MLS PostgreSQL

PostgreSQL 9.5 has a new feature called Row Level Security (RLS). Using RLS, a PostgreSQL extension called sepgsql (somewhat modified), and Security Enhanced Linux (SELinux) configured properly, it is possible to create a Multi-level Security database. This talk will describe how it can be done, including:

Solution Components

• RLS
• SELinux
• sepgsql

Installation and Configuration

• Operating System
• Networking
• SELinux
• PostgreSQL

Database schema/DDL

• Users
• Table
• Policies

Results

• Select
• Insert
• Update
• Delete