01.24.14

Gemini version available ♊︎

Finding Database Software Without Back Doors

Posted in Database, Oracle, Security at 9:19 am by Dr. Roy Schestowitz

Summary: A survey of competition in the area of databases, with emphasis on Free software and on security

ORACLE, far more so than Red Hat, has been in bed with the NSA. Oracle’s very identity (its name) is that of a CIA project — a fact that many people either don’t know or are shocked to discover. Actually, a lot of VC funds for database projects comes from the VC arm of the CIA nowadays. There are decent alternatives to Oracle’s databases, such as PostgreSQL [1], NoSQL [2], various Open Source Database management systems [3], and also GPL-licensed contenders such as RethinkDB, which has just received a lot of funding [4]. Oracle, which grabbed the most popular GPL-licensed database (MySQL), is still facing strong competition [5] and these are just examples from the past month’s news, not going further back than that. Then there’s the market share of Microsoft in database. Microsoft is famously facilitating NSA snooping, so it seems safe to say that using any database from the top proprietary providers (Oracle and Microsoft) is foolish and irresponsible when security and privacy are important. Back doors are now a fact, they are not a speculation. The trust is done.

SkySQL and MariaDB now directly challenge MySQL [6], which Oracle has neglected for the most part since it took over Sun and broke it to bits [7,8]. Oracle’s record when it comes to running big projects is not exactly good anymore [9] (and suffice to say its build/clone of RHEL cannot be trusted), so it seems safe to claims that for security and privacy one should choose the primarily Europe-based — with offices in 10 European countries — SkySQL (or even PostgreSQL), not MySQL. One little cause for concern is that a board member of SkySQL “worked as a management consultant with Indevo AB, At Kearney Inc. and Booz Allen,” according to this page. Booz Allen is the infamous NSA contractor.

It’s interesting that only few people entertain the possibility that there may be NSA back doors in the databases themselves, and given the role that the CIA played (historically and at present) in databases development we should pay close attention to that.

Related/contextual items from the news:

  1. PostgreSQL 9.1 Advances Open Source Database Innovation
  2. How NoSQL will power the Internet of Things

    Open-source NoSQL databases such as Apache Cassandra are (and will be) key enablers of the Internet of Things.

    This is the view of Jonathan Ellis, CTO at DataStax, a company known for distributing a commercially supported version of the open source Apache Cassandra NoSQL Database Management System.

  3. Open Source Database Management Systems Gaining Traction
  4. RethinkDB grabs $8M to show its stuff against other NoSQL databases

    RethinkDB open-sourced the database under a GNU license in November 2012, and the community is 4,000 developers strong…

  5. Meet the Open Source Trio Primed to Topple Oracle

    Over the past few years, we’ve seen an explosion of new databases. Several companies are offering relational databases that directly challenge traditional offerings from Oracle — databases that designed to store information in neat rows and columns on a single machine. And thanks to research papers detailing software built by Google and Amazon, we also have a slew of open source NoSQL databases — databases designed to store massive amounts of information across tens of hundreds of machines.

  6. SkySQL goes after Oracle MySQL with enterprise release

    SkySQL, the MariaDB MySQL fork company, isn’t just for open-source database management system (DBMS) experts anymore. With the release of its MariaDB Enterprise product, SkySQL is going straight for Oracle’s MySQL enterprise customers.

  7. The mixed fate of Sun tech under Oracle
  8. James Gosling grades Oracle’s handling of Sun’s technology

    The Java founder assesses how well Oracle has managed the technologies it acquired in the four years since it bought Sun

  9. Oracle’s Oregon Website Failure

    For now, though, Oregon is stuck with a very expensive white elephant and most of its residents will not be able to take advantage of the benefits of the Affordable Care Act until 2015.

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

Decor ᶃ Gemini Space

Below is a Web proxy. We recommend getting a Gemini client/browser.

Black/white/grey bullet button This post is also available in Gemini over at this address (requires a Gemini client/browser to open).

Decor ✐ Cross-references

Black/white/grey bullet button Pages that cross-reference this one, if any exist, are listed below or will be listed below over time.

Decor ▢ Respond and Discuss

Black/white/grey bullet button If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

DecorWhat Else is New

  1. IRC Proceedings: Sunday, May 28, 2023

    IRC logs for Sunday, May 28, 2023

  2. Daniel Stenberg Knows Almost Nothing About Gemini and He's Likely Just Protecting His Turf (HTTP/S)

    The man behind Curl, Daniel Stenberg, criticises Gemini; but it's not clear if he even bothered trying it (except very briefly) or just read some inaccurate, one-sided blurbs about it

  3. Links 29/05/2023: Videos Catchup and Gemini FUD

    Links for the day

  4. Links 28/05/2023: Linux 6.4 RC4 and MX Linux 23 Beta

    Links for the day

  5. Gemini Links 28/05/2023: Itanium Day, GNUnet DHT, and More

    Links for the day

  6. Links 28/05/2023: eGates System Collapses, More High TCO Stories (Microsoft Windows)

    Links for the day

  7. IRC Proceedings: Saturday, May 27, 2023

    IRC logs for Saturday, May 27, 2023

  8. No More Twitter, Mastodon, and Diaspora for Tux Machines (Goodbye to Social Control Media)

    People would benefit from mass abandonment of such pseudo-social pseudo-media.

