Documentation Home
Security in MySQL
Related Documentation Download this Excerpt
PDF (US Ltr) - 2.2Mb
PDF (A4) - 2.2Mb
HTML Download (TGZ) - 454.3Kb
HTML Download (Zip) - 461.5Kb


Security in MySQL  /  ...  /  Keyring Components Versus Keyring Plugins

6.4.1 Keyring Components Versus Keyring Plugins

The MySQL Keyring originally implemented keystore capabilities using server plugins, but began transitioning to use the component infrastructure in MySQL 8.0.24. This section briefly compares keyring components and plugins to provide an overview of their differences. It may assist you in making the transition from plugins to components, or, if you are just beginning to use the keyring, assist you in choosing whether to use a component versus using a plugin.

  • Keyring plugin loading uses the --early-plugin-load option. Keyring component loading uses a manifest.

  • Keyring plugin configuration is based on plugin-specific system variables. For keyring components, no system variables are used. Instead, each component has its own configuration file.

  • Keyring components have fewer restrictions than keyring plugins with respect to key types and lengths. See Section 6.4.12, “Supported Keyring Key Types and Lengths”.