encrypted postgresql

8/13/2019 Encrypted PostgreSQL

1/37

Consulting Development IT Operations Training Support Products

Encrypted PostgreSQL

PGCon 2009Ottawa, Canada

Magnus HaganderRedpill Linpro AB


2/37


Decide wat !our treat is

Everything comes at a cost Per"or#ance or #aintaina$ilit!

Encryption for the sake ofencryption?

Compliance/regulations?


3/37


%ncr!ption at di""erent la!ers

Application

Database

Storage Full harddrive/filesystem encryption

Pgcrypto encryption functions

Application data encryption


4/37 Consulting Development IT Operations Training Support Products

%ncr!ption at di""erent la!ers

Application

Database

Storage Full harddrive/filesystem encryption

Pgcrypto encryption functions

Application data encryption

SSL or VPN



Application data encr!ption

Independent of the database

Implemented in the application

layer &o, we won't tal( a$out te #!riad o"

options ere



Harddri)e*"iles!ste# encr!ption

Independent of the database

Filesystem och block device level

Needs to keep fsync behaviour!

Keeps all database functionality

here to store the key?


7/37


Pgcr!pto

Encryption as database functions

Client independent

on"t forget to encrypt theconnection!


8/37


Pgcr!pto + callenges

Encryption is easy Relati)el! spea(ing

As long as !ou don't in)ent !our own Key management is not


9/37


Pgcr!pto - o)er)iew

#a$ encryption

%&% compatible encryption

'ashing


10/37


pgcr!pto. raw encr!ptionSELECT encrypt(data, key, type)

SELECT decrypt(data, key, type)

SELECT encrypt_iv(data, key, iv, type)

(ype) bf*cbc+ aes*cbc+ ,,, -ecb supported+ but,,.

perates on bytea+ returns bytea

gen0random0bytes-. can be used to create key


11/37


pgcr!pto. PGP encr!ptionpgp_sym_encrypt(data, password[, opt])

pgp_sym_decrypt(data, password[, opt])

perates on te1t in plainte1t+ bytea in cipherte1t

ar#or/, dear#or/

(akes gpg style options like ciper-algo=aes256


12/37


pgcr!pto. PGP encr!ptionpgp_sym_encrypt(data, password[, opt])

pgp_sym_decrypt(data, password[, opt])

%ublic key encryption also supported+ but no keygeneration

ill detect $rong key/corrupt data


13/37


pgcr!pto. Hasing SELECT digest(txt, type)

Returns $!tea, use encode/ to get e1

Md, sa3, sa4#ore5

SELECT encode( digest('ocats!', 's"a#$%'), '&ase%')


14/37


pgcr!pto. Hasing SELECT crypt('secret', gen_sat('&'))

6tores salt as part o" as

Autodetects algorit#

#d, $", etc

SELECT "as"crypt('secret', "as")


15/37


7e! #anage#ent

here to store the key

'o$ to protect the key

'o$ to access the key

'o$ to do key recovery


16/37


6earcing encr!pted data

2orry+ can"t really be done by inde1

3atch encrypted data for ra$

encrypted witoutpadding But tis decreases securit!

And does 8is eual: #atcing onl!

Inde1 on e1pression But w! did !ou encr!pt in te "irst place;


17/37


18/37


66L secured connections

Encryption

3an*in*the*middle protection

4uthentication


19/37



Enabled on the server -ssl5yes.

ptionally re6uired through

pg0hba ptionally re6uired in libp6


20/37



Need to protect data in !otdirections

For e1ample username/pass$ord 3ust "nowbefore connection is

started


21/37


66L encr!ption

227 alwa#sre6uires a servercertificate

Can be self*signed oes not need to be kno$n by

client


22/37


Certi"icate cains

Issuer

Issuer

Issuer oot certificate

Intermediate certificate

Server certificate


23/37


Certi"icate cains

Issuer

Issuer

Issuer oot certificate

Intermediate certificate

Server certificate

Self!signedcertificate


24/37



"lient Server


25/37


=reats andled $! 66L.

%a)esdropping

"lient Server

S#L#"$ % F&' secret(stuff


26/37


%a)esdropping

%revented by encrypting all data

Key negotiation is automatic

2erver certificate used but notverified


27/37



Man in te #iddle

"lient Server

Fa)e server

Valid SSL session Valid SSL session


28/37


66L ser)er )eri"ication

n top of encryption

8alidate that the server is $ho it

claims to be C4 issues certificate+ can be self*

signed C4 certificate kno$n by client


29/37



Man in te #iddle

"lient Server

Fa)e server

Valid SSL session


30/37


66L client autentication

n top of encryption

Normally on top of server

verificateion+ but not necessary C4 issued certificate on client

3atch C$on certificate to user id %rotect client certificate!


31/37


66L in li$p

Controlled by sslmodeparameter

r environmentP%SS&'OD(

For security+ must be set on client Re#e#$er, unknown = unsecure


32/37


6u##ar! o" li$p 66L #odes

Protect against Compatible with server set to... Performance

ClientMode

Eavesdrop MITM SSL required SSL disabled overhead

disable no no FAIL *or)s no

allo* no no *or)s *or)s If necessary

prefer no no *or)s *or)s If possible

re+uire yes no *or)s FAIL yes

verify!ca yes yes *or)s FAIL yes

verify!full yes yes *or)s FAIL yes


33/37




ClientMode









34/37




ClientMode









35/37




ClientMode









36/37


6u##ar!

nly encrypt $hat you really need

nly encrypted wereyou really

need Key management is ard

3any use*cases are very narro$


37/37


Encrypted PostgreSQL

Questions?

[email protected]://blog.hagander.net

encrypted postgresql

Documents