MLS PostgreSQL: Implementing Multi-level Security in PostgreSQL with RLS and SELinux
Presented by:
Joe Conway
Joe Conway has been involved with the PostgreSQL community for more than 25 years, presently as a PostgreSQL Committer, Major Contributor, and Infrastructure Team member. He currently leads the PostgreSQL Contributors Team at Amazon Web Services, RDS Open Source Databases.
No video of the event yet, sorry!
PostgreSQL 9.5 has a new feature called Row Level Security (RLS). Using RLS, a PostgreSQL extension called sepgsql (somewhat modified), and Security Enhanced Linux (SELinux) configured properly, it is possible to create a Multi-level Security database. This talk will describe how it can be done, including: Overview/Use-case Solution Components * RLS * SELinux * sepgsql Configuration and Setup * Operating System/Networking/SELinux * sepgsql * Database schema/DDL Results * Authentication * Query * DML * Performance
- Date:
- Duration:
- 30 min
- Room:
- Conference:
- PGConf US 2016 [PgConf.US]
- Language:
- Track:
- Development
- Difficulty:
- Medium