Submit Search
Upload
MySQL Security + GDPR - 2018 MySQL Days
•
1 like
•
812 views
Mark Swarbrick
Follow
MySQL Security + GDPR - 2018 MySQL Days
Read less
Read more
Technology
Report
Share
Report
Share
1 of 35
Download now
Download to read offline
Recommended
MySQL + GDPR
MySQL + GDPR
Mark Swarbrick
TLV - MySQL Security overview
TLV - MySQL Security overview
Mark Swarbrick
TLV - MySQL Enterprise Edition + Cloud
TLV - MySQL Enterprise Edition + Cloud
Mark Swarbrick
MySQL GDPR Whitepaper
MySQL GDPR Whitepaper
Vlad Alexandru
TLV - Whats new in MySQL 8
TLV - Whats new in MySQL 8
Mark Swarbrick
Percona Live - Dublin 03 ee + cloud
Percona Live - Dublin 03 ee + cloud
Mark Swarbrick
MySQL HA
MySQL HA
Mark Swarbrick
Percona Live - Dublin 02 security + tuning
Percona Live - Dublin 02 security + tuning
Mark Swarbrick
Recommended
MySQL + GDPR
MySQL + GDPR
Mark Swarbrick
TLV - MySQL Security overview
TLV - MySQL Security overview
Mark Swarbrick
TLV - MySQL Enterprise Edition + Cloud
TLV - MySQL Enterprise Edition + Cloud
Mark Swarbrick
MySQL GDPR Whitepaper
MySQL GDPR Whitepaper
Vlad Alexandru
TLV - Whats new in MySQL 8
TLV - Whats new in MySQL 8
Mark Swarbrick
Percona Live - Dublin 03 ee + cloud
Percona Live - Dublin 03 ee + cloud
Mark Swarbrick
MySQL HA
MySQL HA
Mark Swarbrick
Percona Live - Dublin 02 security + tuning
Percona Live - Dublin 02 security + tuning
Mark Swarbrick
MySQL Security Best Practises
MySQL Security Best Practises
Mark Swarbrick
MySQL Enterprise Edition
MySQL Enterprise Edition
Mark Swarbrick
MySQL Enterprise Monitor 3
MySQL Enterprise Monitor 3
Mark Swarbrick
Why MySQL High Availability Matters
Why MySQL High Availability Matters
Mark Swarbrick
MySQL as a Document Store
MySQL as a Document Store
Mark Swarbrick
No sql from the web’s favourite relational database MySQL
No sql from the web’s favourite relational database MySQL
Mark Swarbrick
Developing MySQL applications in the Cloud
Developing MySQL applications in the Cloud
Mark Swarbrick
Percona Live - Dublin 01 my sql ha-mysql-clusters
Percona Live - Dublin 01 my sql ha-mysql-clusters
Mark Swarbrick
2016 MySQL State of the Dolphin
2016 MySQL State of the Dolphin
Mark Swarbrick
Oracle MySQL Cloud Service
Oracle MySQL Cloud Service
Mark Swarbrick
Oow MySQL Whats new in security overview sept 2017 v1
Oow MySQL Whats new in security overview sept 2017 v1
Mark Swarbrick
MySQL Enterprise Cloud
MySQL Enterprise Cloud
Mark Swarbrick
MySQL London Tech Tour March 2015 - Big Data
MySQL London Tech Tour March 2015 - Big Data
Mark Swarbrick
Why Your Customers Care About Compliance and You Should Too
Why Your Customers Care About Compliance and You Should Too
Amazon Web Services
Customized HIPAA Training Based on the Job Role of the Individuals
