Encryption and TLS Support in PostgreSQL

Community Manager

Encryption and TLS Support in PostgreSQL

Hi All,
Recently, a number of questions reached the EDB team regarding encryption and TLS Support.  Could someone possibly shed some light on answers for everyone?
1) Is TDE part of EDBPostgres? 
2) Does EDB offer anything new or a different type of encryption which is not available in open source? 
3) Is TDE part of open source Postgres v10? 
4) Does EDB Postgres version 9.5 supports TLS1.2? 
5) Please help with steps to enable the TLS1.2 with EDB version 9.5 (PPAS)? 
6) Does open source v10 also supports TLS1.2?

Archived Discussions

Effective March 31st, we will no longer engage on PostgresRocks.

How to engage with us further?

  • Thought Leadership: EDB Blogs

  • Tips and Tricks: Postgres Tutorials

  • Customer Support: Create a Case Please note: Only customers with an active EDB support subscription and support portal authorization can create support ticket

  • Engage on Stackoverflow While engaging on Stackoverflow tag the question with EDB or EnterpriseDB.

EDB Team Member

Re: Encryption and TLS Support in PostgreSQL

For questions 1-3, Vibhor Kumar has posted a blog some time back on encryption in PostgreSQL, found here:  https://www.enterprisedb.com/blog/postgres-and-transparent-data-encryption-tde.  
Regarding questions 4-6, both PostgreSQL and EDB Postgres will automatically negotiate the highest TLS version that is supported both by the OpenSSL library against which the server is linked and the client.  Therefore, TLS 1.2 should be used automatically.  There is no configuration to explicitly choose the TLS version, although you can restrict particular ciphers by changing the ssl_ciphers setting in postgresql.conf.

© 2019 EnterpriseDB Corporation. All rights reserved.   |   Privacy Policy   |  Terms of Use   |   Trademarks