I am exploring options for distributing a MySQL/MariaDB database with my app. I want to ensure users (even the root user) cannot view or manipulate data in my database/tables. Recent releases of MySQL and MariaDB have data-at-rest capabilities:
MySQL 5.7.11 comes with InnoDB tablespace encryption
But what is not clear to me is: Can the MySQL root user reset the encryption password on my database/tables to view or manipulate the contents?
Go to Source