Category: AES

Enterprise PostgreSQL Solutions

The Transparent data encryption in PostgreSQL

I have been working with the PostgreSQL community recently to develop TDE (Transparent Data Encryption). During this time, I studied some cryptography-related knowledge and used it to combine with the database. I will introduce the TDE in PostgreSQL by the following three dimensions. The current threat model of the database Encryption policy description and current…
Read more

Key Management

Key management consists of four parts: key generation, key preservation, key exchange, and key rotation. Key Generation Only for the study of symmetric encryption, so I mainly introduce symmetric encryption. The symmetric password generation method is: A random number is a key Password-based key generation HKDF (HMAC-based extraction and extended key derivation) A random number…
Read more

The performance test on the AES modes

After introducing the difference between the AES modes, in this document, I will put the results about the AES modes performance. The following tests just use one core CPU. AES-NI:The Advanced Encryption Standard Instruction Set (or Intel Advanced Encryption Standard New Instructions, AES-NI for short) is an extension of the x86 instruction set architecture for…
Read more

The difference in five modes in the AES encryption algorithm

Recently, I did some work with Sawada-san on the TDE. So I studied on the encryption algorithm. So far, I study five modes in the AES. In this document, I will introduce the difference in the five kinds of mode. General The block ciphers are schemes for encryption or decryption where a block of plaintext…
Read more