Customized HIPAA Training Based on the Job Role of the Individuals
HIPAA Training
Application Development with Oracle Database
Application Development with Oracle Database
gvenzl
Health Care Certified Hosting in France
Health Care Certified Hosting in France
Jorg Geerlings
AUSOUG Analytics Update - Nov 14 2018
AUSOUG Analytics Update - Nov 14 2018
Jason Lowe
IRISSCON 2014 Privacy Cloud Computing
IRISSCON 2014 Privacy Cloud Computing
Paul Hogan
Flare - Connecting Your Organization With Its Information
Flare - Connecting Your Organization With Its Information
Iman Ruth Ali, CL, ACB
3 Guide MySQL Cloud Service Database Access
3 Guide MySQL Cloud Service Database Access
Virve Kettunen
2 Guide MySQL Cloud Service Provisioning.
2 Guide MySQL Cloud Service Provisioning.
Virve Kettunen
More Related Content
What's hot
MySQL Security Best Practises
MySQL Security Best Practises
Mark Swarbrick
MySQL Enterprise Edition
MySQL Enterprise Edition
Mark Swarbrick
MySQL Enterprise Monitor 3
MySQL Enterprise Monitor 3
Mark Swarbrick
Why MySQL High Availability Matters
Why MySQL High Availability Matters
Mark Swarbrick
MySQL as a Document Store
MySQL as a Document Store
Mark Swarbrick
No sql from the web’s favourite relational database MySQL
No sql from the web’s favourite relational database MySQL
Mark Swarbrick
Developing MySQL applications in the Cloud
Developing MySQL applications in the Cloud
Mark Swarbrick
Percona Live - Dublin 01 my sql ha-mysql-clusters
Percona Live - Dublin 01 my sql ha-mysql-clusters
Mark Swarbrick
2016 MySQL State of the Dolphin
2016 MySQL State of the Dolphin
Mark Swarbrick
Oracle MySQL Cloud Service
Oracle MySQL Cloud Service
Mark Swarbrick
Oow MySQL Whats new in security overview sept 2017 v1
Oow MySQL Whats new in security overview sept 2017 v1
Mark Swarbrick
MySQL Enterprise Cloud
MySQL Enterprise Cloud
Mark Swarbrick
MySQL London Tech Tour March 2015 - Big Data
MySQL London Tech Tour March 2015 - Big Data
Mark Swarbrick
Why Your Customers Care About Compliance and You Should Too
Why Your Customers Care About Compliance and You Should Too
Amazon Web Services
Customized HIPAA Training Based on the Job Role of the Individuals
Customized HIPAA Training Based on the Job Role of the Individuals
HIPAA Training
Application Development with Oracle Database
Application Development with Oracle Database
gvenzl
Health Care Certified Hosting in France
Health Care Certified Hosting in France
Jorg Geerlings
AUSOUG Analytics Update - Nov 14 2018
AUSOUG Analytics Update - Nov 14 2018
Jason Lowe
IRISSCON 2014 Privacy Cloud Computing
IRISSCON 2014 Privacy Cloud Computing
Paul Hogan
Flare - Connecting Your Organization With Its Information
Flare - Connecting Your Organization With Its Information
Iman Ruth Ali, CL, ACB
What's hot
(20)
