- 1 Acra encryption/intrusion detection daemon
- 2 Easy integration with modern application
- 3 Acra does not affect database behavior
Modern database encryption suite
Acra is database security suite, which protects you against data leaks and many typical application threats through strong selective encryption and intrusion detection capabilities. Acra is engineered with modern development practices in mind. It is open-source, Apache 2 licensed.
Get going quickly. Just deploy Acra components across your infrastructure with convenient scenarios, point your app to Acra instead of direct access to your PostgreSQL database and you're done. Now you can programmatically choose, which data to encrypt, and which to decrypt upon requesting it from DB. Acra will take care of the rest, protecting the data and constantly watching the request flow for suspicious activity.
Acra works best for
- sensitive data in app
- lots of microservices
- autosharded databases
- burning deadlines
Acra gives you
Choose what records you classify as sensitive. Read and write them where you need, the way you want, with minimized attack surface.
Built with modern ops in mind. Easy to deploy, easy to control. Flexible architecture enables wide range of integration scenarios.
Security scheme, which limits attack surface for your sensitive record to one secure container in a compartmented, dedicated VM.
Control what you need, straight from your code. Delegate the infrastructure to ops, and hard security / cryptographic decisions to us.