Solved

Secure Embedded Database

Posted on 2011-02-15
2
646 Views
Last Modified: 2012-05-11
I'm doing some retail software that I plan to distribute, and security of the data is a big issue. Not so much that the data is sensitive, but that I need to secure it from users being able to access it outside of the application. Reason being is that it ties back into my company that I would offer an additional data access option (Web), but if they have free access to it, then the push is pointless.

I can't require an internet connection, so SQL Server and MySQL are out. I know I can embed MySQL, but I just don't want the hassle of handling that in my JAVA app.

SQLite seems to lack any real security, but I have read that you can use SQLCipher to encrypt the database and decrypt at need for the data. How effective has this been for others? Is this a reasonable option?

What about HSQLDB? That seems to have a bit more options that I'd like to take advantage of, but I can't find much information on the web regarding security of the data.

JavaDB promotes security, but I haven't had a chance to play with it yet. Do you have any experience with it? Is it capable of what I'm after? Or maybe other suggestions?

Any and all suggestions would be greatly appreciated. In case it matters, this will be a swing application.
0
Comment
Question by:ALaRiva
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 6

Accepted Solution

by:
dr_linux earned 500 total points
ID: 34898682
If it's not tons and tons of data you simply read and write the data in files and encrypt and decrypt the data using something like
http://www.experts-exchange.com/Programming/Languages/Java/Q_23044531.html

Db4o is another option for a Java embedded database.  Works really well with Java.  However I used it back when it was free and I really didn't use any security at the time.  It has come a long way since then (and it is now commercial) http://www.db4o.com/ 
0
 
LVL 10

Author Closing Comment

by:ALaRiva
ID: 35993087
Not exactly what I was looking for, and this is far from resolved, but the provided information helped open up a few ideas and set me ahead a bit further in the project, so I feel points are appropriate.

Thank You.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
SSIS Combine projects into one 2 34
dat and idx extensions 11 43
DB Shutdown Automatically 11 36
Migration of public folders - Exchange 2010 2 38
Many companies are looking to get out of the datacenter business and to services like Microsoft Azure to provide Infrastructure as a Service (IaaS) solutions for legacy client server workloads, rather than continuing to make capital investments in h…
When it comes to protecting Oracle Database servers and systems, there are a ton of myths out there. Here are the most common.
This video teaches viewers about errors in exception handling.
This tutorial will introduce the viewer to VisualVM for the Java platform application. This video explains an example program and covers the Overview, Monitor, and Heap Dump tabs.

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question