| From: | Marc Munro <marc(at)bloodnok(dot)com> |
|---|---|
| To: | pgsql-announce(at)postgresql(dot)org |
| Subject: | Veil2 0.9 Beta |
| Date: | 2020-05-25 20:37:23 |
| Message-ID: | 1590439043.31834.25.camel@bloodnok.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-announce |
Announcing the first Beta release of Veil2.
Veil2 is a database security add-on for Postgres that provides a
framework for implementing Virtual Private Databases with row level
security.
Veil2 defines a new way of looking at data security: that of a
Relational Security System, in which each privilege is applied
contextually, based on the user's relationships with the secured data.
It provides a demo database that shows this in action, and which also
provides an example of how to integrate Veil2 with your existing, or
new, database design.
Its documentation explains how it works, what you need to do to use it,
and why you should.
It is aimed at those who believe that application-level security is not
enough. With Veil2, the application server has no rights to database
data: it can only access data on behalf of its users, and only with
their access rights, which operate at the row level.
Veil2 is written entirely in sql and plpgsql. Performance is achieved
primarily by managing sets of privileges as bitmaps using pgbitmap.
It can be found here:
https://github.com/marcmunro/pgbitmap
Documentation is here:
https://marcmunro.github.io/veil2/html/index.html
Relational Security Systems are described here:
https://marcmunro.github.io/veil2/html/ar01s02.html
It is free software, licensed under the GPL v3.
__
Marc
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Hiroshi Saito | 2020-05-26 13:05:06 | psqlODBC 12.02.0000 Released |
| Previous Message | David Fetter | 2020-05-24 18:23:00 | == PostgreSQL Weekly News - May 24, 2020 == |