Schedule - pgDay Paris 2017

MLS PostgreSQL - Implementing Multi-level Security in PostgreSQL with RLS and SELinux

Date: 2017-03-23
Time: 16:00–16:50
Room: Auditorium
Level: Intermediate

Starting in PostgreSQL 9.5 there is a feature called Row Level Security (RLS). Using RLS, a PostgreSQL extension called sepgsql (somewhat customized), and Security Enhanced Linux (SELinux) configured properly, it is possible to create a Multi-level Security database.

This talk will describe how it can be done, including: * Overview * Use-case * Solution Components * RLS * SELinux * sepgsql * Configuration and Setup * Operating System * Networking * SELinux * sepgsql * Database schema/DDL * Results * Performance


Joe Conway