Bookmarks@MarkupDancing
Tags — database
See what's hot on Bookmarks@MarkupDancing, or go to Poppular Tags.
CryptDB
saved on 2011-12-21 14:18:26
Online applications are vulnerable to theft of sensitive information because adversaries can exploit software bugs to gain access to private data, and because curious or malicious administrators may capture and leak data. CryptDB is a system that provides practical and provable confidentiality in the face of these attacks for applications backed by SQL databases. It works by executing SQL queries over encrypted data using a collection of efficient SQL-aware encryption schemes. CryptDB can also chain encryption keys to user passwords, so that a data item can be decrypted only by using the password of one of the users with access to that data. As a result, a database administrator never gets access to decrypted data, and even if all servers are compromised, an adversary cannot decrypt the data of any user who is not logged in. An analysis of a trace of 126 million SQL queries from a production MySQL server shows that CryptDB can support operations over encrypted data for 99.5% of the 128,840 columns seen in the trace. Our evaluation shows that CryptDB has low overhead, reducing throughput by 14.5% for phpBB, a web forum application, and by 26% for queries from TPC-C, compared to unmodified MySQL. Chaining encryption keys to user passwords requires 11-13 unique schema annotations to secure more than 20 sensitive fields and 2-7 lines of source code changes for three multi-user web applications.
sqlmap: automatic SQL injection and database takeover tool
saved on 2011-08-24 16:58:44
sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from the database, to accessing the underlying file system and executing commands on the operating system via out-of-band connections.
Introduction to Databases - Stanford University
saved on 2011-08-16 14:54:20
Databases are incredibly prevalent -- they underlie technology used by most people every day if not every hour. Databases reside behind a huge fraction of websites; they're a crucial component of telecommunications systems, banking systems, video games, and just about any other software system or electronic device that maintains some amount of persistent information. In addition to persistence, database systems provide a number of other properties that make them exceptionally useful and convenient: reliability, efficiency, scalability, concurrency control, data abstractions, and high-level query languages. Databases are so ubiquitous and important that computer science graduates frequently cite their database class as the one most useful to them in their industry or graduate-school careers.
leveldb - a fast and lightweight key/value database library - Google Project Hosting
saved on 2011-07-29 11:35:20
LevelDB is a fast key-value storage library written at Google that provides an ordered mapping from string keys to string values.
データベース・セキュリティ・コンソーシアム(DataBase Security Consortium) 成果物
saved on 2011-06-26 22:08:08
ログを統合的に扱うには、高度な分析能力が求められるとともに、コンプライアンスやセキュリティだけでなくシステム管理全般の広い知識が必要となります。同時にログそのものが機密情報であり、統合することによって、より機密性が高まります。 本ガイドラインでは統合ログ管理に求められる機能・要件を定義すると共に、導入・運用に関わるサービスの内容やスキル等を提言します。
Choosing NoSQL For The Right Reason « Software Quality is Quality of Life
saved on 2011-05-17 18:13:20
It’s about choosing the right tool for the job. But I can’t get rid of the feeling that NoSQL is too often taken for the wrong reasons—query response time, in particular. No doubt, NoSQL is a better fit for some applications. However, an index review would often solve the performance problems within a few days. SQL is no better than NoSQL, nor vice-versa. Because the question is not what’s better. The question is what is a better fit for a particular problem.
MongoDB - Wikipedia, the free encyclopedia
saved on 2011-01-12 18:38:30
MongoDB (from "humongous") is an open source, scalable, high-performance, schema-free, document-oriented database written in the C++ programming language.[1] MongoDB combines the functionality of key-value stores - which are fast and highly scalable - and traditional RDBMS systems - which provide rich queries and deep functionality. It is designed for problems that are difficult to be solved by traditional RDBMSs, for example databases spanning many servers. The database is document-oriented so it manages collections of JSON-like documents. Many applications can, thus, model data in a more natural way, as data can be nested in complex hierarchies and still be query-able and indexable.
Popular Tags
- programming
- security
- python
- development
- javascript
- openid
- design
- PHP
- database
- WebDesign
- software
- performance
- framework
- Erlang
- reference
- Haskell
- identity
- password
- privacy
- Usability
- business
- philosophy
- Web
- network
- language
- architecture
- algorithm
- c
- library
- mathematics
- management
- authentication
- functional
- opensource
- tools
- cryptography
- encryption
- AJAX
- algorithms
- Internet
- testing
- css
- math
- blog
- code
- History
- server
- api
- java