Secure Database Systems

I was wondering if it is possible to create a secure database system
using MySQL/PHP combination?

I have the following in mind:

I wanted to store all my( and my brothers and sisters) important
document
information such as birth certificate, SSN, passport number, travel
documents, insurance(car, home, etc) document, and other important
documents
imagined in the database.

The data will be entered either manually and/or scanned(with OCR). I
need to
be able to search on all the fields in the database.

We have 10 computers(5bros, 4sisters, and myself) plus 1 server with I
maintained. The data should be synchronize/replicate between those
computers.

Well, so far it is easy, isn't it?

Here's my question:

a) How can I make sure that it secure so only authorized person can
modify/add/delete the information? Beside transaction logs, are there
any
other method to trace any transaction(kind of paper trail)?

Assuming there are 3 step process to one enter the info e.g:
- One who enter the info (me)
- One who verify the info(the owner of info)
- One who verify and then commit the change!
How can I implement such a process in MySQL and/or PHP or any other web
language?

b) How can I make sure that no one can tap the info while we are
entering
the data in the computer? (our family are scattered within US and
Canada)

c) Is it possible to securely synchronize/replicate between our
computers
using VPN? Does MySQL has this functionality by default?

d) Other secure method that I have not yet mentioned.

Anyone has good ideas on how to implement such a systems?

Thanks




--
MySQL Perl Mailing List
For list archives: http://lists.mysql.com/perl
To unsubscribe: http://lists.mysql.com/perl?unsub=gcdmp-msql-mysql-modules@m .gmane.org

Re: Secure Database Systems

It sounds to me that you need only 1 database on a secure server, behind a
secured website. Each data entry operator (the members of your family?)
would need to either access data entry pages on your site (via HTTPS or SSH
or some other encrypted channel) or the database directly through SSH. If
you want each person to have a local copy of everyone's data, then you
could replicate that database to each location.

I guess the absolute security of your data would depend on how many methods
you have available to you and your family to get at the data. Each method
represents a potential security risk and should be evaluated as such.

There are several logs in MySQL (see
http://dev.mysql.com/doc/mysql/en/Log_Files.html)

A multiphase commit (all changes must be reviewed and approved before being
committed) implies that you require all data access to happen ONLY though
your PHP code. This practically guarantees that you will have a central
"master" database.

Secure replication is possible. Use SSH, or VPN if it is available, or
both. SSH is supported by MySQL.

For a good starting point, please read:
http://dev.mysql.com/doc/mysql/en/Security_against_attack.ht ml

Regards,
Shawn Green
Database Administrator
Unimin Corporation - Spruce Pine



"Sarah Tanembaum"
ahoo.com> cc: internals@lists.mysql.com, msql-mysql-modules@lists.mysql.com
Sent by: news Fax to:
rg>


07/08/2004 12:19
PM






I was wondering if it is possible to create a secure database system
using MySQL/PHP combination?

I have the following in mind:

I wanted to store all my( and my brothers and sisters) important
document
information such as birth certificate, SSN, passport number, travel
documents, insurance(car, home, etc) document, and other important
documents
imagined in the database.

The data will be entered either manually and/or scanned(with OCR). I
need to
be able to search on all the fields in the database.

We have 10 computers(5bros, 4sisters, and myself) plus 1 server with I
maintained. The data should be synchronize/replicate between those
computers.

Well, so far it is easy, isn't it?

Here's my question:

a) How can I make sure that it secure so only authorized person can
modify/add/delete the information? Beside transaction logs, are there
any
other method to trace any transaction(kind of paper trail)?

Assuming there are 3 step process to one enter the info e.g:
- One who enter the info (me)
- One who verify the info(the owner of info)
- One who verify and then commit the change!
How can I implement such a process in MySQL and/or PHP or any other web
language?

b) How can I make sure that no one can tap the info while we are
entering
the data in the computer? (our family are scattered within US and
Canada)

c) Is it possible to securely synchronize/replicate between our
computers
using VPN? Does MySQL has this functionality by default?

d) Other secure method that I have not yet mentioned.

Anyone has good ideas on how to implement such a systems?

Thanks




--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe: http://lists.mysql.com/mysql?unsub=sgreen@unimin.com







--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe: http://lists.mysql.com/mysql?unsub=gcdmg-mysql@m.gmane.org

Re: Secure Database Systems

It sounds to me that you need only 1 database on a secure server, behind a
secured website. Each data entry operator (the members of your family?)
would need to either access data entry pages on your site (via HTTPS or SSH
or some other encrypted channel) or the database directly through SSH. If
you want each person to have a local copy of everyone's data, then you
could replicate that database to each location.

I guess the absolute security of your data would depend on how many methods
you have available to you and your family to get at the data. Each method
represents a potential security risk and should be evaluated as such.

There are several logs in MySQL (see
http://dev.mysql.com/doc/mysql/en/Log_Files.html)

A multiphase commit (all changes must be reviewed and approved before being
committed) implies that you require all data access to happen ONLY though
your PHP code. This practically guarantees that you will have a central
"master" database.

