PGCon2016 - 20180510

PGCon 2016
The PostgreSQL Conference

Speakers
Joe Conway
Schedule
Day Talks - Day 2 - 2016-05-20
Room DMS 1120
Start time 10:00
Duration 00:45
Info
ID 909
Event type Lecture
Track Hacking
Language used for presentation English

MLS PostgreSQL

Implementing Multi-level Security in PostgreSQL with RLS and SELinux

PostgreSQL 9.5 has a new feature called Row Level Security (RLS). Using RLS, a PostgreSQL extension called sepgsql (somewhat customized), and Security Enhanced Linux (SELinux) configured properly, it is possible to create a Multi-level Security database.

This talk will describe how it can be done, including:

Overview/Use-case Solution Components * RLS * SELinux * sepgsql Configuration and Setup * Operating System/Networking/SELinux * sepgsql * Database schema/DDL Results * Authentication * Query * DML * Performance