DIAdem

cancel
Showing results for 
Search instead for 
Did you mean: 

Does Diadem/DataFinder supports encrypted databases?

Hi,

 

We are trying to find out if Datafinder Server supports storing the indexed data into an encrypted database? Is it possible?

 

The database server that we are thinking of using is MSSQL.

 

 

Thanks.

0 Kudos
Message 1 of 6
(2,936 Views)

Hello Mannypr7,

 

Can you elaborate on what are you trying to do? Usually, you read data or open data in Diadem, not storing.

Please review the following posts as well for more context. 

 

https://forums.ni.com/t5/DIAdem/DIADEM-and-Microsoft-SQL-Server-mdf-files/td-p/798039

https://knowledge.ni.com/KnowledgeArticleDetails?id=kA00Z0000019OFvSAM

 

Diego H

National Instruments

0 Kudos
Message 2 of 6
(2,894 Views)

Hi JohnDoe2014,

 

Thank you for your response.


Do to several reasons (security, etc) we need the data that the datafinder indexes to be in a database that is encrypted (Data at rest needs to be encrypted, not only the traffic).

 

Hence I wan't to know if Datafinder supports encrypted database (perhaps an advance hidden feature, obscure to normal users?) or if it has the ability of encrypting the data that it stores. We've work with DIAdem/Datafinder extensively, never had the above requirement, up until recently.

 

Note:

When you create search areas, all the data that is stored there is indexed and placed in a database, whether is in an external database server like MSSQL or in an internal local version of MySQL (or Mariadb perhaps?), we are assuming we are talking of the Datafinder Server edition. Although we use DIAdem (GUI or with vbs) for interfacing and querying the data, such data  when stored (which is the case of an indexed search area) in the database  could potentially be vulnerable while at rest (regardless if it has password or not), we are particular concern with MSSQL in an external db server.

 

Does it has this capacity?

 

 

0 Kudos
Message 3 of 6
(2,891 Views)

The DB used by DataFinder cannot be reached from the outside (by configuration) and can only be reached by a named pipe (only exposed to DataFinder).

So unless you're not switching to MS SQL-Server you should be fine.

0 Kudos
Message 4 of 6
(2,872 Views)

Thank you StefanR for your response, but with all due respect I beg to defer greatly. The databases need to be encrypted, named piped "only exposed"  (intentional quotes) to the datafinder aren't indicative of encryption, a security specialist can have a ballpark with those databases. 

 

So, from what I am seeing then, Datafinder databases (whether internal or external) don't have the capability to be encrypted? 

 

Is there any one from NI that can help answer this question?

0 Kudos
Message 5 of 6
(2,828 Views)

An alternative could be using MS SQL Server and turn on Transparent Data Encryption (TDE):

https://docs.microsoft.com/en-us/sql/relational-databases/security/encryption/transparent-data-encry...

However, the fulltext search index of DataFinder is still not encrypted (as of version 2018).

0 Kudos
Message 6 of 6
(2,792 Views)