Secure replication is possible. Use SSH, or VPN if it is available, or
both. SSH is supported by MySQL.

For a good starting point, please read:
http://dev.mysql.com/doc/mysql/en/Security_against_attack.ht ml

Regards,
Shawn Green
Database Administrator
Unimin Corporation - Spruce Pine



"Sarah Tanembaum"
ahoo.com> cc: internals@lists.mysql.com, msql-mysql-modules@lists.mysql.com
Sent by: news Fax to:
rg>


07/08/2004 12:19
PM






I was wondering if it is possible to create a secure database system
using MySQL/PHP combination?

I have the following in mind:

I wanted to store all my( and my brothers and sisters) important
document
information such as birth certificate, SSN, passport number, travel
documents, insurance(car, home, etc) document, and other important
documents
imagined in the database.

The data will be entered either manually and/or scanned(with OCR). I
need to
be able to search on all the fields in the database.

We have 10 computers(5bros, 4sisters, and myself) plus 1 server with I
maintained. The data should be synchronize/replicate between those
computers.

Well, so far it is easy, isn't it?

Here's my question:

a) How can I make sure that it secure so only authorized person can
modify/add/delete the information? Beside transaction logs, are there
any
other method to trace any transaction(kind of paper trail)?

Assuming there are 3 step process to one enter the info e.g:
- One who enter the info (me)
- One who verify the info(the owner of info)
- One who verify and then commit the change!
How can I implement such a process in MySQL and/or PHP or any other web
language?

b) How can I make sure that no one can tap the info while we are
entering
the data in the computer? (our family are scattered within US and
Canada)

c) Is it possible to securely synchronize/replicate between our
computers
using VPN? Does MySQL has this functionality by default?

d) Other secure method that I have not yet mentioned.

Anyone has good ideas on how to implement such a systems?

Thanks




--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe: http://lists.mysql.com/mysql?unsub=sgreen@unimin.com







--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe: http://lists.mysql.com/mysql?unsub=gcdmg-mysql@m.gmane.org

Re: Secure Database Systems

G'day Sarah,

Pater Wayner has apparently written a book on the subject of how to
store and use information in a database that will be of limited use to
attackers. His website is below, with an oreilly article describing the
book. Haven't read it myself yet.

http://www.wayner.org/books/td/
http://www.oreillynet.com/pub/a/network/2002/08/02/simson.ht ml

uru

-Dave

Sarah Tanembaum wrote:
> Here's my question:
>
> a) How can I make sure that it secure so only authorized person can
> modify/add/delete the information? Beside transaction logs, are there
> any
> other method to trace any transaction(kind of paper trail)?

--
MySQL Perl Mailing List
For list archives: http://lists.mysql.com/perl
To unsubscribe: http://lists.mysql.com/perl?unsub=gcdmp-msql-mysql-modules@m .gmane.org

Re: Secure Database Systems

G'day Sarah,

Pater Wayner has apparently written a book on the subject of how to
store and use information in a database that will be of limited use to
attackers. His website is below, with an oreilly article describing the
book. Haven't read it myself yet.

http://www.wayner.org/books/td/
http://www.oreillynet.com/pub/a/network/2002/08/02/simson.ht ml

uru

-Dave

Sarah Tanembaum wrote:
> Here's my question:
>
> a) How can I make sure that it secure so only authorized person can
> modify/add/delete the information? Beside transaction logs, are there
> any
> other method to trace any transaction(kind of paper trail)?

--
MySQL Perl Mailing List
For list archives: http://lists.mysql.com/perl
To unsubscribe: http://lists.mysql.com/perl?unsub=gcdmp-msql-mysql-modules@m .gmane.org

Re: Secure Database Systems

G'day Sarah,

Pater Wayner has apparently written a book on the subject of how to
store and use information in a database that will be of limited use to
attackers. His website is below, with an oreilly article describing the
book. Haven't read it myself yet.

http://www.wayner.org/books/td/
http://www.oreillynet.com/pub/a/network/2002/08/02/simson.ht ml

uru

-Dave

Sarah Tanembaum wrote:
> Here's my question:
>
> a) How can I make sure that it secure so only authorized person can
> modify/add/delete the information? Beside transaction logs, are there
> any
> other method to trace any transaction(kind of paper trail)?

--
MySQL Perl Mailing List
For list archives: http://lists.mysql.com/perl
To unsubscribe: http://lists.mysql.com/perl?unsub=gcdmp-msql-mysql-modules@m .gmane.org

Re: Secure Database Systems

Hi Shawn, thanks for the info. The next question is do I have to build it
from scratch or there is someone has already done it?

