Hibernate Encryption of Database Completely Transparent to Application

Question

I\'m working on a Grails 1.0.4 project that has to be released in less than 2 weeks, and the customer just came up with a requirement that all data in the database should be enc

Answer 1

the customer could easily do this without changing a thing in your application.

first, encrypt the communications between the server by turning on SSL in the mysql layer, or use an SSH tunnel.

second, store the mysql database on an encrypted volume.

any attack that can expose the filesystem of the mysql database or the credentials needed to log in to the mysql server is not mitigated by encrypting the data since that same attack can be used to retrieve the encryption key from the application itself.