On Apr 9, 2014, at 3:40 PM, CS_DBA <cs_dba@consistentstate.com> wrote:
> Hi All;
>
> We have a client with this requirement:
>
> At rest data must be encrypted with a unique client key
>
> Any thoughts on how to pull this off for PostgreSQL stored data?
Does there happen to be a Postgresql proxy, such as a modified pgbouncer, that implements column-wise and/or row-wise
encryptionand decryption using keys specific to the authenticated user? It seems like a reasonable way to implement an
encryptionlayer that would provide protection against a number of threats without requiring modification to the higher
layersof the application or to the Postgresql server.
Guy