For Commercial ISVs and OEMs: Securely and Seamlessly Deploy MySQL with Your Application

MySQL security best practices often assume restricted access to the physical server and restrictive file system privileges. However, OEM's and ISV's who bundle and distribute MySQL with their applications have no control over where the application is installed. In fact, the application is often deployed on workstations with unrestricted access to the underlying data files.

Common security vulnerabilities: This session will address two common security vulnerabilities that assume unrestricted access to the underlying MySQL grant and data files and will cover the following:

Three common strategies to prevent data file tampering:

• Encryption
• Obscurity for InnoDB data files
• Application awareness of database tampering

Deployment options:

• Silent install
• Launching the MySQL executable from a command-line
• Initializing an empty database
• MySQL's deeply embedded library (libmysqld)
• Connector/MXJ Java utility package

WHO:

• Lee Stigile, MySQL Senior Engineer, Sun Microsystems – Database Group
• John David Duncan, MySQL Senior Engineer, Sun Microsystems – Database Group

WHAT:

For Commercial ISVs and OEMs: Securely and Seamlessly Deploy MySQL with Your Application web presentation.

WHERE:

Simply access the web seminar from the comfort of your own office.

Si vous possédez déjà un compte MySQL, gagnez du temps en vous loggant maintenant.