5 Configuring Security for Distributed Applications with Berkeley DB

In addition to being an embedded database, Berkeley DB also supports client-server architecture by providing a stand-alone server program and client driver APIs. The server program offers remote access to DB features.

The client driver APIs provide building blocks for applications that communicate with a database server. Multiple client applications can communicate with a single server simultaneously. For more information, see the Getting Started with Distributed Berkeley DB Applications guide.

You can enable Secure Sockets Layer (SSL) to secure communications between clients and servers. Both uni- and bi-directional authentications are supported. Java keystores are used to manage private and public keys for SSL authentication. Depending on whether uni- or bi-directional authentication is used, keystores and/or trust stores must be configured properly on both client and server machines.