Date: 2019-11-15
Time: 15:25–16:05
Room: Conference Room
Level: Intermediate
While PostgreSQL offers state of the art features and capabilities in security, there are privacy breaches that typically escape the security lens, notably through re-identification attacks. Up until recently, encryption was the only approach available to PostgreSQL developers and DBAs but not anymore.
This talk will identify typical patterns for privacy preservation and will showcase how they are implemented in PostgreSQL through native features, third party extensions and specific techniques utilizing non-traditional encryption, data programming, differential privacy, and foreign data wrappers.
This talk will dive into three types of approaches and their implementation in PostgreSQL employed to preserve PII (personally identifiable information). This includes best practices in encryption and masking, federated query via foreign data wrappers and differential privacy. The talk is targeted at DBAs, developers and architects to provide support for GDPR, NDB, CCA, and related compliance and regulatory requirements.
The following slides have been made available for this session: