From: | Saurav Sarkar <saurav(dot)sarkar1(at)gmail(dot)com> |
---|---|
To: | "David G(dot) Johnston" <david(dot)g(dot)johnston(at)gmail(dot)com> |
Cc: | PostgreSQL General <pgsql-general(at)lists(dot)postgresql(dot)org> |
Subject: | Re: Encryption with customer provided key in a multi tenant Postgres JSONB DB |
Date: | 2020-11-12 06:27:27 |
Message-ID: | CAP+kwAX8=vedAYdM9Qe8az03kQB60REgn1L7C_UEG7yQy8BFcA@mail.gmail.com |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-general |
Hi David,
Thanks for the reply.
I just wanted to check if there is any possibility or any activity ongoing
which can enable database or fine granular level encryption in future.
Probably then i can wait otherwise i have to move towards Client Side
encryption as you mentioned.
Best Regards,
Saurav
On Thu, Nov 12, 2020 at 11:44 AM David G. Johnston <
david(dot)g(dot)johnston(at)gmail(dot)com> wrote:
> On Wed, Nov 11, 2020 at 10:49 PM Saurav Sarkar <saurav(dot)sarkar1(at)gmail(dot)com>
> wrote:
>
>> We have a multi tenant application where for each tenant we create
>> separate tables . So for e.g. if i have 100 tenants then i have 100 tables.
>>
>> Now we want to have encryption for the data in the tables with the tenant
>> provided key. Is it possible to encrypt tables in the same database with
>> different keys. ?
>>
>> I learnt that PostgreSQL itself does not support encryption at database
>> level or other finer granular levels . May i please know if in future can
>> this be supported ? or is it not possible technically at all ?
>>
> So you answered your own question...though you can encrypt the data being
> stored within the table by supplying it pre-encrypted and letting the
> client deal with encryption and decryption - which is probably your best
> bet anyway.
>
> Almost everything is possible if you throw enough time and effort at it so
> I'm not sure how to constructively answer the last two questions. Why do
> you ask?
>
> David J.
>
>
From | Date | Subject | |
---|---|---|---|
Next Message | Matthias Apitz | 2020-11-12 07:07:10 | ECPG sqlca error handling |
Previous Message | Paul Förster | 2020-11-12 06:22:18 | Re: Discovering postgres binary directory location |