Quick Links

Re: Submission of Feature Request : RFC- for Implementing Transparent Data Encryption in Postgres

From:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To:	sanjay sharma <sanksh(at)hotmail(dot)com>
Cc:	pgsql-hackers(at)postgresql(dot)org
Subject:	Re: Submission of Feature Request : RFC- for Implementing Transparent Data Encryption in Postgres
Date:	2008-03-30 20:36:13
Message-ID:	28301.1206909373@sss.pgh.pa.us
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

sanjay sharma <sanksh(at)hotmail(dot)com> writes:
> 1. Transparent Data Encryption: The column which needs to be stored in encrypted form can be specified through DDL. The encryption key can be stored in a secure file accessible through a pass phrase. That particular column would apper in encrypted form for all users except the users specified through a grant to see the data in decrypted form.

Exactly what threat do you see this protecting against, that wouldn't be
better solved by SQL-standard features like column-level access
permissions?

regards, tom lane

In response to

Submission of Feature Request : RFC- for Implementing Transparent Data Encryption in Postgres at 2008-03-30 18:52:47 from sanjay sharma

Responses

Re: Submission of Feature Request : RFC- for Implementing Transparent Data Encryption in Postgres at 2008-03-30 21:37:43 from Douglas McNaught

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Tom Lane	2008-03-30 21:04:30	Re: Patch : Global Prepared Statements
Previous Message	David Fetter	2008-03-30 20:15:24	Re: Cast as compound type