PostgreSQL Conference Germany 2026

Password-based authentication has evolved significantly, and SCRAM (Salted Challenge Response Authentication Mechanism) is the standard for securing modern database connections. This session offers a rigorous deep dive into the inner workings of SCRAM, specifically focusing on how PostgreSQL implements and leverages this mechanism. We will dismantle the protocol, step-by-step, exploring the client-server exchange, nonce generation, iterative hashing, and the verification process.

Attendees will walk away with a crystal-clear understanding of the SCRAM specifications (RFC5802) and the specific internal routines that PostgreSQL uses to achieve superior, modern, and cryptographically sound connection security.