Reduced Attack Surface
The Operating System vendors design their products to support numerous applications to increase their usage. However, this approach results in a bloated operating system unfit to host any mission-critical application server securely. The PostgreSQL Secured by SG instance uses a trimmed down version of the OS thereby reducing the attack surface significantly. The entire footprint of our image is around 850MB.
The SG-TDE-MySQL is a complete stack that comes bundled with “Just Enough Operating System” plus the encryption software to encrypt MySQL data files along with a free key store and a log management service. The size of the entire bundle is around 750MB compared to 6-8GB of that of a Commercial-Off-The-Shelf (COTS) Linux distribution generally used to run a MySQL server.
A smaller size means that there is less attack surface available to an attacker to exploit vulnerabilities. It also means that there are fewer patches to be applied which lowers the Total Cost of Ownership (TCO).