From the fine folks over at net-security.org comes this interesting announcement:
ZeroDB, an end-to-end encrypted database whose release was announced earlier this year, is now open source.
Developers MacLane Wilkison and Michael Egorov changed the license from proprietary to AGPLv3 on Monday, and invited the public to use it: "Try it, build awesome things with it, break it. Then tell us about it."
ZeroDB is based on the eponymous protocol that allows end-to-end encrypted queries, which in turn allows encrypted data to be stored on untrusted servers (e.g. in a public cloud).
[...] "In ZeroDB, the client is responsible for the database logic. Data encryption, decryption and compression also happen client side. Therefore, the server never has any knowledge about the data, its structure or order," it is explained in the documentation.
"Since the server has no insight into the nature of the data, the risk of a server-side data breach is eliminated. Even if attackers successfully infiltrate the server, they won't have access to the cleartext data," the developers pointed out.
No, NCommander, we don't need to switch databases twice in a year. Wait till 2016 at least.
(Score: 2) by RamiK on Friday December 11 2015, @04:19PM
Having to publish all your code and all the code you depend on each and every time you release is precisely what the GPLv3 sets out to do.
Practically speaking, just dump all the Gzips you depend on into a single folder and add a button called "download all (per GPLv3)" that concatenates all the Gzips on-the-fly as one huge download file directly to the stream. If you're extra lazy, go the Mega route and have a horrible client-side javascript do the concatenation and downloading.
compiling...
(Score: 2, Funny) by Osamabobama on Friday December 11 2015, @05:52PM
Can't you just put the source code in a cookie, so that every visitor to the site gets it? Boom! Problem solved.
Appended to the end of comments you post. Max: 120 chars.