MySQL Security Best Practises
MySQL Security Best Practises
MySQL Enterprise Edition
MySQL Enterprise Edition
MySQL Enterprise Monitor 3
MySQL Enterprise Monitor 3
Why MySQL High Availability Matters
Why MySQL High Availability Matters
MySQL as a Document Store
MySQL as a Document Store
No sql from the web’s favourite relational database MySQL
No sql from the web’s favourite relational database MySQL
Developing MySQL applications in the Cloud
Developing MySQL applications in the Cloud
Percona Live - Dublin 01 my sql ha-mysql-clusters
Percona Live - Dublin 01 my sql ha-mysql-clusters
2016 MySQL State of the Dolphin
2016 MySQL State of the Dolphin
Oracle MySQL Cloud Service
Oracle MySQL Cloud Service
Oow MySQL Whats new in security overview sept 2017 v1
Oow MySQL Whats new in security overview sept 2017 v1
MySQL Enterprise Cloud
MySQL Enterprise Cloud
MySQL London Tech Tour March 2015 - Big Data
MySQL London Tech Tour March 2015 - Big Data
Why Your Customers Care About Compliance and You Should Too
Why Your Customers Care About Compliance and You Should Too
Customized HIPAA Training Based on the Job Role of the Individuals
Customized HIPAA Training Based on the Job Role of the Individuals
Application Development with Oracle Database
Application Development with Oracle Database
Health Care Certified Hosting in France
Health Care Certified Hosting in France
AUSOUG Analytics Update - Nov 14 2018
AUSOUG Analytics Update - Nov 14 2018
IRISSCON 2014 Privacy Cloud Computing
IRISSCON 2014 Privacy Cloud Computing
Flare - Connecting Your Organization With Its Information
Flare - Connecting Your Organization With Its Information
Similar to MySQL Security + GDPR - 2018 MySQL Days
3 Guide MySQL Cloud Service Database Access
3 Guide MySQL Cloud Service Database Access
Virve Kettunen
2 Guide MySQL Cloud Service Provisioning.
2 Guide MySQL Cloud Service Provisioning.
Virve Kettunen
MySQL Security & GDPR
MySQL Security & GDPR
Mark Swarbrick
MySQL Clusters
MySQL Clusters
Mark Swarbrick
MySQL Group Replication
MySQL Group Replication
Mark Swarbrick
Oracle’s Strategy for Cloud User Experiences
Oracle’s Strategy for Cloud User Experiences
Getting value from IoT, Integration and Data Analytics
MySQL Enterprise Cloud
MySQL Enterprise Cloud
Mark Swarbrick
Next Generation Data Center Strategies
Next Generation Data Center Strategies
Venkat Nambiyur
Overview Oracle Identity Management tijdens AMIS Simplified Security seminar
Overview Oracle Identity Management tijdens AMIS Simplified Security seminar
Getting value from IoT, Integration and Data Analytics
[2015 Oracle Cloud Summit] 9. SCM Cloud -SCM 클라우드를 통한 Value Chain 최적화
[2015 Oracle Cloud Summit] 9. SCM Cloud -SCM 클라우드를 통한 Value Chain 최적화
Oracle Korea
Business Intelligence Challenge, Oracle, Doug Tait, TADSummit
Business Intelligence Challenge, Oracle, Doug Tait, TADSummit
Alan Quayle
Using Oracle Real Application Clusters (RAC) in Database as a Service
Using Oracle Real Application Clusters (RAC) in Database as a Service
Jean-Philippe PINTE
The Rise of Adaptive Marketing
The Rise of Adaptive Marketing
Demandbase
Oracle Solaris Cloud Management and Deployment with OpenStack
Oracle Solaris Cloud Management and Deployment with OpenStack
OTN Systems Hub
Securing Corporate Applications and Data on Personal Devices
Securing Corporate Applications and Data on Personal Devices
Artur Alves
TDC2018SP | Trilha NoSQL - Tecnicas avancadas utilizadas por redes sociais qu...
TDC2018SP | Trilha NoSQL - Tecnicas avancadas utilizadas por redes sociais qu...
tdc-globalcode
Chicago EPM Day-Excellence in Consolidations with HFM
Chicago EPM Day-Excellence in Consolidations with HFM
Alithya
Oracle cmg15
Oracle cmg15
Kellyn Pot'Vin-Gorman
MySQL InnoDB + NDB Cluster - 2018 MySQL Days
MySQL InnoDB + NDB Cluster - 2018 MySQL Days
Mark Swarbrick
Oracle cloud, private, public and hybrid
Oracle cloud, private, public and hybrid
Johan Louwers
Similar to MySQL Security + GDPR - 2018 MySQL Days
(20)
