We strive to integrate Memcached into our infrastructure, but there is a security problem before doing this. We are launching several platforms, including ASP.NET and ColdFusion, and many application developers have many small applications running on different platforms. The following is a concern:
Appendix A places the dog element in the cache.
Appendix B reads the dog element (or worse: Appendix B updates the dog element)
After that, application A either retrieves bad information or is already viewing its information, aka βstolenβ. We would like to make sure that each application can interact only with its own sandbox and cannot interfere or read other application data.
Is it possible? Thank.
source
share