Another week, another compliance-driven patch to a system not built for the modern surveillance-and-regulation nightmare we now call IT.

GDPR says "encrypt it." Security says "air gap it." Finance says "cloud it." Legal says "access it." And Postgres is just trying not to segfault.

HDD & SDD already encrypt. Linux already has encrypted filesystems. How does this improve anything?

I'm way out of my area here but it seems like an appropriate step to me when considering the cloud environment. Since these systems are accessed online, there's no such thing as an HDD or SDD in the physical sense. If I get access to your server, I'm seeing every file there, regardless of whatever encryption you've added to it. This seems like it may help in those scenarios. If I access your server online, I still can't do anything with the files because they're separately encrypted from the storage medium. At least that's what this sounds like to me. Does the Linux encryption support this kind of scenario already as well? Or am I misunderstanding things?

Every cloud thing is encrypted out of an abundance of fear. Considering AWS, where most of my experience is, you have the option of either using the default account key or your own per-instance KMS key for disk (ref: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/data-protection.html). The caveat here is that if someone gets access to your whole account, through IAM credential compromise or IAM permission stupidity, then they can access your data - just like if they root your box through SQL injection.

EC2 instances, in particular, are virtual machines. You can format virtual disks as you would any disk, use any filesystem (ext4, btrfs, zfs) that you like, and enable any (additional) encryption that you would like. RDS (managed database without a virtual machine) instances have a separate encryption flag to use your own key for at-rest encryption - but as always with anything aws, your data is never clear-text on disk.

All of this "extra" encryption is just multi-layer encryption - physical disk, logical disk, filesystem, now application layer - where no single layer of modern encryption has been compromised. Permissions, maybe - but it's usually the application layer that is compromised by external bugs, which fells all higher layers all at once. (Application layer and probably filesystem-layer encryption might save you if you set your permissions badly, where probably virtual-layer encryption will not.) All of the additional layers of encryption is yet-more compute overhead for data use -- power, latency, compute. (FWIW, modern encryption processing gets to - I read recently - 0.16 cycles per byte, with AVX-512 parallelization of PCLMUL(??) instructions.)

one advantage of this might be if you don't want to encrypt EBS volumes and use the native db encryption instead, this means the machine and disk are easier to image and copy to other regions or attaching the volume to another instance for recoverability is easier ? but in general most would enable the default settings of encrypting EBS volumes or equivalent in Azure. Has the disadvantage though it would offload encryption to the instance CPU's rather than let if offload ot dedicated hardware.

Two alternative answers.

1. Without seeing the exact details I suspect this encryption includes everything between the client and the storage medium. If that's the case it provided protection over and above what the network may already provide (on-prem that might well be nothing) so that it can't be observed by an eavesdropper or queried by anyone without an encryption key.

2. The cynical answer: it ticks another box on the ISO9000 inspired checklist.

HDD & SDD already encrypt. Linux already has encrypted filesystems. How does this improve anything?

An encrypted file system helps if someone steals the disks it does not help if the operating system is compromised - ie someone breaks in - to a process running under the operating system the file systems will be seen unencrypted.

A database will read & write a lot more than most applications so I suppose there is potential that built-in encryption yields better performance than what you get from an encrypted volume. Or perhaps people only want a particular table, or field encrypted instead of absolutely everything.

But then again maybe not. If the entire DB is encrypted then I don't think it would benefit performance to have postgres do the encryption. I think if individual tables / fields were encrypted then it might but there would are all kinds of weird corner cases to think about, like full text search, GIN indexing and other weirdness.

> where storage encryption alone is no longer sufficient to protect personal data at rest.

From what marketing department did this drivel originate?

From what marketing department did this drivel originate?

Politicians.