3 Guide MySQL Cloud Service Database Access
3 Guide MySQL Cloud Service Database Access
2 Guide MySQL Cloud Service Provisioning.
2 Guide MySQL Cloud Service Provisioning.
MySQL Security & GDPR
MySQL Security & GDPR
MySQL Clusters
MySQL Clusters
MySQL Group Replication
MySQL Group Replication
Oracle’s Strategy for Cloud User Experiences
Oracle’s Strategy for Cloud User Experiences
MySQL Enterprise Cloud
MySQL Enterprise Cloud
Next Generation Data Center Strategies
Next Generation Data Center Strategies
Overview Oracle Identity Management tijdens AMIS Simplified Security seminar
Overview Oracle Identity Management tijdens AMIS Simplified Security seminar
[2015 Oracle Cloud Summit] 9. SCM Cloud -SCM 클라우드를 통한 Value Chain 최적화
[2015 Oracle Cloud Summit] 9. SCM Cloud -SCM 클라우드를 통한 Value Chain 최적화
Business Intelligence Challenge, Oracle, Doug Tait, TADSummit
Business Intelligence Challenge, Oracle, Doug Tait, TADSummit
Using Oracle Real Application Clusters (RAC) in Database as a Service
Using Oracle Real Application Clusters (RAC) in Database as a Service
The Rise of Adaptive Marketing
The Rise of Adaptive Marketing
Oracle Solaris Cloud Management and Deployment with OpenStack
Oracle Solaris Cloud Management and Deployment with OpenStack
Securing Corporate Applications and Data on Personal Devices
Securing Corporate Applications and Data on Personal Devices
TDC2018SP | Trilha NoSQL - Tecnicas avancadas utilizadas por redes sociais qu...
TDC2018SP | Trilha NoSQL - Tecnicas avancadas utilizadas por redes sociais qu...
Chicago EPM Day-Excellence in Consolidations with HFM
Chicago EPM Day-Excellence in Consolidations with HFM
Oracle cmg15
Oracle cmg15
MySQL InnoDB + NDB Cluster - 2018 MySQL Days
MySQL InnoDB + NDB Cluster - 2018 MySQL Days
Oracle cloud, private, public and hybrid
Oracle cloud, private, public and hybrid
More from Mark Swarbrick
MySQL NoSQL Document Store
MySQL NoSQL Document Store
Mark Swarbrick
MySQL @ the University Of Nottingham
MySQL @ the University Of Nottingham
Mark Swarbrick
InnoDb Vs NDB Cluster
InnoDb Vs NDB Cluster
Mark Swarbrick
Intro To MySQL 2019
Intro To MySQL 2019
Mark Swarbrick
MySQL 8
MySQL 8
Mark Swarbrick
MySQL Dublin Event Nov 2018 - MySQL 8
MySQL Dublin Event Nov 2018 - MySQL 8
Mark Swarbrick
MySQL Dublin Event Nov 2018 - State of the Dolphin
MySQL Dublin Event Nov 2018 - State of the Dolphin
Mark Swarbrick
Oracle Code Event - MySQL JSON Document Store
Oracle Code Event - MySQL JSON Document Store
Mark Swarbrick
MySQL At University Of Nottingham - 2018 MySQL Days
MySQL At University Of Nottingham - 2018 MySQL Days
Mark Swarbrick
MySQL At Mastercard - 2018 MySQL Days
MySQL At Mastercard - 2018 MySQL Days
Mark Swarbrick
MySQL 8 - 2018 MySQL Days
MySQL 8 - 2018 MySQL Days
Mark Swarbrick
MySQL Cloud - 2018 MySQL Days
MySQL Cloud - 2018 MySQL Days
Mark Swarbrick
MySQL 2018 Intro - 2018 MySQL Days
MySQL 2018 Intro - 2018 MySQL Days
Mark Swarbrick
MySQL Cluster Whats New
MySQL Cluster Whats New
Mark Swarbrick
More from Mark Swarbrick
(14)
MySQL NoSQL Document Store
MySQL NoSQL Document Store
MySQL @ the University Of Nottingham
MySQL @ the University Of Nottingham
InnoDb Vs NDB Cluster
InnoDb Vs NDB Cluster
Intro To MySQL 2019
Intro To MySQL 2019
MySQL 8
MySQL 8
MySQL Dublin Event Nov 2018 - MySQL 8
MySQL Dublin Event Nov 2018 - MySQL 8
MySQL Dublin Event Nov 2018 - State of the Dolphin
MySQL Dublin Event Nov 2018 - State of the Dolphin
Oracle Code Event - MySQL JSON Document Store
Oracle Code Event - MySQL JSON Document Store
MySQL At University Of Nottingham - 2018 MySQL Days
MySQL At University Of Nottingham - 2018 MySQL Days
MySQL At Mastercard - 2018 MySQL Days
MySQL At Mastercard - 2018 MySQL Days
MySQL 8 - 2018 MySQL Days
MySQL 8 - 2018 MySQL Days
MySQL Cloud - 2018 MySQL Days
MySQL Cloud - 2018 MySQL Days
MySQL 2018 Intro - 2018 MySQL Days
MySQL 2018 Intro - 2018 MySQL Days
MySQL Cluster Whats New
MySQL Cluster Whats New
Recently uploaded
Hot Sexy call girls in Panjabi Bagh 🔝 9953056974 🔝 Delhi escort Service
Hot Sexy call girls in Panjabi Bagh 🔝 9953056974 🔝 Delhi escort Service
9953056974 Low Rate Call Girls In Saket, Delhi NCR
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024
Lorenzo Miniero
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brand
gvaughan
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
Fwdays
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
Ridwan Fadjar
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machine
Padma Pradeep
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering Tips
Miki Katsuragi
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck Presentation
