DataStax Enterprise provides standard security and
advanced
features, which allow you to build security in your application stack. Relevant features include:
Internal Authentication
Easily create users with RDBMS style syntax.
External Authentication
Integrate DSE into your existing security infrastructure with its Kerberos, LDAP, and
Active Directory support.
Permission Management
Use the familiar and easy GRANT/REVOKE paradigm to assign permissions to your database
users and ensure no data can be improperly accessed.
Client-to-Node/Node-to-Node Encryption
Protect data as it’s sent from clients to a database cluster or when it’s transferred
between nodes so that it cannot be intercepted and stolen.
Driver Features
DataStax provides functionality in its drivers, such as parameterized statements, to
help you prevent attacks similar to
SQL Injection attacks.
Transparent Data Encryption
Secure data at rest with complete application transparency using preferred encryption
capabilities that prevent unauthorized data access.
Data Auditing
Track all user activity in a database cluster including login attempts so data breach
attempts can be identified and stopped.
PCI and SOX Compliance Support
DSE Advanced Security delivers key features needed to support PCI and SOX compliance
requirements.
Uniform Security Coverage
DSE Advanced Security extends to all nodes in a DSE cluster, including those used for
running analytics, search, and in-memory computing workloads on Cassandra data.