| From: | "Bhalodiya, Chirag" <chirag(dot)bhalodiya(at)contractors(dot)roche(dot)com> |
|---|---|
| To: | Patrick FICHE <Patrick(dot)Fiche(at)aqsacom(dot)com> |
| Cc: | "pgsql-general(at)postgresql(dot)org" <pgsql-general(at)postgresql(dot)org> |
| Subject: | Re: PostGreSQL TDE encryption patch |
| Date: | 2020-06-25 10:50:06 |
| Message-ID: | CADw9uWPzmt9RKt3-WoRwG=ttu5=9km3mQBDY8QR+QaqviGx1NA@mail.gmail.com |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
Hi Patrick,
Thanks for the information. I was looking for out of box postgre solution
so wanted to know how to apply following patch on top of my postgre 12
installation:
https://www.postgresql.org/message-id/CAD21AoBjrbxvaMpTApX1cEsO%3D8N%3Dnc2xVZPB0d9e-VjJ%3DYaRnw%40mail.gmail.com
Regards,
Chirag.
On Thu, Jun 25, 2020 at 3:33 PM Patrick FICHE <Patrick(dot)Fiche(at)aqsacom(dot)com>
wrote:
> Hi
>
>
>
> CYBERTEC provided good installation guide (
> https://www.cybertec-postgresql.com/en/products/postgresql-transparent-data-encryption/
> ).
>
>
>
> Here is their answer to your question :
>
> *Q: Can I upgrade to an encrypted database?*
> A: In place encryption of existing clusters is currently not supported. A
> dump and reload to an encrypted instance is required, or logical
> replication can be used to perform the migration online.
>
>
>
> Regards,
>
>
>
> *Patrick Fiche*
>
> Database Engineer, Aqsacom Sas.
>
> *c.* 33 6 82 80 69 96
>
>
>
> [image: 01-03_AQSA_Main_Corporate_Logo_JPEG_White_Low.jpg]
> <http://www.aqsacom.com/>
>
>
>
> *From:* Bhalodiya, Chirag <chirag(dot)bhalodiya(at)contractors(dot)roche(dot)com>
> *Sent:* Thursday, June 25, 2020 9:50 AM
> *To:* pgsql-general(at)postgresql(dot)org
> *Subject:* PostGreSQL TDE encryption patch
>
>
>
> Hi,
>
>
>
> We are migrating our product to PostGreSQL from Oracle and as part of
> HIPPA(
> https://en.wikipedia.org/wiki/Health_Insurance_Portability_and_Accountability_Act)
> guidelines, we have a requirement to encrypt entire tablespace/specific
> tables using Transparent data encryption(TDE).
>
>
>
> I was looking at TDE solution in PostGreSQL and went through following
> wiki:
>
> https://wiki.postgresql.org/wiki/Transparent_Data_Encryption
>
>
>
> I found following TDE patch from this wiki:
>
>
> https://www.postgresql.org/message-id/CAD21AoBjrbxvaMpTApX1cEsO%3D8N%3Dnc2xVZPB0d9e-VjJ%3DYaRnw%40mail.gmail.com
>
>
>
>
> However, I am not sure how to apply this patch and I had the
> following questions:
>
> 1. We are using PostGreSQL 12. Is it possible to apply patches on top of
> existing PostGreSQL installation?
>
> 2. Will it be available anytime sooner with a major release like
> PostGreSQL 13?
>
>
>
> Regards,
>
> Chirag.
>
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Matthias Apitz | 2020-06-25 11:11:37 | error messages (autovaccum canceled and syntax errors) while loading a DUMP |
| Previous Message | Christoph Moench-Tegeder | 2020-06-25 10:24:07 | Re: Log the incoming old SSL certs by pid or any way |