Home > mailing lists

Transparent Data Encryption (TDE) and encrypted files - Mailing list pgsql-hackers

From	Bruce Momjian
Subject	Transparent Data Encryption (TDE) and encrypted files
Date	October 1, 2019 00:26:33
Msg-id	20190930212633.GA18178@momjian.us Whole thread Raw
Responses	Re: Transparent Data Encryption (TDE) and encrypted files Re: Transparent Data Encryption (TDE) and encrypted files Re: Transparent Data Encryption (TDE) and encrypted files Re: Transparent Data Encryption (TDE) and encrypted files
List	pgsql-hackers

Tree view

For full-cluster Transparent Data Encryption (TDE), the current plan is
to encrypt all heap and index files, WAL, and all pgsql_tmp (work_mem
overflow).  The plan is:

    https://wiki.postgresql.org/wiki/Transparent_Data_Encryption#TODO_for_Full-Cluster_Encryption

We don't see much value to encrypting vm, fsm, pg_xact, pg_multixact, or
other files.  Is that correct?  Do any other PGDATA files contain user
data?

-- 
  Bruce Momjian  <bruce@momjian.us>        http://momjian.us
  EnterpriseDB                             http://enterprisedb.com

+ As you are, so once was I.  As I am, so you will be. +
+                      Ancient Roman grave inscription +

pgsql-hackers by date:

From: Andrew Dunstan
Date: 01 October 2019, 00:06:15
Subject: msys2 is missing pexports

From: David Fetter
Date: 01 October 2019, 00:26:58
Subject: Re: Commit fest 2019-09

Transparent Data Encryption (TDE) and encrypted files - Mailing list pgsql-hackers

Previous

Next