Slibray Presentation
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdf
Addepto
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
null - The Open Security Community
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
shyamraj55
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDG
MarianaLemus7
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024
Scott Keck-Warren
Bluetooth Controlled Car with Arduino.pdf
Bluetooth Controlled Car with Arduino.pdf
ngoud9212
DMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special Edition
Dubai Multi Commodity Centre
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
Pixlogix Infotech
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other Frameworks
Softradix Technologies
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
2toLead Limited
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
Commit University
Recently uploaded
(20)
Hot Sexy call girls in Panjabi Bagh 🔝 9953056974 🔝 Delhi escort Service
Hot Sexy call girls in Panjabi Bagh 🔝 9953056974 🔝 Delhi escort Service
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brand
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping Elbows
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machine
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering Tips
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck Presentation
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdf
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDG
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024
Bluetooth Controlled Car with Arduino.pdf
Bluetooth Controlled Car with Arduino.pdf
DMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special Edition
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other Frameworks
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
MySQL Security + GDPR - 2018 MySQL Days
1.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | MySQL Security and GDPR Mark Swarbrick MySQL Principal Sales Consultant Archie Dhaliwal – MySQL Channel and Alliances Manager Northern Europe Mark.swarbrick@oracle.com
2.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Safe Harbor Statement The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle’s products remains at the sole discretion of Oracle. 2
3.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. |
4.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) is a regulation by which the European Parliament, the Council of the European Union and the European Commission intend to strengthen and unify data protection for all individuals within the European Union (EU)
5.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Over the past few years, the European Commission has adopted a series of measures to raise Europe's preparedness to ward off cyber incidents. GDPR and the NIS Directive are the first pieces of EU-wide legislation on personal information and cyber security
6.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Why does it matter? 6
7.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | 7
8.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | GDPR – Who’s affected • GDPR applies to ‘controllers’ and ‘processors’ of personal EU data • From 25th May 2018 – – €20million or 4% of annual turnover – Stop orders – Temporary & Permanent – DPO must be in place if required NIS Directive (also known as the New EU Cybersecurity Directive) •
Operational Essential services and Digital Service providers • Member states to decide level of fines – expected to be similar to GDPR Risks organisations face 8 OES’s • Energy • Transport • Water • Banking and financial market infrastructures • Healthcare • Digital infrastructure DSP’s • Search Engines • Cloud Computing Services • Online market Places
9.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Complexity grows Risk Grows 9
10.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | GDPR and MySQL • We can’t be entirely prescriptive • We have many things that can be applied towards attaining compliance – Products – Features – Best Practices – Documents – Integrations 10
11.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | 11 Enterprise Security Architecture ¡ Workbench • Model • Data • Audit
Data • User Management ¡ ¡ Enterprise Monitor • Identifies Vulnerabilities • Security hardening policies • Monitoring & Alerting • User Monitoring • Password Monitoring • Schema Change Monitoring • Backup Monitoring ¡ Data Encryption • TDE • Encryption • PKI ¡ Firewall ¡ Key Vault ¡ Enterprise Authentication • SSO - LDAP, AD, PAM ¡ Network Encryption ¡ Enterprise Audit • Powerful Rules Engine ¡ Audit Vault ¡ Strong Authentication ¡ Access Controls ¡ Assess ¡ Prevent ¡ Detect ¡ Recover ¡ Enterprise Backup • Encrypted ¡ HA • Innodb Cluster ¡ Thread Pool • Attack minimization
