Re: Would PostgreSQL 16 native transparent data encryption support database level encryption?

From: Christophe Pettus <xof(at)thebuild(dot)com>
To: Adrian Klaver <adrian(dot)klaver(at)aklaver(dot)com>
Cc: Ron <ronljohnsonjr(at)gmail(dot)com>, pgsql-general(at)lists(dot)postgresql(dot)org
Subject: Re: Would PostgreSQL 16 native transparent data encryption support database level encryption?
Date: 2023-05-22 20:08:58
Message-ID: 37FB8117-603A-4D4A-83F5-4548A5CF6BAA@thebuild.com
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-general

> On May 22, 2023, at 13:06, Adrian Klaver <adrian(dot)klaver(at)aklaver(dot)com> wrote:
> As I understand TDE whether you can get to the files is not really the point. It is that someone/thing can and if they do the files are encrypted. Pretty sure RDS is not magical enough to have no access from any source to the file system.

That is true. (One of the reasons that TDE in cloud hosting is generally a regulatory issue, not really a technical one.) That being said, RDS does allow the underlying EBS volume to be encrypted, and you can do "bring your own key" using their keystores.

In response to

Browse pgsql-general by date

  From Date Subject
Next Message Ron 2023-05-22 20:37:29 Re: Would PostgreSQL 16 native transparent data encryption support database level encryption?
Previous Message Adrian Klaver 2023-05-22 20:06:56 Re: Would PostgreSQL 16 native transparent data encryption support database level encryption?