Home > mailing lists

TDE (Transparent Data Encryption) supported ? - Mailing list pgsql-hackers

From	laurent.feron@free.fr
Subject	TDE (Transparent Data Encryption) supported ?
Date	September 11, 2020 11:41:15
Msg-id	751159936.59394498.1599813675559.JavaMail.root@spooler3-g27.priv.proxad.net Whole thread Raw
Responses	Re: TDE (Transparent Data Encryption) supported ? (Daniel Gustafsson <daniel@yesql.se>) Re: TDE (Transparent Data Encryption) supported ? (Stephen Frost <sfrost@snowman.net>)
List	pgsql-hackers

Tree view

Hello

Just arrived in the PostgreSQL world, and I'm looking for a solution to encrypt the database by using a TDE feature.
Apparentlythis feature does not exist. Is it expected in the roadmap?
 

There is a fork named PostgreSQL 12.x TDE from Cybertec. The issue is that there is no key management at all.

Using pgcrypto has an impact on the application then I have to give up this way.

There is another alternative named "Client-Side Encryption'' that I have not looked at in detail yet. I'm afraid that
thissolution has an impact on the application too. And if there are two applications pointing to the same database I am
wonderinghow the encryption key is shared between the two nodes.
 

The last point is about the backups, whatever the solution, the data has to be in an encrypted format when
"backuping".

Any suggestions are welcome :). Thanks

pgsql-hackers by date:

From: Kyotaro Horiguchi
Date: 11 September 2020, 11:36:19
Subject: Re: Implement UNLOGGED clause for COPY FROM

From: "Wang, Shenhao"
Date: 11 September 2020, 11:42:13
Subject: copyright problem in REL_13_STABLE

TDE (Transparent Data Encryption) supported ? - Mailing list pgsql-hackers

Previous

Next