Thanks again.




wrote in message
news:OF215E4707.7C645CD9-ON85256ECB.00679667__16437.02574442 63$1089314514$gmane$org@unimin.com...
>
> It sounds to me that you need only 1 database on a secure server, behind a
> secured website. Each data entry operator (the members of your family?)
> would need to either access data entry pages on your site (via HTTPS or
SSH
> or some other encrypted channel) or the database directly through SSH. If
> you want each person to have a local copy of everyone's data, then you
> could replicate that database to each location.
>
> I guess the absolute security of your data would depend on how many
methods
> you have available to you and your family to get at the data. Each method
> represents a potential security risk and should be evaluated as such.
>
> There are several logs in MySQL (see
> http://dev.mysql.com/doc/mysql/en/Log_Files.html)
>
> A multiphase commit (all changes must be reviewed and approved before
being
> committed) implies that you require all data access to happen ONLY though
> your PHP code. This practically guarantees that you will have a central
> "master" database.
>
> Secure replication is possible. Use SSH, or VPN if it is available, or
> both. SSH is supported by MySQL.
>
> For a good starting point, please read:
> http://dev.mysql.com/doc/mysql/en/Security_against_attack.ht ml
>
> Regards,
> Shawn Green
> Database Administrator
> Unimin Corporation - Spruce Pine
>
>
>
> "Sarah Tanembaum"
> mysql@lists.mysql.com
> ahoo.com> cc:
internals@lists.mysql.com, msql-mysql-modules@lists.mysql.com
> Sent by: news Fax to:
> Systems
> rg>
>
>
> 07/08/2004 12:19
> PM
>
>
>
>
>
>
> I was wondering if it is possible to create a secure database system
> using MySQL/PHP combination?
>
> I have the following in mind:
>
> I wanted to store all my( and my brothers and sisters) important
> document
> information such as birth certificate, SSN, passport number, travel
> documents, insurance(car, home, etc) document, and other important
> documents
> imagined in the database.
>
> The data will be entered either manually and/or scanned(with OCR). I
> need to
> be able to search on all the fields in the database.
>
> We have 10 computers(5bros, 4sisters, and myself) plus 1 server with I
> maintained. The data should be synchronize/replicate between those
> computers.
>
> Well, so far it is easy, isn't it?
>
> Here's my question:
>
> a) How can I make sure that it secure so only authorized person can
> modify/add/delete the information? Beside transaction logs, are there
> any
> other method to trace any transaction(kind of paper trail)?
>
> Assuming there are 3 step process to one enter the info e.g:
> - One who enter the info (me)
> - One who verify the info(the owner of info)
> - One who verify and then commit the change!
> How can I implement such a process in MySQL and/or PHP or any other web
> language?
>
> b) How can I make sure that no one can tap the info while we are
> entering
> the data in the computer? (our family are scattered within US and
> Canada)
>
> c) Is it possible to securely synchronize/replicate between our
> computers
> using VPN? Does MySQL has this functionality by default?
>
> d) Other secure method that I have not yet mentioned.
>
> Anyone has good ideas on how to implement such a systems?
>
> Thanks
>
>
>
>
> --
> MySQL General Mailing List
> For list archives: http://lists.mysql.com/mysql
> To unsubscribe: http://lists.mysql.com/mysql?unsub=sgreen@unimin.com
>
>
>
>
>
>
>
> --
> MySQL General Mailing List
> For list archives: http://lists.mysql.com/mysql
> To unsubscribe:
http://lists.mysql.com/mysql?unsub=gcdmg-mysql@m.gmane.org
>
>




--
MySQL Internals Mailing List
For list archives: http://lists.mysql.com/internals
To unsubscribe: http://lists.mysql.com/internals?unsub=gcdmd-internals@m.gma ne.org

Re: Secure Database Systems

Hi Shawn, thanks for the info. The next question is do I have to build it
from scratch or there is someone has already done it?

Thanks again.




