5 Mar 2019
Preventing SQL injections is troublesome: WAF is easy to bypass and a good SQL firewall is hard to find. We ended up building our own open source SQL firewall.This is how we did it.
13 Feb 2019
Using SQL firewall to protect database against SQL injections at scale as compared to WAF.
22 Jan 2019
Blockchain solves several technical challenges. Sadly, while it can be helpful, using it won't make your product automatically secure or GDPR-complaint.
31 Dec 2018
Seven releases of Acra, Customer Success Program and security training services, a whole new Docserver, conference talks all over the world, and much more.
20 Dec 2018
We are extremely grateful to our open-source contributors and for the feedback from select users and want to recognize and celebrate their input in 2018!
27 Nov 2018
Contrary to popular opinion, security consulting is not limited to pentests and compliance audits. In this article, we’ve outlined the 4 main security-related business risks and charted out the way to help you choose the consulting type that best suits your business.
22 Nov 2018
A battle-tested explanation of why tracing is a very useful technique you can benefit from in your projects. A story from the trenches of implementing distributed tracing in our Acra data security suite.
15 Nov 2018
What data is sensitive and needs to be encrypted according to the modern data privacy regulations like GDPR, HIPAA, FFIEC, etc.? This is a cheat sheet and an explanation of how we approach answering these questions.
9 Nov 2018
The release of Acra version 0.84.0 marks the new frontier for the data security suite.
28 Sep 2018
Key rotation made easy — if client application is compromised, the new AcraRotate utility lets you update storage keys and re-encrypt the data. SQL filtering got more flexible with new 6 patterns (including SUBQUERY and LIST_OF_VALUES), allowing you to set up accepted queries very carefully and block malicious requests. Read the full post for more details on how Acra 0.83.0 helps protecting your databases.