12.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Assess Security Risks 12 Discover Personal Data Scan Security Configuration Privilege Analysis
13.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Assess - MySQL Enterprise Features and GDPR • Assess Risks (Articles 35, 90, 91) – MySQL Enterprise Monitor • Account assessment and reporting •
Identifies Security Vulnerabilities – discover security holes, advises remediating actions – Advisors provide rules designed to enforce security best practices and alert upon discovering vulnerabilities – MySQL Workbench EE • Discover tables and columns containing “Personal Data” • Data Modeling tool - Reverse Engineering of Data Model to review data stored in the database • Schema Inspector, Table Inspectors – for schema assessment, grant inspection – MySQL Security Best Practices Guidelines 13
14.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | MySQL Enterprise Monitor • Enforce MySQL Security Best Practices – Identifies Vulnerabilities –
Assesses current setup against security hardening policies • Monitoring & Alerting – User Monitoring – Password Monitoring – Schema Change Monitoring – Backup Monitoring – Configuration Management – Configuration Tuning Advice • Centralized User Management 14 "I definitely recommend the MySQL Enterprise Monitor to DBAs who don't have a ton of MySQL experience. It makes monitoring MySQL security, performance and availability very easy to understand and to act on.” Sandi Barr Sr. Software Engineer Schneider Electric
15.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Assess MySQL Authorization • Administrative Privileges • Database Privileges •
Session Limits and Object Privileges • User privileges – Creating, altering and deleting databases – Creating, altering and deleting tables – Execute INSERT, SELECT, UPDATE, DELETE queries – Create, execute, or delete stored procedures and with what rights – Create or delete indexes 15 Security Privilege Management in MySQL Workbench
16.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | MySQL Enterprise Authentication 16 • Integrate with Centralized Authentication Infrastructure – Centralized Account Management – Password Policy Management – Groups & Roles • PAM (Pluggable Authentication Modules) – Standard interface (Unix, LDAP, Kerberos, others) – Windows •
Access native Windows service - Use to Authenticate users using Windows Active Directory or to a native host Integrates MySQL with existing security infrastructures
17.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | MySQL Enterprise Authentication: PAM • Standard Interface – LDAP – Unix/Linux • Proxy Users 17
18.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | MySQL Enterprise Authentication: Windows • Windows Active Directory • Windows Native Services 18
19.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Assess your data and data model using MySQL Workbench 19
20.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Prevent - MySQL Enterprise Features and GDPR • Prevent Attacks (Articles 32, 83, 28, 26, 5, 20, 27, 30, 64) – MySQL Enterprise Security – Transparent Data Encryption • Includes Key Management •
Protects Tablespace via Encryption, Keys via Key Manager/Vault integration – MySQL Enterprise Security – Firewall • MySQL Firewall Statement/User/IP Whitelists, Rules – MySQL Enterprise Authentication – DBA configurable IP whitelisting, Connection Limits, … • Via server level and via per Account IP/Hostname Controls, Account resource limits, – In transit data encryption - • Full support for TLS 1.2 - X509, Certificate Authorities, Exclude Lists, etc. – Granular access controls • Table Grants, Database Views, Stored Procedures, Functions 20
21.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | MySQL Enterprise Firewall: Overview 21 Inbound SQL Traffic Web Applications SQL Injection
Attack Via Brower ALLOW BLOCK DETECT 1 2 3 Instance MySQL Enterprise FirewallInternet
22.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | MySQL Enterprise Firewall • Block SQL Injection Attacks – Allow: SQL Statements that match Whitelist – Block: SQL statements that are not on Whitelist • Intrusion Detection System – Detect: SQL statements that are not on Whitelist •
SQL Statements execute and alert administrators 22 Select * from employee where id=22 Select * from employee where id=22 or 1=1 Block✖ Allow✔ White List Applications Detect & Alert Intrusion Detection
