Poison Records in Acra â Database Honeypots for Intrusion Detection
Poison Records in Acra Intro When naming our special type of data containers created for raising an alarm within Acra-powered infrastructures, we were sure weâve seen the term âpoison recordsâ used elsewhere in the same context. This particular technique in out of the box solution was first offered by us (if it wasnât, let us know! We'd like to know more about their backstory :)). In a way, poison records are very much like passive honeypots, but their mechanics of work is completely different.
ACRA 0.82.0 IS OUT!
Summer moves on, Acra improves. This corridor of eclipses and Mercury retrograde gave life to the new version of Acra. Whole lotta updates to the already existing infrastructural elements. What else is new? AcraTranslator, for that matter â a lightweight server that receives AcraStructs stored anywhere and returns the decrypted data. Previously Acra was closely tied to the database infrastructure, but AcraTranslator is a tool that allows storing AcraStructs wherever it is convenient â as cells in a database or as files in a file storage (local or cloud storage, like AWS S3).
Social Events of Spring-Summer 2018 for Cossack Labs
Late April throughout late June of 2018 was quite a hot time for the Cossack Labs team as we were actively developing our products, releasing feature after feature for Acra and Themis and also participated, spoken at, and hosted a number of conferences, meetups, and workshops. Want to see what it takes for an R&D team to actively participate in a conference circuit? Read on. 21/04 BSides Kyiv, Ukraine The BSides Kyiv security conference kicked off the series of social events for Cossack Labs in this quarter.
MEET ACRA 0.81.0
ACRA 0.81.0 RELEASE All the terrible things like lunar and solar eclipses, Mercury retrogrades, and PHP code refactoring will come later â this Friday is fully dedicated to the new release of Acra. In Acra 0.81.0 weâve concentrated our efforts on improving the overall SQL handling, especially when it comes to SQL injection prevention, and teaching Acraâs âfirewallâ AcraCensor a few new tricks. If youâve had troubles integrating some 3rd party WAFs into your infrastructure, Acra now might offer you a simpler, trouble-free solution.
ACRA 0.80.0 IS HERE
ACRA 0.80.0 RELEASE This release is dedicated to usability and unification. Many components of Acra have been renamed. We believe that the updated names will decrease confusion about the components' functions and will make Acra's setup and usage process easier. The new names also align better with the common package naming practices. We couldnât find a day inauspicious enough to release Acra 0.80.0, but decided that that last day of spring is still quite special :) Here are the changes in the new release:
How to reduce Docker image size (Example)
Need for Docker image reducing To provide convenient delivery and faster deployment of our tools, just like everybody else â we use Docker. This article describes our experience of using containers for distribution of our product Acra (database encryption suite) and focuses on the method we used to reduce the size of Docker images approximately by 62-64 times. Itâs not like weâve made a revolutionary discovery, but as developers, we found it interesting to trace the steps from the moment of packaging a product into a container to trimming it down to a small Docker image.
ACRA 0.77.0 RELEASE
ACRA 0.77.0 RELEASE Sticking to our tradition of rolling out new releases on conspicuous dates, weâre presenting Acra 0.77.0 on Friday 13th, Mercury retrograde. The changelog for the new Acra release was 3 pages long, so weâve decided to spare you the details here (but you can always read the changelog in full in the Cossack Labs GitHub repository if you want to). Here are the main changes in the new release:
Moving to OpenSSL 1.1.0 â How We Did It
This article was published in 2018 about R&D work, which resulted in stable production release of Themis that now uses OpenSSL 1.1.1g If youâre a developer and youâre dealing with cryptography for your app, consider using high-level cryptographic libraries like Themis instead of OpenSSL. No need to struggle with OpenSSL if your goal is to protect usersâ data. Moving to OpenSSL 1.1.0 Besides introducing breaking changes through abandoning backward compatibility on x64 systems, the recent version of Themis (Themis 0.
ACRA 0.76 IS OUT NOW!
ACRA 0.76 RELEASE The spring and change are in the air! After a year in testing by early adopters (Acra 0.75 was released 1 year 5 days ago), weâre starting to push new features into the open-source version of Acra. 0.76 is a stability release, which unifies a lot of things âunder the hoodâ: module interfaces, test automation, API, connection schemes â everything we need to gradually unveil & plenty of new exciting features weâve prepared based on the user feedback.
Releasing Themis 0.10.0
THEMIS 0.10.0 RELEASE We couldnât hold out till St. Valentineâs Day, so weâre releasing the love and all the hard work put into the new version of Themis today. Themis 0.10.0 is out and there is no turning back as this release introduces breaking changes. If you are using Themis on x64 systems, consider upgrading every Themis library/wrapper you were using to 0.10.0. Incompatibility issues may arise between previous Themis versions and 0.