Skip site navigation (1) Skip section navigation (2)

Re: RFE: Transparent encryption on all fields

From: Sam Mason <sam(at)samason(dot)me(dot)uk>
To: pgsql-hackers(at)postgresql(dot)org
Subject: Re: RFE: Transparent encryption on all fields
Date: 2009-04-26 19:54:56
Message-ID: 20090426195456.GO12225@frubble.xen.chris-lamb.co.uk (view raw or flat)
Thread:
Lists: pgsql-hackers
On Mon, Apr 27, 2009 at 07:03:32AM +1200, Andrej wrote:
> 2009/4/26 Sam Halliday <sam(dot)halliday(at)gmail(dot)com>:
> > I'm still talking about theft of machines (particularly laptops) as that is
> > a major threat. One need only read the British newspapers to discover story
> > after story of articles where "sensitive information was on a laptop which
> > was stolen". As pointed out elsewhere, psql + encrypted drive is entirely
> > unpractical as no OS is setup to ask for an encrypted drive password on boot
> > (similarly for headless machines, user interaction is required). A practical
> > solution that accomplishes the same goals as the encrypted drive is
> > necessary.
>
> Buy a higher end thinkpad, it uses a BIOS password and an ASIC
> to encrypt the data in hardware, w/o impact on performance.

There are various tools that allow you to do this without specialised
hardware, TrueCrypt[1] is one I've used in the past and is very easy for
naive users to get their heads around.

-- 
  Sam  http://samason.me.uk/

 [1] http://www.truecrypt.org/

In response to

Responses

pgsql-hackers by date

Next:From: Gevik BabakhaniDate: 2009-04-26 20:32:42
Subject: Multiple parameters with the same name for functions.
Previous:From: AndrejDate: 2009-04-26 19:03:32
Subject: Re: RFE: Transparent encryption on all fields

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group