23.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | MySQL Enterprise Firewall • Real Time Protection – Queries analyzed and matched against White List • Blocks SQL Injection Attacks – Positive Security Model •
Block Suspicious Traffic – Out of Policy Transactions detected & blocked • Learns White List – Automated creation of approved list of SQL command patterns on a per user basis • Transparent – No changes to application required 23 MySQL Enterprise Firewall monitoring
24.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Key Vault High-Level Architecture Standby Administration Console, Alerts, Reports Secure Backups =
Credential Files/Other Wallets = Password/ phrases Keystores = Certificates Databases Servers Middleware 24
25.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | MySQL Database Encrypted Tablespace Files Protected Key Hacker / Dishonest
OS User Accesses Files Directly Information Access Blocked By Encryption MySQL TDE – Protects against Attacks on Database Files
26.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Key Vault MySQL Enterprise Transparent Data Encryption 2 Tier Architecture MySQL Database Tablespace Keys MySQL Server Plugin & Services Infrastructure InnoDB Client Keyring plugins • Master Key • Stored outside the database •
Oracle Key Vault • SafeNet KeySecure • KMIP 1.1 Compliant Key Vault • Tablespace Key • Protected by master key Master Key Plain Text Encrypted 2 Encrypted 1
27.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Detect - MySQL Enterprise Features and GDPR – 1 of 2 • Detect (Articles 30, 82, 33) – MySQL Enterprise Security – Audit • Policy-based auditing solution – gather audit log of activity •
Use to spot database misuse • Use to prove compliance to GDPR – MySQL Enterprise Security – Firewall • Real-time protection against database specific attacks • Use to alert and/or block nefarious activity – such as personal data leakage 27
28.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Focus on MySQL EE Audit • GDPR – Mandates recording or auditing of the activities on the Personal Data – Recommends records must be maintained centrally • Under the responsibility of the Controller. – Processors and third-parties must not be able to tamper or destroy the audit records. – In addition to book-keeping, auditing helps in forensic analysis in case of a breach. •
MySQL Enterprise Audit Audit data can be – Maintained in Oracle Audit Value – certified – Outputs standard XML or JSON that easily integrate with various 3rd party solutions – Supports encryption (MySQL 5.7.18+) – Can direct security logs to write-once storage 28
29.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | MySQL Enterprise Audit - Work Flow 29
30.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Detect - MySQL Enterprise Features and GDPR – 2 of 2 – MySQL Workbench EE • Security related – – Inspect Audit Data – Configure Firewall – Manage Users – MySQL Enterprise Monitor • Monitor/Alert on Firewall, Audit, Backups and more •
Detect configuration changes 30
31.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Additional Security Controls Hashing, Signing, Encryption Functions – Symmetric Encryption – AES – Hashing – SHA-2, SHA-1 – Asymmetric Public Key Encryption (RSA) – Asymmetric Private Key Decryption (RSA) – Generate Public/Private Key (RSA, DSA, DH) – Derive Symmetric Keys from Public and Private Key pairs (DH) – Digitally Sign Data (RSA, DSA) – Verify Data Signature (RSA, DSA) – Validation Data Authenticity (RSA, DSA) Confidential – Oracle Internal 31
32.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | Additional Security Controls • HA – Traditional Replication – MySQL InnoDB Cluster • Disaster Recovery – Traditional Replication – MySQL InnoDB Cluster •
Backup – MySQL Enterprise Backup • Includes encryption • Support for MySQL TDE Confidential – Oracle Internal 32
33.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | MySQL Cloud Service • Designed for security • MySQL Enterprise Features •
Backup & Recovery – Based on MySQL Enterprise Backup • Support (with consultative support) Confidential – Oracle Internal 33 Confidential – Oracle Internal 33 + MySQL Enterprise Edition
34.
Copyright © 2014 Oracle and/or its affiliates. All rights reserved. | References Confidential – Oracle Internal 34 • Home page EU GDPR – http://www.eugdpr.org/ •
MySQL Enterprise – https://www.mysql.com/products/enterprise/ • MySQL PCI DSS – https://www.mysql.com/it/why-mysql/white-papers/mysql-pci-data-security- compliance/ • MySQL Security Best Practices – https://www.mysql.com/it/why-mysql/presentations/mysql-security-best-practices/
Download now