Docs
DBaaS
Security

Database Security

This feature is currently in beta.

While we strive to provide a stable service, we may introduce changes to the service that are not backwards compatible. We will do our best to notify you of any changes that may affect you.

During the beta period, documentation may be incomplete or outdated. Please let us know if you find any issues or have any feedback.

Interested in joining the beta program? Contact us

Thalassa Cloud’s Database as a Service (DBaaS) provides comprehensive security features to protect your data and ensure compliance with industry standards. Our security architecture is designed to provide defense in depth, protecting your databases at multiple layers.

Security Overview

Our DBaaS security model is built around four core principles:

  1. Data Protection: Encryption at rest and in transit. Replication and connections all utilize TLS.
  2. Access Control: Role-based access control and authentication
  3. Network Security: Network isolation and traffic control
  4. Compliance: Meeting industry security standards

Encryption

Encryption at Rest

All data stored in our database clusters is encrypted at rest using industry-standard encryption algorithms:

  • Storage encryption: All database files stored are encrypted.
  • Key management: Encryption keys are managed securely by our platform
  • Transparent encryption: Encryption is transparent to your applications

Encryption in Transit

All connections to your database clusters are encrypted using SSL/TLS:

  • SSL/TLS 1.2+: All client connections use modern TLS protocols
  • Connection verification: Clients can verify server identity
Quick Start