Quick Links

Re: New types for transparent encryption

From:	Itagaki Takahiro <itagaki(dot)takahiro(at)oss(dot)ntt(dot)co(dot)jp>
To:	tomas(at)tuxteam(dot)de
Cc:	pgsql-hackers(at)postgresql(dot)org
Subject:	Re: New types for transparent encryption
Date:	2009-07-08 05:43:35
Message-ID:	20090708143126.AEBA.52131E4D@oss.ntt.co.jp
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

tomas(at)tuxteam(dot)de wrote:

> As other posters have put it, I'd be very sceptical of server-side
> decryption. If the server "has" all the necessary bits to decrypt the
> data, all bets are off.

Server can access both encrypted data and its password, but we can put
them in different disk drives. We cannot decrypt the data unless we have
all copies of the drives.

If postgres server is started manually, there might be another design
that DBA sets password as a postmaster's startup parameter. If do so,
the password is only in memory but not in disk drives.

Regards,
---
ITAGAKI Takahiro
NTT Open Source Software Center

In response to

Re: New types for transparent encryption at 2009-07-07 10:17:26 from tomas

Responses

Re: New types for transparent encryption at 2009-07-08 05:56:59 from Greg Stark

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Brendan Jurd	2009-07-08 05:44:45	Re: [HACKERS] commitfest.postgresql.org
Previous Message	Brendan Jurd	2009-07-08 05:32:19	Re: [HACKERS] commitfest.postgresql.org