Category: Security
Authentication With X.509 Certificates
Data security is an important aspect of every modern data platform. With micro-service based architectures becoming more of a common pattern across every high-scale app, existing password based authentication mechanisms for user authentication is hard to manage at scale, let...
Couchbase Server 5.5: Log Redaction
With security already a hot topic in the data space, the Couchbase Server 5.5 release introduces a new feature – “Log Redaction”. Logs are an important part of every platform. Logs are used for multiple purposes ranging from security, to monitoring,...
Announcing Couchbase Server 5.5 – Developer Build
Announcing Couchbase Server 5.5 Developer Build It is my pleasure to share this early preview of Couchbase Server 5.5 features – there are some very exciting improvements coming and this Developer Build (DB) highlights several of them. There are many...
GDPR: Businesses must focus on digital transformation, not just tick-box compliance
The General Data Protection Regulation (GDPR) is now a matter of months away. Vendors of all shapes and sizes are ramping up their GDPR scare stories (e.g. the potential fines) to trigger a response from businesses. Couchbase is taking a...
Speculative Execution Processor Vulnerabilities – Performance Impact Analysis
Last week, we published a blog with recommendation on securing Couchbase data platform in response to industry-wide security vulnerabilities. We continued to analyze the potential performance impact caused by the patched OS binaries and this blog post captures the detailed evaluation. As...
Speculative Execution Processor Vulnerabilities – ‘Meltdown and Spectre’: What you need to know
On Jan 3, 2018, Google’s Project Zero team along with several other university researchers identified several security issues with speculative execution, an optimization technique used in microprocessors to improve performance. Couchbase is aware of the recently disclosed class of processor/OS...
Announcing Couchbase Server 5.0
Couchbase Server 5.0 is here!!! I am thrilled to announce the availability of this major release. Couchbase Server 5.0 is the latest release of the most powerful NoSQL technology. Couchbase Server, the foundation of the Couchbase Data Platform, allows enterprises...
CURL Comes to N1QL: Querying External JSON Data
JSON is a helpful way to transmit data. Now, N1QL can query it thanks to a CURL update in Couchbase 5.0. See how to connect to various endpoints to do just that. N1QL has many functions that allow you to...
Putting a Zipper on the Back of the Hospital Gown
Last week, security firm Appthority published a report titled HospitalGown: The Backend Exposure Putting Enterprise Data at Risk, which highlighted newly-discovered vulnerabilities between mobile apps and insecure backend databases containing enterprise data. The vulnerability is caused not by code in...
Improved SDK Authentication Methods – Couchbase 5.0
Couchbase Server 5.0 delivers some great new authentication features that require some minor changes to your client connection code. The specific changes to the SDK are outlined in this post and also refer to changes made in the pre-release April Developer Build as...
Introducing Role-Based Access Control in Couchbase Server 4.5
Over the years, it has been drilled into me to use “Least Privilege” access whenever and however possible. This specially applies to administrators – they manage important IT infrastructure components like NoSQL databases, and have the liberty to use all...
Introducing Couchbase Server 4.6.0 Developer Preview
Today, we’re very excited to announce the availability of Couchbase Server 4.6.0 DP. This is an early developer release that comes with some exciting capabilities for cross datacenter replication, security, query, tools, and powerful full text search capability. The Developer...