Introducing Fast, Native Encryption in Turso Database

Turso Database, a variant of SQLite rewritten in Rust, introduces native encryption features that enhance data security, especially in environments where privacy and integrity are critical. Unlike SQLite, which lacks official encryption capabilities, Turso offers built-in encryption that operates with minimal performance impact, adding around 6% read and 14% write overhead. Each database page is encrypted individually, making data extraction by attackers challenging. The encryption employs industry-standard algorithms such as AEGIS and AES-GCM, ensuring both data protection and integrity, and is fully open source for transparency. The database supports usage in diverse environments, including edge devices and multi-cloud setups, without the need for extensions. Turso's encryption is particularly beneficial for fintech applications, privacy-focused products, and AI/ML systems. Future enhancements include secure key derivation and support for additional SQLite features, aiming to deliver strong security with minimal performance trade-offs.