On Thu, May 17, 2018 at 07:07:00AM +0000, ROS Didier wrote:
> Hi
>
> Regarding the encryption of data by pgcrypto, I would like to
> know the recommendations for the management of the key.
>
> Is it possible to store it off the PostgreSQL server?
>
> Is there the equivalent of Oracle "wallet" ?
Late reply, but the last presentation on this page shows how to use
cryptographic hardware with Postgres:
https://momjian.us/main/presentations/security.html
You could modify that to use a key management system (KMS).
--
Bruce Momjian <bruce@momjian.us> http://momjian.us
EnterpriseDB http://enterprisedb.com
+ As you are, so once was I. As I am, so you will be. +
+ Ancient Roman grave inscription +