Features¶
We provide pg_tde in two versions for both PostgreSQL Community and Percona Server for PostgreSQL. The difference between the versions is in the set of included features which in its turn depends on the Storage Manager API. While PostgreSQL Community uses the default Storage Manager API, Percona Server for PostgreSQL extends the Storage Manager API enabling to integrate custom storage managers.
The following table provides features available for each version:
| PostgreSQL Community version | Percona Server for PostgreSQL version |
|---|---|
| Table encryption: - data tables, - TOAST tables - temporary tables created during the database operation. Metadata of those tables is not encrypted. |
Table encryption: - data tables, - Index data for encrypted tables, - TOAST tables, - temporary tables created during the database operation. Metadata of those tables is not encrypted. |
| Write-Ahead Log (WAL) encryption of data in encrypted tables | Global Write-Ahead Log (WAL) encryption: for data in encrypted and non-encrypted tables |
| Multi-tenancy support | Multi-tenancy support |
| Table-level granularity | Table-level granularity |
| Key management via: - HashiCorp Vault; - Local keyfile |
Key management via: - HashiCorp Vault; - KMIP server; - Local keyfile |
| Logical replication of encrypted tables |
Get expert help¶
If you need assistance, visit the community forum for comprehensive and free database knowledge, or contact our Percona Database Experts for professional support and services.
