Welcome to TechNet Blogs Sign in | Join | Help

Andrew Fryer's Blog

Insufficient Data

News

SQL Server 2008 Encryption Keys

Encryption, Keys and certificates etc. are complicated  and confusing judging by the number of support calls coming in from DBA's.

As I said in my last post, Transparent Data Encryption is there to stop someone walling off with your data.  A database can be encrypted using a key which is stored in a certificate, again protected by a key in the master database.  So what's to protect your master database? 

Well that's not the top of the hierarchy for keys as this diagram shows from the security section of SQL Server Books On-Line :

keys

So the Service Master key can be encrypted as well and this is done using the Windows Data Protection API.  My good friend Steve Lamb will be posting about this shortly.

Finally MSDN has the complete up to date books on-line for SQL Server 2008 here, just so you know

Posted: Monday, December 24, 2007 4:52 PM by Andrew_Fryer

Comments

Geek Lectures - Things geeks should know about » Blog Archive » SQL Server 2008 Encryption Keys said:

PingBack from http://geeklectures.info/2007/12/24/sql-server-2008-encryption-keys/

# December 24, 2007 12:44 PM

Microsoft Switzerland Security Blog said:

Two interesting blogs found on Microsoft SQL Server 2008 and Encription: SQL Server 2008 Encryption Keys

# December 28, 2007 5:10 AM
Leave a Comment

(required) 

(required) 

(optional)

(required) 

  
Enter Code Here: Required

Comment Notification

If you would like to receive an email when updates are made to this post, please register here

Subscribe to this post's comments using RSS

Page view tracker