Idea ID: 2827451

Support for data encryption on PostgreSQL

Status : Waiting for Votes
Waiting for Votes
See status update history
9 months ago

Hello

INTRODUCTION

based on open source libraries, we implemented TDE solution for PG 10.x.(on RedHat 8.1)

Transparent Data Encryption (TDE) is a framework for encryption implementation:

  • support Data at rest encryption
  • TDE protects data from theft when file system access controls are compromised
  • encryption granularity
    • Database cluster
    • Databases
    • Tables
    • Tablespace
    • Columns => current implementation

 

IDEA PROPOSAL

implement option for SMAX connection to database with usage of TDE. It requires modification of the JDBC agent for opening database with the KEY (example below).

select pgtde_begin_session('<<_KEY>>');

conn = DriverManager.getConnection(

                    "jdbc:postgresql://host:port/databaseName",

                    "userName", "password");

            stmt = conn.createStatement();

Regards, Witold Rorot

Tags:

  • Encryption at rest is required by our Cyber Security governance board for any solution hosted in the cloud with confidential data or PII. User comments in support requests may include confidential information.

     

  • Thank you for sharing your idea! It’s open for comments and kudos, and we’re looking forward to input from the community. Once there is enough community traction, it will be further reviewed by the product team.