Percona Transparent Data Encryption for PostgreSQL documentation¶
Percona Transparent Data Encryption for PostgreSQL (pg_tde
) is an open source, community driven and futureproof PostgreSQL extension that provides Transparent Data Encryption (TDE) to protect data at rest. pg_tde
ensures that the data stored on disk is encrypted, and that no one can read it without the proper encryption keys, even if they gain access to the physical storage media.
pg_tde
is bundled as a component of Percona Server for PostgreSQL and requires its patches to function. It is packaged with Percona Distribution for PostgreSQL 17+ to ensure compatibility and proper operation. For more information, see the Percona Distribution for PostgreSQL 17 documentation .
Installation guide¶
Get started quickly with the step-by-step installation instructions.
Features¶
Explore what features Percona’s pg_tde
extension brings to PostgreSQL.
Architecture¶
Understand how pg_tde
integrates into PostgreSQL with Percona’s architecture. Learn how keys are managed, how encryption is applied, and how our design ensures performance and security.