This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "OWASP VaultDB Project"

From OWASP
Jump to: navigation, search
m (Reverted edits by Maxime Labelle (talk) to last revision by Kait Disney-Leugers)
Line 1: Line 1:
 +
{|
 +
|-
 +
! width="700" align="center" | <br>
 +
! width="500" align="center" | <br>
 +
|-
 +
| align="right" | [[Image:OWASP Inactive Banner.jpg|800px| link=https://www.owasp.org/index.php/OWASP_Project_Stages#tab=Inactive_Projects]]
 +
| align="right" |
 +
 +
|}
 
=Main=
 
=Main=
  

Revision as of 15:55, 3 July 2014



OWASP Inactive Banner.jpg

Main

OWASP Project Header.jpg

vault-icon.png


OWASP VaultDB Project

VaultDB is an encrypted persistent key-value store with a multi-recipient cryptosystem for PHP based web applications.

Introduction

This framework provide everything you need for storing encrypted key-value documents inside a custom MySQL database. VaultDB also comes with a secure user login and authentication mechanism designed to avoid common security and cryptographic pitfalls.

Description

VaultDB adds automatic transparent encryption to your application's data at the table/document level. Instead of using it's own internal storage engine, VaultDB stores the encrypted data inside a custom MySQL database for storage.

It's design is made to provide developers with a solid method for integrating strong cryptography inside web applications and secure data using NoSQL-like transactions.

Licensing

OWASP VaultDB is free to use. It is licensed under the BSD license, so you can copy, distribute and transmit the work, and you can adapt it, and use it commercially, but all provided that you attribute the work and if you alter, transform, or build upon this work, you may distribute the resulting work only under the same license to this one.


What is VaultDB?

OWASP VaultDB can protect your application from 4 out of 10 critical security risks in the OWASP Top Ten Most Critical Web Application Security Risks from OWASP_Top_Ten_Project.

  • A1 Injection
  • A2 Broken Authentication and Session Management (was formerly A3)
  • A5 Security Misconfiguration (was formerly A6)
  • A6 Sensitive Data Exposure (merged from former A7 Insecure Cryptographic Storage and former A9 Insufficient Transport Layer Protection)


Project Leader

Project leader's is Maxime Labelle ([email protected])


Related Projects

Ohloh

Quick Download


News and Events

  • [30 Jan 2014] New release out


Documentation

You can view the online documentation here


Classifications

Owasp-incubator-trans-85.png Owasp-builders-small.png
Owasp-defenders-small.png
Cc-button-y-sa-small.png
Project Type Files CODE.jpg