Acra

Acra

Modern database encryption suite
  1. 1 Acra encryption/intrusion detection daemon
  2. 2 Easy integration with modern application
  3. 3 Acra does not affect database behavior

Modern database encryption suite

Acra is database security suite, which protects you against data leaks and many typical application threats through strong selective encryption and intrusion detection capabilities. Acra is engineered with modern development practices in mind. It is open-source, Apache 2 licensed.

Get going quickly. Just deploy Acra components across your infrastructure with convenient scenarios, point your app to Acra instead of direct access to your PostgreSQL database and you're done. Now you can programmatically choose, which data to encrypt, and which to decrypt upon requesting it from DB. Acra will take care of the rest, protecting the data and constantly watching the request flow for suspicious activity.

Acra works best for

  • sensitive data in app
  • lots of microservices
  • autosharded databases
  • burning deadlines

Acra gives you

Full granular control, easily:
Choose what records you classify as sensitive. Read and write them where you need, the way you want, with minimized attack surface.
Convenient infrastructure:
Built with modern ops in mind. Easy to deploy, easy to control. Flexible architecture enables wide range of integration scenarios.
Strong security:
Security scheme, which limits attack surface for your sensitive record to one secure container in a compartmented, dedicated VM.
Developer-oriented:
Control what you need, straight from your code. Delegate the infrastructure to ops, and hard security / cryptographic decisions to us.

Available for:

postgresqllinuxpythongogo


Curious? Read more in the blog post about Acra release

Copyright © 2014-2017 Cossack Labs Limited
Cossack Labs is a privately-held British company with a team of data security experts based in Kyiv, Ukraine.