wrote in message
news:OF215E4707.7C645CD9-ON85256ECB.00679667__16437.02574442 63$1089314514$gmane$org@unimin.com...
>
> It sounds to me that you need only 1 database on a secure server, behind a
> secured website. Each data entry operator (the members of your family?)
> would need to either access data entry pages on your site (via HTTPS or
SSH
> or some other encrypted channel) or the database directly through SSH. If
> you want each person to have a local copy of everyone's data, then you
> could replicate that database to each location.
>
> I guess the absolute security of your data would depend on how many
methods
> you have available to you and your family to get at the data. Each method
> represents a potential security risk and should be evaluated as such.
>
> There are several logs in MySQL (see
> http://dev.mysql.com/doc/mysql/en/Log_Files.html)
>
> A multiphase commit (all changes must be reviewed and approved before
being
> committed) implies that you require all data access to happen ONLY though
> your PHP code. This practically guarantees that you will have a central
> "master" database.
>
> Secure replication is possible. Use SSH, or VPN if it is available, or
> both. SSH is supported by MySQL.
>
> For a good starting point, please read:
> http://dev.mysql.com/doc/mysql/en/Security_against_attack.ht ml
>
> Regards,
> Shawn Green
> Database Administrator
> Unimin Corporation - Spruce Pine
>
>
>
> "Sarah Tanembaum"
> mysql@lists.mysql.com
> ahoo.com> cc:
internals@lists.mysql.com, msql-mysql-modules@lists.mysql.com
> Sent by: news Fax to:
> Systems
> rg>
>
>
> 07/08/2004 12:19
> PM
>
>
>
>
>
>
> I was wondering if it is possible to create a secure database system
> using MySQL/PHP combination?
>
> I have the following in mind:
>
> I wanted to store all my( and my brothers and sisters) important
> document
> information such as birth certificate, SSN, passport number, travel
> documents, insurance(car, home, etc) document, and other important
> documents
> imagined in the database.
>
> The data will be entered either manually and/or scanned(with OCR). I
> need to
> be able to search on all the fields in the database.
>
> We have 10 computers(5bros, 4sisters, and myself) plus 1 server with I
> maintained. The data should be synchronize/replicate between those
> computers.
>
> Well, so far it is easy, isn't it?
>
> Here's my question:
>
> a) How can I make sure that it secure so only authorized person can
> modify/add/delete the information? Beside transaction logs, are there
> any
> other method to trace any transaction(kind of paper trail)?
>
> Assuming there are 3 step process to one enter the info e.g:
> - One who enter the info (me)
> - One who verify the info(the owner of info)
> - One who verify and then commit the change!
> How can I implement such a process in MySQL and/or PHP or any other web
> language?
>
> b) How can I make sure that no one can tap the info while we are
> entering
> the data in the computer? (our family are scattered within US and
> Canada)
>
> c) Is it possible to securely synchronize/replicate between our
> computers
> using VPN? Does MySQL has this functionality by default?
>
> d) Other secure method that I have not yet mentioned.
>
> Anyone has good ideas on how to implement such a systems?
>
> Thanks
>
>
>
>
> --
> MySQL General Mailing List
> For list archives: http://lists.mysql.com/mysql
> To unsubscribe: http://lists.mysql.com/mysql?unsub=sgreen@unimin.com
>
>
>
>
>
>
>
> --
> MySQL General Mailing List
> For list archives: http://lists.mysql.com/mysql
> To unsubscribe:
http://lists.mysql.com/mysql?unsub=gcdmg-mysql@m.gmane.org
>
>




--
MySQL Internals Mailing List
For list archives: http://lists.mysql.com/internals
To unsubscribe: http://lists.mysql.com/internals?unsub=gcdmd-internals@m.gma ne.org

Re: Secure Database Systems

Hi Shawn, thanks for the info. The next question is do I have to build it
from scratch or there is someone has already done it?

Thanks again.




wrote in message
news:OF215E4707.7C645CD9-ON85256ECB.00679667__16437.02574442 63$1089314514$gmane$org@unimin.com...
>
> It sounds to me that you need only 1 database on a secure server, behind a
> secured website. Each data entry operator (the members of your family?)
> would need to either access data entry pages on your site (via HTTPS or
SSH
> or some other encrypted channel) or the database directly through SSH. If
> you want each person to have a local copy of everyone's data, then you
> could replicate that database to each location.
>
> I guess the absolute security of your data would depend on how many
methods
> you have available to you and your family to get at the data. Each method
> represents a potential security risk and should be evaluated as such.
>
> There are several logs in MySQL (see
> http://dev.mysql.com/doc/mysql/en/Log_Files.html)
>
> A multiphase commit (all changes must be reviewed and approved before
being
> committed) implies that you require all data access to happen ONLY though
> your PHP code. This practically guarantees that you will have a central
> "master" database.
>
> Secure replication is possible. Use SSH, or VPN if it is available, or
> both. SSH is supported by MySQL.
>
> For a good starting point, please read:
> http://dev.mysql.com/doc/mysql/en/Security_against_attack.ht ml
>
> Regards,
> Shawn Green
> Database Administrator
> Unimin Corporation - Spruce Pine
>
>
>
> "Sarah Tanembaum"
> mysql@lists.mysql.com
> ahoo.com> cc:
internals@lists.mysql.com, msql-mysql-modules@lists.mysql.com
> Sent by: news Fax to:
> Systems
> rg>
>
>
> 07/08/2004 12:19
> PM
>
>
>
>
>
>
> I was wondering if it is possible to create a secure database system
> using MySQL/PHP combination?
>
> I have the following in mind:
>
> I wanted to store all my( and my brothers and sisters) important
> document
> information such as birth certificate, SSN, passport number, travel
> documents, insurance(car, home, etc) document, and other important
> documents
> imagined in the database.
>
> The data will be entered either manually and/or scanned(with OCR). I
> need to
> be able to search on all the fields in the database.
>
> We have 10 computers(5bros, 4sisters, and myself) plus 1 server with I
> maintained. The data should be synchronize/replicate between those
> computers.
>
> Well, so far it is easy, isn't it?
>
> Here's my question:
>
> a) How can I make sure that it secure so only authorized person can
> modify/add/delete the information? Beside transaction logs, are there
> any
> other method to trace any transaction(kind of paper trail)?
>
> Assuming there are 3 step process to one enter the info e.g:
> - One who enter the info (me)
> - One who verify the info(the owner of info)
> - One who verify and then commit the change!
> How can I implement such a process in MySQL and/or PHP or any other web
> language?
>
> b) How can I make sure that no one can tap the info while we are
> entering
> the data in the computer? (our family are scattered within US and
> Canada)
>
> c) Is it possible to securely synchronize/replicate between our
> computers
> using VPN? Does MySQL has this functionality by default?
>
> d) Other secure method that I have not yet mentioned.
>
> Anyone has good ideas on how to implement such a systems?
>
> Thanks
>
>
>
>
> --
> MySQL General Mailing List
> For list archives: http://lists.mysql.com/mysql
> To unsubscribe: http://lists.mysql.com/mysql?unsub=sgreen@unimin.com
>
>
>
>
>
>
>
> --
> MySQL General Mailing List
> For list archives: http://lists.mysql.com/mysql
> To unsubscribe:
http://lists.mysql.com/mysql?unsub=gcdmg-mysql@m.gmane.org
>
>




