We are looking to integrate Memcached into our infrastructure, but have a security concern before we do. We run several platforms including ASP.NET and ColdFusion and have many app developers working many little applications across the different platforms. The concern is this:
App A places item “dog” into cache.
App B reads item “dog” (or worse: App B updates item “dog”)
After this happens, App A either retrieves bad information, or has already had its information viewed, aka “stolen”. What we would like to do is make it so that each app can only interact with its own sandbox, and may not interfere with or read other application’s data.
Is this possible? Thanks.
Create multiple memcached instances on your infrastructure and give each instance a different port. In this way you isolate yourself — however this is not the way you want to do things, you will have to split your available memory resources.
You should be able to use “convention” to your advantage — i.e.,e use Anon’s suggestion.
My advice is: anything that needs to be protected should not be in a memcached instance. Use this with anon’s advice and your doing what is considered best practise.