Skip to content

Instantly share code, notes, and snippets.

@wuriyanto48

wuriyanto48/notest.md

Last active August 21, 2022 11:27
Show Gist options
  • Save wuriyanto48/ed63ec6fdc700ff6fba9b4404e22beb9 to your computer and use it in GitHub Desktop.
Save wuriyanto48/ed63ec6fdc700ff6fba9b4404e22beb9 to your computer and use it in GitHub Desktop.
Download ZIP
Mysql Column Level Encryption with AES
Raw
notest.md

https://dev.mysql.com/doc/refman/8.0/en/encryption-functions.html

install Mysql Server

$ sudo apt install mysql-server

login as mysql super user

> sudo mysql

show all users

> SELECT user,authentication_string,plugin,host FROM mysql.user;

create new user

> CREATE USER 'wury'@'localhost' IDENTIFIED WITH mysql_native_password BY 'haha12345';

create new database

> CREATE DATABASE haha;

grant user we just created to the database https://dev.mysql.com/doc/refman/8.0/en/privileges-provided.html#privileges-provided-summary

> GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on haha.* TO 'wury'@'localhost' WITH GRANT OPTION;

flush privileges

> FLUSH PRIVILEGES;

showing Grants for specific user

> SHOW GRANTS FOR 'wury'@'localhost';

login with new user we just created

> mysql -u wury -h localhost -p

change database

> use haha;

show tables

> show tables;

create new table

> CREATE TABLE USERS (
    id INT(6) UNSIGNED AUTO_INCREMENT PRIMARY KEY,
    email TEXT NOT NULL,
    credit_card TEXT NOT NULL
);

insert data

> INSERT INTO USERS (EMAIL, CREDIT_CARD) VALUES (TO_BASE64(AES_ENCRYPT('[email protected]', 'F3229A0B371ED2D9441B830D21A390C3')), TO_BASE64(AES_ENCRYPT('4797459275128533', 'F3229A0B371ED2D9441B830D21A390C3')));
> INSERT INTO USERS (EMAIL, CREDIT_CARD) VALUES (TO_BASE64(AES_ENCRYPT('[email protected]', 'F3229A0B371ED2D9441B830D21A390C3')), TO_BASE64(AES_ENCRYPT('4455778542145936', 'F3229A0B371ED2D9441B830D21A390C3')));
> INSERT INTO USERS (EMAIL, CREDIT_CARD) VALUES (TO_BASE64(AES_ENCRYPT('[email protected]', 'F3229A0B371ED2D9441B830D21A390C3')), TO_BASE64(AES_ENCRYPT('4797472753193994', 'F3229A0B371ED2D9441B830D21A390C3')));

read data

> SELECT AES_DECRYPT(FROM_BASE64(EMAIL), 'F3229A0B371ED2D9441B830D21A390C3') as EMAIL from USERS;
> SELECT AES_DECRYPT(FROM_BASE64(EMAIL), 'F3229A0B371ED2D9441B830D21A390C3') as EMAIL_D,AES_DECRYPT(FROM_BASE64(CREDIT_CARD), 'F3229A0B371ED2D9441B830D21A390C3') from USERS WHERE AES_DECRYPT(FROM_BASE64(EMAIL), 'F3229A0B371ED2D9441B830D21A390C3') = '[email protected]';
> SELECT AES_DECRYPT(FROM_BASE64(EMAIL), 'F3229A0B371ED2D9441B830D21A390C3') as EMAIL_D,AES_DECRYPT(FROM_BASE64(CREDIT_CARD), 'F3229A0B371ED2D9441B830D21A390C3') from USERS WHERE AES_DECRYPT(FROM_BASE64(EMAIL), 'F3229A0B371ED2D9441B830D21A390C3') LIKE 'al%';
> SELECT AES_DECRYPT(FROM_BASE64(EMAIL), 'F3229A0B371ED2D9441B830D21A390C3') as EMAIL_D,AES_DECRYPT(FROM_BASE64(CREDIT_CARD), 'F3229A0B371ED2D9441B830D21A390C3') from USERS ORDER BY AES_DECRYPT(FROM_BASE64(EMAIL), 'F3229A0B371ED2D9441B830D21A390C3') DESC;
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment