Re: [Proposal] Table-level Transparent Data Encryption (TDE) and Key Management Service (KMS)
Joe Conway <mail@joeconway.com>
From: Joe Conway <mail@joeconway.com>
To: Tom Lane <tgl@sss.pgh.pa.us>, Robert Haas <robertmhaas@gmail.com>
Cc: Masahiko Sawada <sawada.mshk@gmail.com>,
"Moon, Insung" <Moon_Insung_i3@lab.ntt.co.jp>,
PostgreSQL-development <pgsql-hackers@postgresql.org>
Date: 2018-06-18T15:06:20Z
Lists: pgsql-hackers
Commits
Same data as JSON:
GET /api/v1/messages/:b64id/commits
the thread's linked commits as JSON, with link sources.
API reference →
-
Revamp the WAL record format.
- 2c03216d8311 9.5.0 cited
On 06/18/2018 10:52 AM, Tom Lane wrote: > Robert Haas <robertmhaas@gmail.com> writes: >> On Mon, Jun 18, 2018 at 10:12 AM, Joe Conway <mail@joeconway.com> wrote: >>> Not necessarily. Our pages probably have enough predictable bytes to aid >>> cryptanalysis, compared to user data in a column which might not be very >>> predicable. > >> Really? I would guess that the amount of entropy in a page is WAY >> higher than in an individual column value. > > Depending on the specifics of the encryption scheme, having some amount > of known (or guessable) plaintext may allow breaking the cipher, even > if much of the plaintext is not known. This is cryptology 101, really. Exactly > At the same time, having to have a bunch of independently-decipherable > short field values is not real secure either, especially if they're known > to all be encrypted with the same key. But what you know or can guess > about the plaintext in such cases would be target-specific, rather than > an attack that could be built once and used against any PG database. Again is dependent on the specific solution for encryption. In some cases you might do something like generate a single use random key, encrypt the payload with that, encrypt the single use key with the "global" key, append the two results and store. Joe -- Crunchy Data - http://crunchydata.com PostgreSQL Support for Secure Enterprises Consulting, Training, & Open Source Development