| From: | Simon Riggs <simon(at)2ndquadrant(dot)com> |
|---|---|
| To: | Heikki Linnakangas <hlinnakangas(at)vmware(dot)com> |
| Cc: | Stephen Frost <sfrost(at)snowman(dot)net>, Damian Wolgast <damian(dot)wolgast(at)si-co(dot)net>, PostgreSQL-development <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Column Redaction |
| Date: | 2014-10-10 12:53:04 |
| Message-ID: | CA+U5nMLbrv1_05-zry+nxkss7VOQ8e5-A7w4=HcRqLhX=rVqhA@mail.gmail.com |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On 10 October 2014 12:01, Heikki Linnakangas <hlinnakangas(at)vmware(dot)com> wrote:
> Really, I don't see how this can possible be made to work. You can't allow
> ad hoc processing of data, and still avoid revealing it to the user.
Anyone with unmonitored access and sufficient time can break through security.
I think that is true of any kind of security, and so it is true here also.
Auditing and controls are required also, that's why I suggested those
first. This proposal was looking beyond that to what we might need
next.
--
Simon Riggs http://www.2ndQuadrant.com/
PostgreSQL Development, 24x7 Support, Training & Services
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Robert Haas | 2014-10-10 12:58:35 | Re: Column Redaction |
| Previous Message | Simon Riggs | 2014-10-10 12:43:01 | Re: Column Redaction |