--
MySQL Internals Mailing List
For list archives: http://lists.mysql.com/internals
To unsubscribe: http://lists.mysql.com/internals?unsub=gcdmd-internals@m.gma ne.org

Re: Secure Database Systems

Hi David, the link you provided is quite interesting. Is such
database(translucent database) actually exist? Or is it just a concept?

Thanks


"David Dick" wrote in message
news:40EDB929.8010902@iprimus.com.au...
> G'day Sarah,
>
> Pater Wayner has apparently written a book on the subject of how to
> store and use information in a database that will be of limited use to
> attackers. His website is below, with an oreilly article describing the
> book. Haven't read it myself yet.
>
> http://www.wayner.org/books/td/
> http://www.oreillynet.com/pub/a/network/2002/08/02/simson.ht ml
>
> uru
>
> -Dave
>
> Sarah Tanembaum wrote:
> > Here's my question:
> >
> > a) How can I make sure that it secure so only authorized person can
> > modify/add/delete the information? Beside transaction logs, are there
> > any
> > other method to trace any transaction(kind of paper trail)?
>
> --
> MySQL Perl Mailing List
> For list archives: http://lists.mysql.com/perl
> To unsubscribe:
http://lists.mysql.com/perl?unsub=gcdmp-msql-mysql-modules@m .gmane.org
>
>




--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe: http://lists.mysql.com/mysql?unsub=gcdmg-mysql@m.gmane.org

Re: Secure Database Systems

Hi David, the link you provided is quite interesting. Is such
database(translucent database) actually exist? Or is it just a concept?

Thanks


"David Dick" wrote in message
news:40EDB929.8010902@iprimus.com.au...
> G'day Sarah,
>
> Pater Wayner has apparently written a book on the subject of how to
> store and use information in a database that will be of limited use to
> attackers. His website is below, with an oreilly article describing the
> book. Haven't read it myself yet.
>
> http://www.wayner.org/books/td/
> http://www.oreillynet.com/pub/a/network/2002/08/02/simson.ht ml
>
> uru
>
> -Dave
>
> Sarah Tanembaum wrote:
> > Here's my question:
> >
> > a) How can I make sure that it secure so only authorized person can
> > modify/add/delete the information? Beside transaction logs, are there
> > any
> > other method to trace any transaction(kind of paper trail)?
>
> --
> MySQL Perl Mailing List
> For list archives: http://lists.mysql.com/perl
> To unsubscribe:
http://lists.mysql.com/perl?unsub=gcdmp-msql-mysql-modules@m .gmane.org
>
>




--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe: http://lists.mysql.com/mysql?unsub=gcdmg-mysql@m.gmane.org

Re: Secure Database Systems

Hi David, the link you provided is quite interesting. Is such
database(translucent database) actually exist? Or is it just a concept?

Thanks


"David Dick" wrote in message
news:40EDB929.8010902@iprimus.com.au...
> G'day Sarah,
>
> Pater Wayner has apparently written a book on the subject of how to
> store and use information in a database that will be of limited use to
> attackers. His website is below, with an oreilly article describing the
> book. Haven't read it myself yet.
>
> http://www.wayner.org/books/td/
> http://www.oreillynet.com/pub/a/network/2002/08/02/simson.ht ml
>
> uru
>
> -Dave
>
> Sarah Tanembaum wrote:
> > Here's my question:
> >
> > a) How can I make sure that it secure so only authorized person can
> > modify/add/delete the information? Beside transaction logs, are there
> > any
> > other method to trace any transaction(kind of paper trail)?
>
> --
> MySQL Perl Mailing List
> For list archives: http://lists.mysql.com/perl
> To unsubscribe:
http://lists.mysql.com/perl?unsub=gcdmp-msql-mysql-modules@m .gmane.org
>
>




--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe: http://lists.mysql.com/mysql?unsub=gcdmg-mysql@m.gmane.org

Re: Secure Database Systems

afaik the term "translucent database" applies to a regular database that
has encrypted data in it. The main differences is in whether the
encryption is one way only (ie. using a md5 hash of a name instead of
the actual name) or reversible (using 3des to encrypt and decrypt the
name). a good example of the former is /etc/passwd or /etc/shadow.

