of the GDPR’s assessment, preventative, detective controls.
The key GDPR data security requirements can be broadly classified into three categories: Assessment, Prevention, and Monitoring/Detection. The GDPR also requires compliance with the data protection principles to enhance the quality and rigor of protection of the data.
MySQL has been developing innovative data security products for several years to help organisations address attacks from different threat vectors. Organisations worldwide can accelerate their response to the GDPR requirements by leveraging MySQL Enterprise Security for assessment, preventative, and detective controls with minimal overhead, high degree of transparency, and low deployment complexity.