| From: | Haribabu Kommi <kommi(dot)haribabu(at)gmail(dot)com> |
|---|---|
| To: | PostgreSQL Hackers <pgsql-hackers(at)lists(dot)postgresql(dot)org> |
| Subject: | Transparent data encryption support as an extension |
| Date: | 2019-04-12 09:34:13 |
| Message-ID: | CAJrrPGdP6zX7QmjiUPDsNLCMqot5xSKc+S_9CTj_bAW2juw=1A@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Hi Hackers,
I read many mail discussions in supporting data at rest encryption support
in
PostgreSQL.
I checked the discussions around full instance encryption or tablespace or
table level encryption. In my observation, all the proposals are trying to
modify
the core code to support encryption.
I am thinking of an approach of providing tablespace level encryption
support
including WAL using an extension instead of changing the core code by adding
hooks in xlogwrite and xlogread flows, reorderbuffer flows and also by
adding
smgr plugin routines to support encryption and decryption of other pages.
Definitely this approach does't work for full instance encryption.
Any opinions/comments/problems in evaluating the encryption with an
extesnion
approach?
Regards,
Haribabu Kommi
Fujitsu Australia
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Masahiko Sawada | 2019-04-12 10:04:16 | Re: Transparent data encryption support as an extension |
| Previous Message | Haribabu Kommi | 2019-04-12 08:48:33 | Re: Attempt to consolidate reading of XLOG page |