Received: from malur.postgresql.org ([217.196.149.56])
	by arkaria.postgresql.org with esmtps  (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.94.2)
	(envelope-from <pgsql-general-owner+archive@lists.postgresql.org>)
	id 1vFzVN-005EH6-SW
	for pgsql-general@arkaria.postgresql.org; Mon, 03 Nov 2025 18:42:13 +0000
Received: from localhost ([127.0.0.1] helo=malur.postgresql.org)
	by malur.postgresql.org with esmtp (Exim 4.94.2)
	(envelope-from <pgsql-general-owner+archive@lists.postgresql.org>)
	id 1vFzVM-007rqf-Qx
	for pgsql-general@arkaria.postgresql.org; Mon, 03 Nov 2025 18:42:11 +0000
Received: from magus.postgresql.org ([2a02:c0:301:0:ffff::29])
	by malur.postgresql.org with esmtps  (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.94.2)
	(envelope-from <laurenz.albe@cybertec.at>)
	id 1vFzVM-007rqX-F5
	for pgsql-general@lists.postgresql.org; Mon, 03 Nov 2025 18:42:11 +0000
Received: from mail-ej1-x62b.google.com ([2a00:1450:4864:20::62b])
	by magus.postgresql.org with esmtps  (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
	(Exim 4.96)
	(envelope-from <laurenz.albe@cybertec.at>)
	id 1vFzVJ-005nG6-0n
	for pgsql-general@postgresql.org;
	Mon, 03 Nov 2025 18:42:11 +0000
Received: by mail-ej1-x62b.google.com with SMTP id a640c23a62f3a-b713c7096f9so189745266b.3
        for <pgsql-general@postgresql.org>; Mon, 03 Nov 2025 10:42:08 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=cybertec.at; s=google; t=1762195327; x=1762800127; darn=postgresql.org;
        h=mime-version:user-agent:content-transfer-encoding:references
         :in-reply-to:date:cc:to:from:subject:message-id:from:to:cc:subject
         :date:message-id:reply-to;
        bh=Ey6AAgGYVEewHmT0oTvG5Xth0L7W61bUD1fwiZd7Z2M=;
        b=AC4r0Gmxg7sGIiznXEecOUsZ78tK9OX63yEp7OhiSSXEJ3MXMVroOGZje8WAFARFqq
         Go2Q7gzIaZk0IYZf5uTWLo8QBCQ2Or5eHvlTGgD489Pnri3FdR95tdVne5f8ly5fc5Gx
         agcR7c6hWBf3CtGPdy8/mzwRemwSLR/xUGeh5ExiQbC3W4HASxV7a4Nvu77zalappc0A
         8fzbW8f60CHMmSj3kC3wF8XBBbjC42ij7sv/U+0RJZ+tWAqBApgJA4yzIKoX3VwbQaDZ
         p8ZT923IeQ2tJNZ5lUfE+UM/ymOlrvDUcWLSgjmtVYnuck6OFaQHev2VirJ+DMFm79Cy
         eZ/Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1762195327; x=1762800127;
        h=mime-version:user-agent:content-transfer-encoding:references
         :in-reply-to:date:cc:to:from:subject:message-id:x-gm-message-state
         :from:to:cc:subject:date:message-id:reply-to;
        bh=Ey6AAgGYVEewHmT0oTvG5Xth0L7W61bUD1fwiZd7Z2M=;
        b=AqyQJ8XmiqbhafAyYMOdhbxt2u69zO202vBgSYk6mKNZ2Z+5UTsuD9/AEDMo42SUe1
         ejdZnfOdLfi2DnJ6pfBMsH0dnHviMXL1G40P02NGkp2PxLGwnzxYMuYvrzbOEy5Ey7yG
         O3SjK7gNwA39DVRJx+E+WjH7MC1AvbwB0Ay+HTRAQaLtRMiLebMUcKsN5D0/sEUdnxoe
         UydzPzkHYF1Kge/xdIHXHpE+LuF4i7qwJGZqMbDfG7KUuA2nGWNSFjN7nZrA2XFvUqMo
         8x3ufKm+ZXItE/MuMbqXbb62VBW6wRiAhB/pZs9tK8iLyf+d8bkXh+QsoljeQhoYnFBN
         Y9nA==
X-Forwarded-Encrypted: i=1; AJvYcCVjUTOIdzslcqNS2QMoOwWgtchJFoXsvEaJg59mVq+oGnJro/vBqmYxFfuNRUxj+SUjBID+VOf0IMDxhiuY@postgresql.org
X-Gm-Message-State: AOJu0YwhUk/3IdWUAtOrPlY8pkPElIcGc2Byj6Lx4tqLUccMnFLVs6NT
	RdPUMrmZSFu8D/xLgexwm9YCJKEUU4XPyCRnXCO2bbzjICUvEVC/oLlSIpNVecov17khoitbUlJ
	ms9NZpGsJ0g==
X-Gm-Gg: ASbGnctvEODMIcY7H7DOR4Tic89h01qYmVIyKkEUlypP5W/jAHXXaQZYMoXyv/Kidk0
	F/wZ5uvj9WphQTI3uQVx7+1/S4+FfxJZcilQCEuGPwKHeli75uUeY5QsW2NbsMkE7AUsXWsj4ZV
	iYTvzeMc2+UjfPlaO9I2Qm7vUXrVwpGzWKxB0lds42ada1Ee+gJe5jkPJW/ogxmyn6vnoykZLfz
	rXeVPE8G0pABDcal4CIhnlR4bMq7u3LJYVi3zz01fdZYzhsdTRvRa8ZxXQS6UGAOwD+5+vtzCGN
	Uiwu9mzIVX+rFto0tc/1iFcGyXcsWCphq91N36VmUBZxfrAhPtH8lkIeflYJHrJFlf2isKbOZk/