  9. Links 28/05/2023: New Wine and More

    Links for the day

  10. Links 27/05/2023: Plans Made for GNU's 40th Anniversary

    Links for the day

  11. Social Control Media Needs to be Purged and We Need to Convince Others to Quit It Too (to Protect Ourselves as Individuals and as a Society)

    With the Tux Machines anniversary (19 years) just days away we seriously consider abandoning all social control media accounts of that site, including Mastodon and Diaspora; social control networks do far more harm than good and they’ve gotten a lot worse over time

  12. Anonymously Travelling: Still Feasible?

    The short story is that in the UK it's still possible to travel anonymously by bus, tram, and train (even with shades, hat and mask/s on), but how long for? Or how much longer have we got before this too gets banned under the false guise of "protecting us" (or "smart"/"modern")?

  13. With EUIPO in Focus, and Even an EU Kangaroo Tribunal, EPO Corruption (and Cross-Pollination With This EU Agency) Becomes a Major Liability/Risk to the EU

    With the UPC days away (an illegal and unconstitutional kangaroo court system, tied to the European Union in spite of critical deficiencies) it’s curious to see EPO scandals of corruption spilling over to the European Union already

  14. European Patent Office (EPO) Management Not Supported by the EPO's Applicants, So Why Is It Still There?

    This third translation in the batch is an article similar to the prior one, but the text is a bit different (“Patente ohne Wert”)

  15. EPO Applicants Complain That Patent Quality Sank and EPO Management Isn't Listening (Nor Caring)

    SUEPO has just released 3 translations of new articles in German (here is the first of the batch); the following is the second of the three (“Kritik am Europäischen Patentamt – Patente ohne Wert?”)

  16. German Media About Industry Patent Quality Charter (IPQC) and the European Patent Office (EPO)

    SUEPO has just released 3 translations of new articles in German; this is the first of the three (“Industrie kritisiert Europäisches Patentamt”)

  17. Geminispace Continues to Grow Even If (or When) Stéphane Bortzmeyer Stops Measuring Its Growth

    A Gemini crawler called Lupa (Free/libre software) has been used for years by Stéphane Bortzmeyer to study Gemini and report on how the community was evolving, especially from a technical perspective; but his own instance of Lupa has produced no up-to-date results for several weeks

  18. Links 27/05/2023: Goodbyes to Tina Turner

    Links for the day

  19. HMRC: You Can Click and Type to Report Crime, But No Feedback or Reference Number Given

    The crimes of Sirius ‘Open Source’ were reported 7 days ago to HMRC (equivalent to the IRS in the US, more or less); but there has been no visible progress and no tracking reference is given to identify the report

  20. IRC Proceedings: Friday, May 26, 2023

    IRC logs for Friday, May 26, 2023

  21. One Week After Sirius Open Source Was Reported to HM Revenue and Customs (HMRC) for Tax Fraud: No Response, No Action, Nothing...

    One week ago we reported tax abuses of Sirius ‘Open Source’ to HMRC; we still wait for any actual signs that HMRC is doing anything at all about the matter (Sirius has British government clients, so maybe they’d rather not look into that, in which case HMRC might be reported to the Ombudsman for malpractice)

  22. Links 26/05/2023: Weston 12.0 Highlights and US Debt Limit Panic

    Links for the day

  23. Gemini Links 26/05/2023: New People in Gemini

    Links for the day

  24. IRC Proceedings: Thursday, May 25, 2023

    IRC logs for Thursday, May 25, 2023

  25. Links 26/05/2023: Qt 6.5.1 and Subsystems in GNUnet

    Links for the day

  26. Links 25/05/2023: Mesa 23.1.1 and Debian Reunion

    Links for the day

  27. Links 25/05/2023: IBM as Leading Wayland Pusher

    Links for the day

  28. IRC Proceedings: Wednesday, May 24, 2023

    IRC logs for Wednesday, May 24, 2023

  29. Links 25/05/2023: Istio 1.16.5 and Curl 8.1.1

    Links for the day

  30. Gemini Links 25/05/2023: On Profit and Desire for Gemini

    Links for the day

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts