Database security tag

database security

Cossack Labs Blog

23 Jul 2019

Secure Search Over Encrypted Data

What is searchable encryption and what are the tools that allow performing secure search over encrypted data. A brief overview.

database security cryptography Acra searchable encryption

Read more...


16 Apr 2019

Acra on DigitalOcean Marketplace

Acra encryption suite is now available as 1-Click App running in a Droplet on DigitalOcean Marketplace.

products Acra DigitalOcean database security Web

Read more...


4 Apr 2019

Building Defence in Depth for Your Data Using Acra

How to protect the data in your app infrastructure using the defence in depth approach, explained on the example of Acra encryption suite.

database security Acra applied security development SQL Web backend security series postgresql

Read more...


5 Mar 2019

How We Built an SQL Firewall — AcraCensor

Preventing SQL injections is troublesome: WAF is easy to bypass and a good SQL firewall is hard to find. We ended up building our own open source SQL firewall.This is how we did it.

products database security intrusion detection SQL firewall postgresql

Read more...


13 Feb 2019

Preventing SQL Injections When WAF’s Not Enough

Using SQL firewall to protect database against SQL injections at scale as compared to WAF.

applied security database security Acra firewall SQL backend security series

Read more...


15 Nov 2018

What Do We Really Need to Encrypt. Cheatsheet

What data is sensitive and needs to be encrypted according to the modern data privacy regulations like GDPR, HIPAA, FFIEC, etc.? This is a cheat sheet and an explanation of how we approach answering these questions.

applied security howto database security GDPR

Read more...


20 Sep 2018

GDPR for Engineers: Implementing Rights and Security Demands

Mapping data privacy regulation to changes in database structure, updates in DevOps practices, backups, and restricted processing. A methodical developer’s perspective.

applied security database security GDPR

Read more...


16 Aug 2018

Poison Records in Acra – Database Honeypots for Intrusion Detection

How we detect massive data leaks and firewall exfiltration in Acra.

applied security database security Acra intrusion detection

Read more...


21 Dec 2016

Themis database modules

In an ongoing effort to make Themis functions available anywhere we (and potential users) might need them, we're starting to release Themis wrappers for popular databases. This post outlines the first two - for Redis and PostgreSQL databases.

Themis redis postgresql database security releases

Read more...


13 Dec 2016

12 and 1 ideas on how to enhance backend data security

Previously, we’ve talked about classic design patterns in backend data security and about key management goals and techniques. In this article, we'll discuss how modern approaches differ and shed light on our solutions. Updated in 2019

applied security backend security series database security

Read more...

All posts

Previous Previous

Copyright © 2014-2019 Cossack Labs Limited
Cossack Labs is a privately-held British company with a team of data security experts based in Kyiv, Ukraine.