Why Your Encrypted Database Isn't Secure - Practical Attacks Against Encrypted OSS Databases
linux.conf.au via YouTube
Get 20% off all career paths from fullstack to AI
The Fastest Way to Become a Backend Developer Online
Overview
Google, IBM & Meta Certificates – 40% Off
One plan covers every Professional Certificate on Coursera.
Unlock All Certificates
Explore the limitations of encrypted databases and learn practical attacks against them in this 34-minute conference talk from linux.conf.au. Discover why encrypting data in relational databases like PostgreSQL and MariaDB may not be as secure as you think. Examine recent research findings from Cornell, Stanford, and the University of Illinois on vulnerabilities in encrypted databases. Learn about potential risks, including direct memory access, deterministic encryption, chosen plaintext attacks, and reidentification attacks. Gain insights into mitigating these risks while maintaining performance, scalability, and usability. Consider alternative approaches to address security concerns and understand how to incorporate these factors into your threat model.
Syllabus
Intro
Practical Attacks on Encrypted Databases
Why encrypt the database?
Transparent Data Encryption
Direct memory access
Deterministic Encryption
Chosen Plaintext Attack
Reidentification Attack
Taught by
linux.conf.au