Hackernoon logoData Leak Prevention with Databunker by@yuli

Data Leak Prevention with Databunker

Databunker is an open-source, self-hosted, GDPR compliant, secure database for personal data or PII. Instead of storing your customer data in a regular database, you can use Databunk. The database encrypts customer records and builds a secure search index for quick user lookup (i.e. using email, token, etc…). The API function will have to call an API function to retrieve specific user details. You can start palying with it right now. Pre-built Docker container available.
image
Yuli Stremovsky Hacker Noon profile picture

@yuliYuli Stremovsky

Privacy and security architect.

We hear the horror stories of data leaks almost every day. Some require a sophisticated attack to gain shell access to the servers. Some happen over the web using the SQL injections in the web apps. As a result of this attack, your customer data can be dumped and personal data leaked.

Regarding database encryption, let’s face it. Most of the solutions provide a fake sense of security. Data is encrypted on the storage or disk level. In case, your website has an SQL injection, the bad actor will get your data in cleartext.

Here comes the Databunker solution. Databunker is an open-source, self-hosted, GDPR compliant, secure database for personal data or PII.

Instaed of storing your customer data in a regular database you can use Databunker.

image

Instead of talking with Databunker using SQL, your backend will have to call an API function to retrieve specific user details. Databunker does not have an API to enumerate all users. Databunker encrypts customer records and builds a secure search index for quick user lookup (i.e. using email, token, etc…).

What’s Next?

Databunker is an open-source project. You can start palying with it right now. Pre-built Docker container available.

https://databunker.org/

Free takeaway

I run privacy training for startup founders and architects. It is a free training.

About the author

Yuli Stremovsky is a world-class software and security architect. Founder of PrivacyBunker.io and DataBunker.org privacy products. Former Checkpoint, and RSA Security employee. An expert in marrying technological solutions with privacy.

Tags

Join Hacker Noon

Create your free account to unlock your custom reading experience.