Generic SQL Proxy - Does it exist?

Question

I am working on a concept product which tries to solve the domain problems of 'dynamic data masking'. This is an area where you don't get a lot of inputs when you do your standard google search. The idea is to ecrypt/substitute/shuffle/mask data in any enterprise context, regardless of technology. So, for instance, if were a call center operator for a major bank, I should not be able to see any of the customer details other than the name.. and the requirements like such.

I came across:

http://www.oreillynet.com/pub/a/databases/2007/07/12/getting-started-with-mysql-proxy.html

and

www.active-base.com

as the two approaches which are pretty much doing what I want. I like the concept of an SQL proxy and my main goal here is to create a generic SQL proxy - the motive being SQL rewriting.

Are there any open-source generic SQL proxies out there? How easy/ tough is it to create one from scratch in java to support all major databases? (mysql/db2/oracle/etc)?

Thomas Jung · Accepted Answer · 2010-01-29 08:18:02Z

3

Here's a list of JDBC proxy drivers.

It will be quite hard to support (parse and create) every SQL dialect on earth.

edited Jan 29, 2010 at 8:18

answered Jan 29, 2010 at 8:04

Thomas Jung

33.2k9 gold badges86 silver badges117 bronze badges

Sign up to request clarification or add additional context in comments.

2 Comments

Mitch Wheat Over a year ago

doesn't a JDBC proxy deal with authentication rather than authorisation?

Thomas Jung Over a year ago

You can authenticate yourself against a database. (This won't happen in most applications at the database level anyway.) Authorization is pretty hard based on SQL queries. Solving this at the an application level or with database views is easier.

Mitch Wheat · Accepted Answer · 2010-01-29 08:05:01Z

2

This is generally solved using permissions.

You give no rights to the underlying tables, and then create permissions based views upon those tables.

By creating a 'SQL Proxy', all you are doing is moving your point of attack/failure somewhere else.

answered Jan 29, 2010 at 8:05

Mitch Wheat

302k44 gold badges482 silver badges552 bronze badges

Comments

Bdab · Accepted Answer · 2010-11-23 18:17:06Z

2

A SQL Proxy might not be just about user access capabilities with the DB. It might implement RegExp filtering, IPS/IDS mechanisms, etc. I could use a SQL proxy that would add an extra layer of protection, other than in-code protection artifacts

answered Nov 23, 2010 at 18:17

Bdab

211 bronze badge

Collectives™ on Stack Overflow

Generic SQL Proxy - Does it exist?

3 Answers 3

2 Comments

Comments

Comments

Your Answer

Hot Network Questions

Collectives™ on Stack Overflow

3 Answers 3

2 Comments

Comments

Comments

Your Answer

Sign up or log in

Post as a guest

Related