tags:

views:

178

answers:

2
+1  Q: 

Generic SQL Proxy - Does it exist?

I am working on a concept product which tries to solve the domain problems of 'dynamic data masking'. This is an area where you don't get a lot of inputs when you do your standard google search. The idea is to ecrypt/substitute/shuffle/mask data in any enterprise context, regardless of technology. So, for instance, if were a call center operator for a major bank, I should not be able to see any of the customer details other than the name.. and the requirements like such.

I came across:

http://www.oreillynet.com/pub/a/databases/2007/07/12/getting-started-with-mysql-proxy.html

and

www.active-base.com

as the two approaches which are pretty much doing what I want. I like the concept of an SQL proxy and my main goal here is to create a generic SQL proxy - the motive being SQL rewriting.

Are there any open-source generic SQL proxies out there? How easy/ tough is it to create one from scratch in java to support all major databases? (mysql/db2/oracle/etc)?

+2  A: 

Here's a list of JDBC proxy drivers.

It will be quite hard to support (parse and create) every SQL dialect on earth.

Thomas Jung  2010-01-29 08:04:52
doesn't a JDBC proxy deal with authentication rather than authorisation?
Mitch Wheat  2010-01-29 08:08:26
You can authenticate yourself against a database. (This won't happen in most applications at the database level anyway.) Authorization is pretty hard based on SQL queries. Solving this at the an application level or with database views is easier.
Thomas Jung  2010-01-29 08:14:04
@Thomas - Thank you for the list. It helps
Jay  2010-01-31 06:01:36
+2  A: 

This is generally solved using permissions.

You give no rights to the underlying tables, and then create permissions based views upon those tables.

By creating a 'SQL Proxy', all you are doing is moving your point of attack/failure somewhere else.

Mitch Wheat  2010-01-29 08:05:01

related questions

What language do you use for Postgresql triggers and stored procedures?
Are Multiple DataContext classes ever appropriate?
Which tools do people use to create Data Dictionaries?
Any experiences with Protocol Buffers?
Mechanisms for tracking DB schema changes
How big can a MySQL database get before performance starts to degrade.
How do I index a database field
How does database indexing work?
How do I connect to a database and loop over a recordset in C#?
Editing database records by multiple users
Object Oriented vs Relational Databases
VFP .NET OLEdb provider does not work in Win 64-Bits. Help
Embedded Database for .net that can run off a network
Connect PHP to an AS/400
Swap unique indexed column values in database.
cx_Oracle - what is the best way to iterate over a result set?
cx_Oracle - How do I access Oracle from Python?
.NET Migrations Engine
Is there a version control system for database structure changes?
SQLite and XSD
How do I version my MS SQL database in SVN?
XSD DataSets and ignoring foreign keys
Flat File Databases in PHP
Throw Error In MySQL Trigger
Binary Data in MySQL