SQL Server 2008 - Transparent Data Encryption

re: SQL Server 2008 - Transparent Data Encryption

David Sugarman — Fri, 30 Nov 2007 12:20:00 GMT

We do a good line in sending databases via the post here in the UK :-)

re: SQL Server 2008 - Transparent Data Encryption

Chris Latham — Fri, 30 Nov 2007 16:00:04 GMT

Thanks for the demo of this last night Andrew - well done for keeping your head as projectors blew up and the local scallies were banging on the windows!

Seriously though, this and the backup compression are little tweaks which make 2008 an attractive proposition from the IT Professional's standpoint.

Thanks for a very enjoyable event.

SQL Server 2008 - Transparent Data Encryption

Mike Ormond's Blog — Wed, 05 Dec 2007 15:12:32 GMT

Andrew's turning into a really useful guy. He also has a great post on TDE here . :-) