Acra is a comprehensive database security suite providing field-level encryption, intrusion detection, and SQL injection prevention to protect sensitive data in distributed applications.
Database security suite. Database proxy with field-level encryption, search through encrypted data, SQL injections prevention, intrusion detection, honeypots. Supports client-side and proxy-side ("transparent") encryption. SQL, NoSQL.
Acra is designed for developers and security teams managing web, mobile, and IoT applications that require strong protection of sensitive data stored in SQL or NoSQL databases. It enables encryption of individual data fields before storage and offers multi-layered access control and intrusion detection to prevent data leakage and unauthorized access.
Acra is best used in distributed application environments requiring strong data confidentiality and integrity. Proper key management and configuration are critical to ensure security. It is recommended to integrate Acra early in the data lifecycle to maximize protection. The Community Edition is free for commercial and non-commercial use.
Visit the official documentation at https://docs.cossacklabs.com/acra/ for detailed installation guides
Download the latest release from https://github.com/cossacklabs/acra/releases
Install on supported server platforms such as Ubuntu, Debian, or CentOS
Deploy Acra using DigitalOcean marketplace for simplified setup
Configure Acra proxy and encryption keys according to your application needsacra-server
Starts the Acra server which handles encrypted data processing and decryption
acra-translator
Acts as a proxy to encrypt and decrypt database queries and responses transparently
acra-keys
Manages encryption keys used by Acra for field-level encryption
acra-connector
Connects applications to Acra proxy, enabling secure data encryption and decryption