postgresql – Postgres TDE capability only for specific schema

postgresql – Postgres TDE capability only for specific schema

there is a reason for this: if we allow encryption on a per-table level (or per schema or per database, doesnt matter) we got to manage an infinite number of keys. this is especially true during point-in-time-recovery and all that. this is why we decided to do the encryption on the instance level. one key. the core advantage is: we can easily encrypt all parts of the instance including the WAL, temp files, and so on (basically everything but the clog).

dont expect this to change – go for full encryption.
we can help you with that.

cheers from cybertec 🙂
i hope you like the feature 🙂

hans

Unfortunately it is not possible to just encrypt a schema because, when you install PostgreSQL TDE, you initialize the whole database with the encryption key.

Like you can see in the picture here:

CYBERTEC

postgresql – Postgres TDE capability only for specific schema

Related Posts

Leave a Reply

Your email address will not be published.