jouell

Asked: 2018-02-27 15:26:38 +0800 CST2018-02-27 15:26:38 +0800 CST 2018-02-27 15:26:38 +0800 CST

What is the data flow if using an HSM with an encrypted Database

How would someone implement an HSM if they wanted to encrypt all the tables of a database for example in a 3-tier environment?

Does the app server query the DB, get the encrypted blob and ask the hsm to decrypt it? That seems like a lot of data for the HSM to pass back and forth.

1 Answers

Voted

DanM
2018-04-05T12:15:38+08:002018-04-05T12:15:38+08:00
Why not encrypt the data in front of the database in a proxy, then have the proxy engage the HSM which is managing the root key? This way the proxy can be used for other purposes as well.
0

What is the data flow if using an HSM with an encrypted Database

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?