Thread Details
  • State Not Answered
  • +1 person also asked this people also asked this
  • Replies 13 replies
  • Subscribers 367 subscribers
  • Views 6745 views
  • Users 0 members are here
Forum Actions

Data Security / Encryption

Frédéric Rinaldi

Dear all,

Many of my customers (SugarCRM 7.x or 8.x Pro or Ent) ask us what is the best question to secure SugarCRM data.

Of course, we recommended the main "standards" security options (role/team for end user, VPN access, HTTPS, restricted access to database etc.).

But, the "new" question is more to also secure the database content itself ; is there any standard solution to easily encrypt the database content but let SugarCRM work without restriction.

We know that we could created "encrypted" field inside SugarCRM but the target is more a global database encryption.

It should be a weird question but I'm not a system security expert, so I am open to all your suggestions or experiments.

Kind regards,

Fred

Parents
  • 0 Sugar Employee Badge

    I know that MySQL has a feature called Transparent Data Encryption (TDE). I don't have first had experience with using it so I'm not sure how "transparent" it would work in practice with Sugar but the docs claim that it should work without any changes to coding or schema modifications.

    MySQL :: MySQL Enterprise Transparent Data Encryption (TDE) 

    Sugar definitely still works if you encrypt the file system. That works totally transparently and helps address concerns that data is encrypted at rest. Using that in conjunction with HTTPS ensures that data is encrypted in transit as well.

    App Ecosystem @ SugarCRM

Reply
  • 0 Sugar Employee Badge

    I know that MySQL has a feature called Transparent Data Encryption (TDE). I don't have first had experience with using it so I'm not sure how "transparent" it would work in practice with Sugar but the docs claim that it should work without any changes to coding or schema modifications.

    MySQL :: MySQL Enterprise Transparent Data Encryption (TDE) 

    Sugar definitely still works if you encrypt the file system. That works totally transparently and helps address concerns that data is encrypted at rest. Using that in conjunction with HTTPS ensures that data is encrypted in transit as well.

    App Ecosystem @ SugarCRM

Children
No Data