Sarah Tanembaum wrote:
> Hi David, the link you provided is quite interesting. Is such
> database(translucent database) actually exist? Or is it just a concept?
>
> Thanks
>

--
MySQL Perl Mailing List
For list archives: http://lists.mysql.com/perl
To unsubscribe: http://lists.mysql.com/perl?unsub=gcdmp-msql-mysql-modules@m .gmane.org

Re: Secure Database Systems

afaik the term "translucent database" applies to a regular database that
has encrypted data in it. The main differences is in whether the
encryption is one way only (ie. using a md5 hash of a name instead of
the actual name) or reversible (using 3des to encrypt and decrypt the
name). a good example of the former is /etc/passwd or /etc/shadow.

Sarah Tanembaum wrote:
> Hi David, the link you provided is quite interesting. Is such
> database(translucent database) actually exist? Or is it just a concept?
>
> Thanks
>

--
MySQL Perl Mailing List
For list archives: http://lists.mysql.com/perl
To unsubscribe: http://lists.mysql.com/perl?unsub=gcdmp-msql-mysql-modules@m .gmane.org

Re: Secure Database Systems

afaik the term "translucent database" applies to a regular database that
has encrypted data in it. The main differences is in whether the
encryption is one way only (ie. using a md5 hash of a name instead of
the actual name) or reversible (using 3des to encrypt and decrypt the
name). a good example of the former is /etc/passwd or /etc/shadow.

Sarah Tanembaum wrote:
> Hi David, the link you provided is quite interesting. Is such
> database(translucent database) actually exist? Or is it just a concept?
>
> Thanks
>

--
MySQL Perl Mailing List
For list archives: http://lists.mysql.com/perl
To unsubscribe: http://lists.mysql.com/perl?unsub=gcdmp-msql-mysql-modules@m .gmane.org

Re: Secure Database Systems

Sarah Tanembaum wrote:

>
>
>We have 10 computers(5bros, 4sisters, and myself) plus 1 server with I
>maintained. The data should be synchronize/replicate between those
>computers.
>
>Well, so far it is easy, isn't it?
>
>Here's my question:
>
>a) How can I make sure that it secure so only authorized person can
>modify/add/delete the information? Beside transaction logs, are there
>any
>other method to trace any transaction(kind of paper trail)?
>
>Assuming there are 3 step process to one enter the info e.g:
>- One who enter the info (me)
>- One who verify the info(the owner of info)
>- One who verify and then commit the change!
>How can I implement such a process in MySQL and/or PHP or any other web
>language?
>
>b) How can I make sure that no one can tap the info while we are
>entering
>the data in the computer? (our family are scattered within US and
>Canada)
>
>c) Is it possible to securely synchronize/replicate between our
>computers
>using VPN? Does MySQL has this functionality by default?
>
>d) Other secure method that I have not yet mentioned.
>
>Anyone has good ideas on how to implement such a systems?
>
>Thanks
>
>
>
>
>
>
Hi Sarah

This is more of a PHP question than a MySQL question as to my mind
while it is all possible, the bulk of the work would need to be done on
the PHP side. Assuming that you don't have the time to write all the
necessary code from scratch, you might want to look for a
content-management system (CMS) written in PHP and using MySQL that has
some (ideally, all) the functionality that you require. This can serve
as a good foundation and can be tweaked to your relevant requriements. A
good place to start looking for this would be Sourceforge or google.

I also agree with Shawn, that your best bet is to use a single server,
ideally hosted by a hosting company that provides MySQL/PHP. This
removes the need for replication to multiple machines, and you can just
keep a regular backup copy on a local machine - also reduces some of
your security concerns.

Regards

Rory McKinley


--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe: http://lists.mysql.com/mysql?unsub=gcdmg-mysql@m.gmane.org

Re: Secure Database Systems

Rory McKinley wrote:

> Hi Sarah
>
> This is more of a PHP question than a MySQL question as to my mind
> while it is all possible, the bulk of the work would need to be done
> on the PHP side. Assuming that you don't have the time to write all
> the necessary code from scratch, you might want to look for a
> content-management system (CMS) written in PHP and using MySQL that
> has some (ideally, all) the functionality that you require. This can
> serve as a good foundation and can be tweaked to your relevant
> requriements. A good place to start looking for this would be
> Sourceforge or google.


Take a look at http://opensourcecms.com - there you can actually demo
the CMS before you download it. You can definitely work on an existing
CMS and patch it to work with encrypted data storage. I recommend
Mambo, as most of your SQL modifications are localized in one handy file
(DISCLAIMER: I am a Mambo core developer). Maybe there are others that
also take this approach.

> I also agree with Shawn, that your best bet is to use a single server,
> ideally hosted by a hosting company that provides MySQL/PHP. This
> removes the need for replication to multiple machines, and you can
> just keep a regular backup copy on a local machine - also reduces some
> of your security concerns.


This has been discussed over at the NYPHP lists, and one of the ideas
that I came up with was to use the user's password as the key to
encrypt/decrypt all of their data in the database. In the event that
Joe could actually view Sally's data, he wouldn't have her key to
decrypt it so it would have little use. Ditto for h4x0rd00d, as he
would have to brute force the key for every row in the database...

My favourite part of this design is that the 'key' is actually stored as
an MD5 hash in the database as the user's password; and the only time
the server sees it in the clear is when the user logs in. This can be
added to the session (stored on the server, not in a cookie) so that it
is resistant to tampering.

