public inbox for [email protected]
help / color / mirror / Atom feedFrom: Clay Jackson (cjackson) <[email protected]>
To: Bruce Momjian <[email protected]>
To: Christophe Pettus <[email protected]>
Cc: Adrian Klaver <[email protected]>
Cc: Kai Wagner <[email protected]>
Cc: Laurenz Albe <[email protected]>
Cc: Ron Johnson <[email protected]>
Cc: pgsql-general <[email protected]>
Subject: RE: Enquiry about TDE with PgSQL
Date: Fri, 31 Oct 2025 17:32:23 +0000
Message-ID: <CO1PR19MB4984F31E10CA30299FED53669BF8A@CO1PR19MB4984.namprd19.prod.outlook.com> (raw)
In-Reply-To: <[email protected]>
References: <CACgMzfwSDRF+kQr59h0-xGUobCeFZxwVzE_tUxF18DkVb+vuDQ@mail.gmail.com>
<CAKAnmmKDCOdUT5JtJZz5papMO0zW1cnG4934d6aQVCQ_KdbUeg@mail.gmail.com>
<CANzqJaA41CzNjkiQex+A0u9z11i6R3WQZJ+fkXfJO7VJwOMWzg@mail.gmail.com>
<[email protected]>
<[email protected]>
<CAG0qCNhL=SEB4vc4v48PxN1F-t8htC463TpX7KDNWQ-s3s8dtA@mail.gmail.com>
<[email protected]>
<[email protected]>
<[email protected]>
<[email protected]>
Pardo me for jumping in here - but would filesystem level encryption possibly meet your requirements?
Clay Jackson
Database Solutions Sales Engineer
[email protected]
office 949-754-1203 mobile 425-802-9603
-----Original Message-----
From: Bruce Momjian <[email protected]>
Sent: Friday, October 31, 2025 10:06 AM
To: Christophe Pettus <[email protected]>
Cc: Adrian Klaver <[email protected]>; Kai Wagner <[email protected]>; Laurenz Albe <[email protected]>; Ron Johnson <[email protected]>; pgsql-general <[email protected]>
Subject: Re: Enquiry about TDE with PgSQL
CAUTION: This email originated from outside of the organization. Do not follow guidance, click links, or open attachments unless you recognize the sender and know the content is safe.
On Fri, Oct 31, 2025 at 10:04:35AM -0700, Christophe Pettus wrote:
>
>
> > On Oct 31, 2025, at 08:21, Adrian Klaver <[email protected]>
> > wrote: Yeah, what I would like to know is how many of the data
> > breaches actually grab directly from the storage versus getting it
> > through the database or other software above the storage?
>
> Essentially zero.
>
> PCI, like a lot of data security standards, are a magpie's assemblage
> of things that the authors have heard about all of which sound
> "secure" to them. However, since these particular magpies have
> machine guns (metaphorically) and can do serious damage to businesses,
> we must play along with the masquerade.
Yes, we have been avoiding the masquerade for years. The question is can we continue. From the lack of discussion since April 1, 2025, it seems the answer is yes.
--
Bruce Momjian <[email protected]> https://momjian.us/
EDB https://enterprisedb.com/
Do not let urgent matters crowd out time for investment in the future.
view thread (36+ messages) latest in thread
reply
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Reply to all the recipients using the --to and --cc options:
reply via email
To: [email protected]
Cc: [email protected], [email protected], [email protected], [email protected], [email protected], [email protected], [email protected]
Subject: RE: Enquiry about TDE with PgSQL
In-Reply-To: <CO1PR19MB4984F31E10CA30299FED53669BF8A@CO1PR19MB4984.namprd19.prod.outlook.com>
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
This inbox is served by agora; see mirroring instructions
for how to clone and mirror all data and code used for this inbox