Skip to content
Percona Software for PostgreSQL Documentation

For help, click the link below to get free database assistance or contact our experts for personalized support.

Get help from Percona

TDE Benefits

Benefits for organizations

  • Data safety: Prevents unauthorized access to stored data, even if backup files or storage devices are stolen or leaked.
  • Enterprise-ready Architecture: Supports both single and multi-tenancy, giving flexibility for SaaS providers or internal multi-user systems.

Benefits for DBAs and engineers

  • Granular control: Encrypt specific tables or databases instead of the entire system, reducing performance overhead.
  • Operational simplicity: Works transparently without requiring major application changes.
  • Defense in depth: Adds another layer of protection to existing controls like TLS (encryption in transit), access control, and role-based permissions.

When combined with the external Key Management Systems (KMS), TDE enables centralized control, auditing, and rotation of encryption keys—critical for secure production environments.

See also

Percona Blog: Transparent Data Encryption (TDE)

How TDE works