I'm considering this topic for a future article, if you are interested
please contact me off-list ;)

-- Mitch

--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe: http://lists.mysql.com/mysql?unsub=gcdmg-mysql@m.gmane.org

Re: Secure Database Systems

So, we can virtually use any database to do the job. It is really the
function of the program to encrypt(save) and decrypt(read) the sensitive
data.

Does anyone knows such a program that can handle such function?

Thanks


"David Dick" wrote in message
news:40EE5255.8020606@iprimus.com.au...
> afaik the term "translucent database" applies to a regular database that
> has encrypted data in it. The main differences is in whether the
> encryption is one way only (ie. using a md5 hash of a name instead of
> the actual name) or reversible (using 3des to encrypt and decrypt the
> name). a good example of the former is /etc/passwd or /etc/shadow.
>
> Sarah Tanembaum wrote:
> > Hi David, the link you provided is quite interesting. Is such
> > database(translucent database) actually exist? Or is it just a concept?
> >
> > Thanks
> >
>
> --
> MySQL Perl Mailing List
> For list archives: http://lists.mysql.com/perl
> To unsubscribe:
http://lists.mysql.com/perl?unsub=gcdmp-msql-mysql-modules@m .gmane.org
>
>




--
MySQL Perl Mailing List
For list archives: http://lists.mysql.com/perl
To unsubscribe: http://lists.mysql.com/perl?unsub=gcdmp-msql-mysql-modules@m .gmane.org

Re: Secure Database Systems

So, we can virtually use any database to do the job. It is really the
function of the program to encrypt(save) and decrypt(read) the sensitive
data.

Does anyone knows such a program that can handle such function?

Thanks


"David Dick" wrote in message
news:40EE5255.8020606@iprimus.com.au...
> afaik the term "translucent database" applies to a regular database that
> has encrypted data in it. The main differences is in whether the
> encryption is one way only (ie. using a md5 hash of a name instead of
> the actual name) or reversible (using 3des to encrypt and decrypt the
> name). a good example of the former is /etc/passwd or /etc/shadow.
>
> Sarah Tanembaum wrote:
> > Hi David, the link you provided is quite interesting. Is such
> > database(translucent database) actually exist? Or is it just a concept?
> >
> > Thanks
> >
>
> --
> MySQL Perl Mailing List
> For list archives: http://lists.mysql.com/perl
> To unsubscribe:
http://lists.mysql.com/perl?unsub=gcdmp-msql-mysql-modules@m .gmane.org
>
>




--
MySQL Perl Mailing List
For list archives: http://lists.mysql.com/perl
To unsubscribe: http://lists.mysql.com/perl?unsub=gcdmp-msql-mysql-modules@m .gmane.org

Re: Secure Database Systems

So, we can virtually use any database to do the job. It is really the
function of the program to encrypt(save) and decrypt(read) the sensitive
data.

Does anyone knows such a program that can handle such function?

Thanks


"David Dick" wrote in message
news:40EE5255.8020606@iprimus.com.au...
> afaik the term "translucent database" applies to a regular database that
> has encrypted data in it. The main differences is in whether the
> encryption is one way only (ie. using a md5 hash of a name instead of
> the actual name) or reversible (using 3des to encrypt and decrypt the
> name). a good example of the former is /etc/passwd or /etc/shadow.
>
> Sarah Tanembaum wrote:
> > Hi David, the link you provided is quite interesting. Is such
> > database(translucent database) actually exist? Or is it just a concept?
> >
> > Thanks
> >
>
> --
> MySQL Perl Mailing List
> For list archives: http://lists.mysql.com/perl
> To unsubscribe:
http://lists.mysql.com/perl?unsub=gcdmp-msql-mysql-modules@m .gmane.org
>
>




--
MySQL Perl Mailing List
For list archives: http://lists.mysql.com/perl
To unsubscribe: http://lists.mysql.com/perl?unsub=gcdmp-msql-mysql-modules@m .gmane.org

Re: Secure Database Systems

At 06:29 PM 7/8/2004, you wrote:
>Hi David, the link you provided is quite interesting. Is such
>database(translucent database) actually exist? Or is it just a concept?
>
>Thanks

Sarah,
These databases do exist. Transparent (translucent) encryption has
been around for a while (at least on Windows machines). Take a look at
Advantage database from Extended Systems http://advantagedatabase.com. They
have a Windows and Linux version. They use AES to encrypt the data, index,
blobs (including memos). You just enter your password when you want access
to the table, and only your program can see the data. It does the
decryption on a record by record basis in memory only, so no one else who
has access to your machine when you are viewing your data can see any
unencrypted data. There is no need to re-encrypt the data you've changed
because it is done when the record is saved. It's all transparent.

I've found adding encryption does not slow down record access.
Their LAN version (Advantage Local Server:ALS) is free to use and
distribute. Their C/S version (Advantage Database Server:ADS) costs
$. Unfortunately their license agreement does not allow ALS to be used as
a webserver, but you can legally connect from one ALS application to
another ALS application that resides on a webserver (thin client). See
their license agreement for more info. I've had ALS up to 1 million rows
and it is still lightning fast.

