I've been looking around for an answer to this for some time now and I felt that this place would be a good venue to ask this.
How can one improve the security in a MySQL database?
The database that I am currently playing around with only has its data encrypted. This being the values in the tables are encrypted before being placed in the database.
Other than that, how can I improve the security and what do some readings mean by "database encryption"? I've read about some third party programs that can encrypt the whole database and maybe even a certain table only.
Also, to what kind of data do this programs affect? I imagine them only affecting only the "Data at rest". Or is it that there are live applications out there that interact with a live encrypted database?
I know that my question may seem to be all over the place but to sum it up:
1) What does "database encryption" mean? Is it field-value encryption or whole database encryption?
2) Do database encryption programs apply to live databases? Or only to archived/backup-ed databases?
3) If live databases were to be encrypted, surely the code of the application that uses it would need to be changed, right?
4) What are some programs that you guys recommend for "database encryption"?
5) Would using Bitlocker to the drive where the MySQL data is stored be a good alternative?