- MAY 2026
Threat model: what RedDB protects against (and what it doesn't)
An honest STRIDE walkthrough of the RedDB engine and vault. What the database protects against (cold-storage breach, replicated-secret leakage, key compromise during rotation) and what it does not (compromised application process, host-level side channels, malicious operator). Gaps are named, not hidden.
-
Per-row encryption with zero-downtime key rotation
How the vault keeps reads hot during rotation, and the one knob you should never touch in production.
-
GDPR right-to-erasure when your data is replicated and embedded
Article 17 across replicas, derived embeddings, backups, and WAL — what RedDB does automatically and what still needs an operator runbook.
-
BYOK, KMS, and the boring parts of multi-tenant secrets
AWS KMS, GCP KMS, and HSM integration for RedDB — plus the three failure modes nobody writes about until they happen at 03:00.