CIS Benchmark for MySQL Enterprise Edition

The Center for Internet Security (CIS) is a global community of cybersecurity experts. CIS develops CIS Benchmarks, secure configuration and implementation guidelines used to safeguard against cyber threats. The CIS MySQL Benchmark provides prescriptive guidance for establishing a secure configuration posture for MySQL Enterprise Edition 8.0.

CIS benchmarks go through continuous consensus reviews by security professionals and in this case MySQL experts. Reviewers come from consulting, software development, audit and compliance, security research, operations, government, and legal, providing a diversity of perspectives on cybersecurity. Although the CIS Benchmarks focuses on Linux based platforms, many of the concepts and practices transfer to other platforms supported by MySQL. Bring your systems into compliance using a secure baseline by implementing and auditing against CIS Benchmarks.

MySQL Configuration Guidelines and Recommendations Covering:

  • OS
  • Network
  • File Permissions
  • Updates and Patches
  • Auditing and Logging
  • Authentication
  • High Availability (HA) and Disaster Recovery (DR)

Prescriptive Guidance for MySQL Enterprise Edition Including:

  • Secure baseline for security auditing
  • Risk explanation
  • Impact assessment
  • Steps to perform audit
  • How to fix issues detected by auditing
  • Cross-references to related resources
  • Continuously benchmark updates
  • Participation with CIS MySQL security community

Recognized as a Secure Configuration Standard by:

  • DoD Cloud Computing Security Recommendation Guide (SRG)
  • Payment Card Industry Data Security Standard (PCI DSS)
  • Health Insurance Portability and Accountability Act (HIPAA)
  • Federal Information Security Management Act (FISMA)
  • Federal Risk and Authorization Management Program (FedRAMP)
  • National Institute of Standards and Technology (NIST)
  • And more - for a complete list, see CIS Mapping and Compliance

Additional Resources