Home > mailing lists

Re: Application Level Encryption - Mailing list pgsql-general

From	Michel Pelletier
Subject	Re: Application Level Encryption
Date	July 5, 2020 18:59:38
Msg-id	CACxu=vKOjJkDttFROroumXp4peoMrGhZGPdvZN2YdH6y8mF2-Q@mail.gmail.com Whole thread Raw
In response to	Application Level Encryption (Zahir Lalani <ZahirLalani@oliver.agency>)
Responses	RE: Application Level Encryption
List	pgsql-general

Tree view

Hi Zahir,

pgsodium is a new-ish encyption extension built around the libsodium encryption API.

https://github.com/michelp/pgsodium

It supports calling a script to load a hidden key in memory and use that key to derive other keys. There's an example shown in the documentation. I'm working on support for the Zymkey hardware security module, as well as support for the AWS key management API.

-Michel

On Sat, Jul 4, 2020 at 11:22 PM Zahir Lalani <ZahirLalani@oliver.agency> wrote:

Hello

Does anyone have any serious experience of implementing app level encryption with strong key management?

If so would like to arrange an offline chat please

Z

pgsql-general by date:

From: "sivapostgres@yahoo.com"
Date: 05 July 2020, 14:59:19
Subject: Re: Application Level Encryption

From: Zahir Lalani
Date: 05 July 2020, 20:14:19
Subject: RE: Application Level Encryption

Re: Application Level Encryption - Mailing list pgsql-general

Previous

Next