	iYXRDeZ+4PtNVdFSQWqBsDi0nR91pvlGhxEbm3Vx9bYIdY7NT0iO52YlPHpAtV3s7y6T4Xx2x69
	6lSvnfnEhdhGCdNEtNIbrBteHjFeWj9sXOLov44g==
X-Google-Smtp-Source: AGHT+IEvLUqKrJHdiX5NAYyohcIwicUJz33JbsXl7XWdSaYVRPwRTztzbr/tgzG7oEBv6VcUCEJ1pw==
X-Received: by 2002:a17:907:6d25:b0:b64:44fb:eb7 with SMTP id a640c23a62f3a-b70700badc1mr1504665866b.11.1762195327335;
        Mon, 03 Nov 2025 10:42:07 -0800 (PST)
Received: from laurenz.albe-K4N0CV00F97414D ([46.226.60.98])
        by smtp.gmail.com with ESMTPSA id a640c23a62f3a-b7077975d24sm1114066366b.1.2025.11.03.10.42.06
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Mon, 03 Nov 2025 10:42:07 -0800 (PST)
Message-ID: <bb3db67c53fc1c58ba1fae740b52cb7450fbcab3.camel@cybertec.at>
Subject: Re: Enquiry about TDE with PgSQL
From: Laurenz Albe <laurenz.albe@cybertec.at>
To: Bruce Momjian <bruce@momjian.us>, Kai Wagner <kai.wagner@percona.com>
Cc: Chris Travers <chris.travers@gmail.com>, Christophe Pettus	
 <xof@thebuild.com>, "Clay Jackson (cjackson)" <Clay.Jackson@quest.com>, 
 pgsql-general <pgsql-general@postgresql.org>, Ron Johnson
 <ronljohnsonjr@gmail.com>
Date: Mon, 03 Nov 2025 19:42:06 +0100
In-Reply-To: <aQjeuRsBLS6cXNLC@momjian.us>
References: 
	<CAG0qCNhL=SEB4vc4v48PxN1F-t8htC463TpX7KDNWQ-s3s8dtA@mail.gmail.com>
	 <aQTNmM-3VeTRZdx0@momjian.us>
	 <FC8C7F2D-CD38-42C7-80D3-516239B70A2D@thebuild.com>
	 <aQVScCjItvCtgVPn@momjian.us>
	 <CO1PR19MB4984B665A5F9F38A5E0FB5969BF9A@CO1PR19MB4984.namprd19.prod.outlook.com>
	 <3DC589BC-A5F6-49BC-BFFC-F1FCB0FF7E95@thebuild.com>
	 <CAKt_ZfuwPgG_nJHp6S=8k_+NdA6Op7hE0z7+s4-HuBqr1cnwsg@mail.gmail.com>
	 <CAG0qCNjd2m9Ej1ZEwuCCkgsqJz0vnso3ZFwjKCxzwUfnfu=SNw@mail.gmail.com>
	 <aQYSAGEfd116_58N@momjian.us>
	 <CAG0qCNgV+Ra72vTvCoTZqn7KUUsXvp3N=ZUgACgMTDDPt8WTkA@mail.gmail.com>
	 <aQjeuRsBLS6cXNLC@momjian.us>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
User-Agent: Evolution 3.56.2 (3.56.2-2.fc42) 
MIME-Version: 1.0
List-Id: <pgsql-general.lists.postgresql.org>
List-Help: <https://lists.postgresql.org/manage/>
List-Subscribe: <https://lists.postgresql.org/manage/>
List-Post: <mailto:pgsql-general@lists.postgresql.org>
List-Owner: <mailto:pgsql-general-owner@lists.postgresql.org>
List-Archive: <https://www.postgresql.org/list/pgsql-general>
Archived-At: <https://www.postgresql.org/message-id/bb3db67c53fc1c58ba1fae740b52cb7450fbcab3.camel%40cybertec.at>
Precedence: bulk

On Mon, 2025-11-03 at 11:56 -0500, Bruce Momjian wrote:
> The problem with the Percona extension is it seems like it was developed
> mostly/all by Percona employees, meaning development was driven/steered
> by Percona, and there was insufficient feedback from the community for
> it to be polished enough to be a general community solution.

Reading a Percona blog, it looks like you need a modified server to get
to encrypt WAL, and they probably have no support for encrypting
temporary files.  So I'd say that TDE can probably not be a pure extension.
Perhaps somebody from Percona can confirm.

But I don't think it's a shortage of implementations for TDE that is the
problem.

Since you say that encrypting the temp files is the biggest hurdle for
community acceptance, what about a first version that does not encrypt
temp files?  For one, that will be good for encrypted backups (which is
one of the good use cases for TDE), and then you could argue that temp
files are not data *at rest*, so data-at-rest-encryption does not apply
to them.  Rome wasn't built in a day, and neither were parallel query
or declarative partitioning.

Yours,
Laurenz Albe