sydo - secure your data by obscurity
TRANSCRIPT
![Page 1: SYDO - Secure Your Data by Obscurity](https://reader036.vdocuments.net/reader036/viewer/2022070319/55817ed7d8b42a132d8b47dd/html5/thumbnails/1.jpg)
SYDO – Secure Your Data by Obscurity
Andrei AvădăneiWeb Developer, Security enthusiast, Blogger
www.worldit.info@AndreiAvadanei+AndreiAvadanei
![Page 2: SYDO - Secure Your Data by Obscurity](https://reader036.vdocuments.net/reader036/viewer/2022070319/55817ed7d8b42a132d8b47dd/html5/thumbnails/2.jpg)
Let's make some research :-)
![Page 3: SYDO - Secure Your Data by Obscurity](https://reader036.vdocuments.net/reader036/viewer/2022070319/55817ed7d8b42a132d8b47dd/html5/thumbnails/3.jpg)
Before that, what problems do we have?
mistrust in hosting provider aims
security problems
data stealing using SQL Injections
… or after server was hijacked
etc. etc.
![Page 4: SYDO - Secure Your Data by Obscurity](https://reader036.vdocuments.net/reader036/viewer/2022070319/55817ed7d8b42a132d8b47dd/html5/thumbnails/4.jpg)
“Information”
one the most dangerous weapons
you have it, you rule
...money, women and finally the world
take a look at Google, Facebook, M$ etc.
![Page 5: SYDO - Secure Your Data by Obscurity](https://reader036.vdocuments.net/reader036/viewer/2022070319/55817ed7d8b42a132d8b47dd/html5/thumbnails/5.jpg)
We should be more careful!
![Page 6: SYDO - Secure Your Data by Obscurity](https://reader036.vdocuments.net/reader036/viewer/2022070319/55817ed7d8b42a132d8b47dd/html5/thumbnails/6.jpg)
But we are lazy...
![Page 7: SYDO - Secure Your Data by Obscurity](https://reader036.vdocuments.net/reader036/viewer/2022070319/55817ed7d8b42a132d8b47dd/html5/thumbnails/7.jpg)
We introduce SYDO
aims to protect your data stored in SQL databases
a built-in interface for SQL functions
based on client/server API
help you to store and manage your data
![Page 8: SYDO - Secure Your Data by Obscurity](https://reader036.vdocuments.net/reader036/viewer/2022070319/55817ed7d8b42a132d8b47dd/html5/thumbnails/8.jpg)
How it works?
![Page 9: SYDO - Secure Your Data by Obscurity](https://reader036.vdocuments.net/reader036/viewer/2022070319/55817ed7d8b42a132d8b47dd/html5/thumbnails/9.jpg)
The problem divided in layers
Low Level processing (SQL Interfaces)
SYDO
Medium Level processing (here we can add patches over SQL queries)
High-level processing (WAFs, htaccess etc.)
Post-processing (client side)
![Page 10: SYDO - Secure Your Data by Obscurity](https://reader036.vdocuments.net/reader036/viewer/2022070319/55817ed7d8b42a132d8b47dd/html5/thumbnails/10.jpg)
Solution
data (rows/tables/databases) encrypted with AES 128
keys stored in SYDO Hash Center (remote - server)
unique identification key + AES keys related
SQL Query identification by generating a key stub(Anti-SQLI)
RESTful encrypted API protocol between Client and server
![Page 11: SYDO - Secure Your Data by Obscurity](https://reader036.vdocuments.net/reader036/viewer/2022070319/55817ed7d8b42a132d8b47dd/html5/thumbnails/11.jpg)
Demo
![Page 12: SYDO - Secure Your Data by Obscurity](https://reader036.vdocuments.net/reader036/viewer/2022070319/55817ed7d8b42a132d8b47dd/html5/thumbnails/12.jpg)
Features
support over multiple SQL interfaces
API statistics
multiple website management for SYDO Hash Center
P2P Hash Center Service (lower latency)
cache over SYDO Hash Center (even lower latency)
Anti-DOS for SYDO Hash Center
![Page 13: SYDO - Secure Your Data by Obscurity](https://reader036.vdocuments.net/reader036/viewer/2022070319/55817ed7d8b42a132d8b47dd/html5/thumbnails/13.jpg)
Project Status
available on GitHub v.01 Alpha
http://bit.ly/o6qzjn
soon update!
![Page 14: SYDO - Secure Your Data by Obscurity](https://reader036.vdocuments.net/reader036/viewer/2022070319/55817ed7d8b42a132d8b47dd/html5/thumbnails/14.jpg)
Important
SYDO is not bullet proof but is a better solution!
![Page 15: SYDO - Secure Your Data by Obscurity](https://reader036.vdocuments.net/reader036/viewer/2022070319/55817ed7d8b42a132d8b47dd/html5/thumbnails/15.jpg)
Questions?
![Page 16: SYDO - Secure Your Data by Obscurity](https://reader036.vdocuments.net/reader036/viewer/2022070319/55817ed7d8b42a132d8b47dd/html5/thumbnails/16.jpg)