Greenplum Database is installed with an optional module of encryption/decryption functions called
pgcrypto functions allow database administrators to store certain columns of data in encrypted form. This adds an extra layer of protection for sensitive data, as data stored in Greenplum Database in encrypted form cannot be read by anyone who does not have the encryption key, nor can it be read directly from the disks.
pgcrypto functions run inside the database server, which means that all the data and passwords move between
pgcrypto and the client application in clear-text. For optimal security, consider also using SSL connections between the client and the Greenplum master server.
pgcrypto module is installed when you install Greenplum Database. Before you can use any of the functions defined in the module, you must register the
pgcrypto extension in each database in which you want to use the functions. Refer to Installing Additional Supplied Modules for more information.
Refer to pgcrypto in the PostgreSQL documentation for more information about the individual functions in this module.