Re: Disk Encryption - Postgresql vs. Oracle

Christopher Browne wrote:
> Martha Stewart called it a Good Thing when pgman(at)candle(dot)pha(dot)pa(dot)us (Bruce Momj$
> > Wow, nice analysis. Should this be in our documentation somewhere?
>
> Suggest a suitable section and I'd be more than happy to send in a
> patch adding this in. The only place I see pgcrypto referred to
> (which ought to be a pointer to "right place") is in the release
> notes. Or perhaps this is an item for FAQ.html?

I think Server Run-Time environment is the proper place, perhaps as a
new section at the end:

http://www.postgresql.org/docs/8.0/interactive/runtime.html

I think your three approaches of filesystem-based, column-based, and
client-side based is a good analysis that should be in the
documentation. It isn't 100% PostgreSQL-specific, but showing how
pgcrypto, SSL, and encrypted file systems fit together is helpful. In
fact our MD5-encryption of the stored password is another relivant issue.

--
Bruce Momjian | http://candle.pha.pa.us
pgman(at)candle(dot)pha(dot)pa(dot)us | (610) 359-1001
+ If your life is a hard drive, | 13 Roberts Road
+ Christ can be your backup. | Newtown Square, Pennsylvania 19073