MariaDB 11.8 Protocol Security — It just works

Zero-configuration SSL and PARSEC authentication

Sergei Golubchik

Playlists: 'osc26' videos starting here / audio

We in MariaDB care deeply about security. MariaDB security should be strong, automatic, enabled by default and easy to use. This talk will explain new security features in MariaDB client-server protocol — zero-configuration SSL and PARSEC authentication plugin. The first feature allows all MariaDB connections to be automatically encrypted with full end-to-end certificate verification without CA signed certificates or, really, any SSL configuration whatsoever. The second introduces a new trustless authentication protocol with built-in protection against brute-force, replay, and precomputation attacks.

Keeping your connection secure from Man-in-the-Middle attacks is not optional in 2026. MariaDB takes the complexity out of it. You do not need to do anything — it just works.

Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/

Download

Embed

Share:

Tags