| From: | Dave Ewart <Dave(dot)Ewart(at)cancer(dot)org(dot)uk> |
|---|---|
| To: | pgsql-admin(at)postgresql(dot)org |
| Subject: | Re: Database Encryption (now required by law in Italy) |
| Date: | 2004-03-05 09:20:41 |
| Message-ID: | 20040305092041.GB13042@nemesis.ox.icnet.uk |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Friday, 05.03.2004 at 11:10 +0200, Radu-Adrian Popescu wrote:
> | While I can see how to protect a PGSQL connection using SSH
> | tunneling or a VPN, I cannot see any way to encrypt a PGSQL
> | database stored on a hard disk, put aside the possibility to
> | encrypt the hosting file system with LoopAES.
What's wrong with using a LoopAES filesystem? It protects against
someone walking off with the server, or at least the hard disk, and
being able to see the data.
Keeping encrypted data in the database itself is also perfectly
possible; you just need to decide what you're going to use to decrypt it
afterwards.
Dave.
- --
Dave Ewart
Dave(dot)Ewart(at)cancer(dot)org(dot)uk
Computing Manager, Epidemiology Unit, Oxford
Cancer Research UK
PGP: CC70 1883 BD92 E665 B840 118B 6E94 2CFD 694D E370
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFASEZpbpQs/WlN43ARApVHAKD+ymIbp+HAFUJwaTQ7JyUL07f3GgCeN9D7
miJut0SeQ7/16ANQf1NUUWk=
=lzG/
-----END PGP SIGNATURE-----
| From | Date | Subject | |
|---|---|---|---|
| Next Message | lnd | 2004-03-05 09:21:23 | Re: Database Encryption (now required by law in Italy) |
| Previous Message | Radu-Adrian Popescu | 2004-03-05 09:10:27 | Re: Database Encryption (now required by law in Italy) |