Re: Anonymized database dumps

From: hari(dot)fuchs(at)gmail(dot)com
To: pgsql-general(at)postgresql(dot)org
Subject: Re: Anonymized database dumps
Date: 2012-03-19 09:12:01
Message-ID: 87obrt7y5a.fsf@hf.protecting.net
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-general

Janning Vygen <vygen(at)kicktipp(dot)de> writes:

> pgcrypto does not work for this scenario as far as i know.
>
> pgcrypto enables me to encrypt my data and let only a user with the
> right password (or key or whatever) decrypt it, right? So if i run it
> in a test environment without this password the application is broken.
>
> I still want to use these table columns in my test environment but
> instead of real email addresses i want addresses like
> random_number(at)example(dot)org(dot)
>
> You might be right that it is a good idea to additional encrypt this data.

Maybe you could change your application so that it doesn't access the
critical tables directly and instead define views for them which, based
on current_user, either do decryption or return randim strings.

In response to

Responses

Browse pgsql-general by date

  From Date Subject
Next Message John R Pierce 2012-03-19 09:14:17 Re: Multi server query
Previous Message Sergey Konoplev 2012-03-19 08:58:08 Re: Multi server query