Database Protection



Although Network Administrator can use the current techniques to prevent unauthorized access to that data, hacker also can get through the limitation, and get the database data sometimes. Here are just some of the ways:

  1. Break through the firewall
  2. Admin choosing kid's birthday as a login password
  3. Lost laptop that contains replicated data
  4. Neglecting to remove a login when someone quits or is fired
  5. Accidentally sharing the wrong volume
  6. Employee copying files to a removable drive before they quit or are fired
  7. Stealing a backup disk or tape


If hacker can get the raw database from the server, desktop, laptop, backup media, etc., the control will be completely lost!  If the raw database file is a SQL Server database, hacker can simply attach the database to his SQL Server and will have the complete access. If the data is stored in a desktop database, such as DBF or MDB, it is even easier for hacker. He can simply use Microsoft Access or any variety of file browsers to see the raw data.

So now, how to protect our database?

Currently the built-in encryptions of tools such as MS Access are not high secured, and SQL Server does offer encryption for stored procedures and scripts, however if we surf the web and download one of many free programs that can decrypt “Microsoft encrypted” stored procedures in an instant.
Current Market and Product Status
Currently, in our product, there is no available product which can protect database and its script. In GrandDog, we only supply one sample interface for Oracle. In addition, our competitors like Hasp, Rockey also have no good solution for it.

Looking at the present database protection market, there are only productions based on software which can not achieve the high security level on the theory, like http://www.netlib.com/index.html and http://www.xpcrypt.com/.

So from marketing and competitor side, we have the business opportunities to develop one new product based on the hardware.
Solution for Requirement
Based on the marketing requirement, we can develop one product based on license model which can facilitate SHK License, and implement the following features:

  •   Encrypt column and row data
  •   Protect total database file
  •   Encrypt some important Transact-SQL script

This solution will allow database administrators and developers to encrypt data without having to invent and develop an entire key management system themselves. It will supply some plug-in modules like as trigger and procedure to encrypt some sensitive data within database automatically without having to change applications. It also can provide a direct interface to encryption functions that allow database administrators and developers to design and build their own encryption features.
Conclusions
The above propose is just the draft propose, some features and details needs more effort to complete it. I believe it will bring us the big revenues from the new and big market if we develop such kind of product based on our technologies and advantages.

  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值