Purpose: VaultDB is a secure NoSQL database management system (DBMS) for modern applications. It supports multi-recipient encryption, table-level encryption, group encryption and comes loaded with a strong cryptosystem.
VaultDB adds automatic transparent encryption to your application's data at the table/document level. Instead of using it's own internal storage engine, VaultDB stores the encrypted data inside your prefered DBMS for storage.
It's design is made to provide developers with a solid method for integrating strong cryptography inside applications and databases, secure data using NoSQL-like transactions while avoiding encryption design flaws.
Cryptography is hard and implementation mistakes can quickly render any encryption scheme useless and insecure.
VaultDB was designed with these facts in mind and aim at ensuring proper security through open verifiability of it's cryptosystem's implementation.
This project can protect your application from 4 out of 10 critical security risks in the OWASP Top Ten Most Critical Web Application Security Risks from OWASP_Top_Ten_Project.
- A1 Injection
- A2 Broken Authentication and Session Management (was formerly A3)
- A5 Security Misconfiguration (was formerly A6)
- A6 Sensitive Data Exposure (merged from former A7 Insecure Cryptographic Storage and former A9 Insufficient Transport Layer Protection)
Home page : VaultDB
Online repo : Github
|