By default ALS allows for 5 connected users at a time, but this
can be bumped up to around 20 if you request it. For more users you should
really use their ADS product. Applications are typically written in Delphi
or C++Builder for Windows but they have free ODBC driver and also one that
works with PHP and another for Linux using Borland's Kylix). They also have
a database architect program that has simple query access to the tables
without writing any code. So you can define your tables, enter the data,
and query it all from the data architect program.

It would be nice if MySQL had the same capabilities, because if
someone steals your computer with your MySQL database on it, you're
screwed. If you have your MySQL database on a virtual server, you also
have a security problem. With Advantage they still won't be able to break
into it because each encrypted table can have their own password. Using hex
editors is of no use and like I said, even indexes and blobs are encrypted.
Passwords are not transmitted in the clear.

Mike



--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe: http://lists.mysql.com/mysql?unsub=gcdmg-mysql@m.gmane.org

Re: Secure Database Systems

CPAN is your friend. for example;

http://search.cpan.org/modlist/Security

uru

-Dave

Sarah Tanembaum wrote:
> So, we can virtually use any database to do the job. It is really the
> function of the program to encrypt(save) and decrypt(read) the sensitive
> data.
>
> Does anyone knows such a program that can handle such function?
>
> Thanks
>
>
> "David Dick" wrote in message
> news:40EE5255.8020606@iprimus.com.au...
>
>>afaik the term "translucent database" applies to a regular database that
>> has encrypted data in it. The main differences is in whether the
>>encryption is one way only (ie. using a md5 hash of a name instead of
>>the actual name) or reversible (using 3des to encrypt and decrypt the
>>name). a good example of the former is /etc/passwd or /etc/shadow.
>>
>>Sarah Tanembaum wrote:
>>
>>>Hi David, the link you provided is quite interesting. Is such
>>>database(translucent database) actually exist? Or is it just a concept?
>>>
>>>Thanks
>>>
>>
>>--
>>MySQL Perl Mailing List
>>For list archives: http://lists.mysql.com/perl
>>To unsubscribe:
>
> http://lists.mysql.com/perl?unsub=gcdmp-msql-mysql-modules@m .gmane.org
>
>>
>
>
>
>

--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe: http://lists.mysql.com/mysql?unsub=gcdmg-mysql@m.gmane.org

Re: Secure Database Systems

CPAN is your friend. for example;

http://search.cpan.org/modlist/Security

uru

-Dave

Sarah Tanembaum wrote:
> So, we can virtually use any database to do the job. It is really the
> function of the program to encrypt(save) and decrypt(read) the sensitive
> data.
>
> Does anyone knows such a program that can handle such function?
>
> Thanks
>
>
> "David Dick" wrote in message
> news:40EE5255.8020606@iprimus.com.au...
>
>>afaik the term "translucent database" applies to a regular database that
>> has encrypted data in it. The main differences is in whether the
>>encryption is one way only (ie. using a md5 hash of a name instead of
>>the actual name) or reversible (using 3des to encrypt and decrypt the
>>name). a good example of the former is /etc/passwd or /etc/shadow.
>>
>>Sarah Tanembaum wrote:
>>
>>>Hi David, the link you provided is quite interesting. Is such
>>>database(translucent database) actually exist? Or is it just a concept?
>>>
>>>Thanks
>>>
>>
>>--
>>MySQL Perl Mailing List
>>For list archives: http://lists.mysql.com/perl
>>To unsubscribe:
>
> http://lists.mysql.com/perl?unsub=gcdmp-msql-mysql-modules@m .gmane.org
>
>>
>
>
>
>

--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe: http://lists.mysql.com/mysql?unsub=gcdmg-mysql@m.gmane.org

Re: Secure Database Systems

CPAN is your friend. for example;

http://search.cpan.org/modlist/Security

uru

-Dave

Sarah Tanembaum wrote:
> So, we can virtually use any database to do the job. It is really the
> function of the program to encrypt(save) and decrypt(read) the sensitive
> data.
>
> Does anyone knows such a program that can handle such function?
>
> Thanks
>
>
> "David Dick" wrote in message
> news:40EE5255.8020606@iprimus.com.au...
>
>>afaik the term "translucent database" applies to a regular database that
>> has encrypted data in it. The main differences is in whether the
>>encryption is one way only (ie. using a md5 hash of a name instead of
>>the actual name) or reversible (using 3des to encrypt and decrypt the
>>name). a good example of the former is /etc/passwd or /etc/shadow.
>>
>>Sarah Tanembaum wrote:
>>
>>>Hi David, the link you provided is quite interesting. Is such
>>>database(translucent database) actually exist? Or is it just a concept?
>>>
>>>Thanks
>>>
>>
>>--
>>MySQL Perl Mailing List
>>For list archives: http://lists.mysql.com/perl
>>To unsubscribe:
>
> http://lists.mysql.com/perl?unsub=gcdmp-msql-mysql-modules@m .gmane.org
>
>>
>
>
>
>

--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe: http://lists.mysql.com/mysql?unsub=gcdmg-mysql@m.gmane.org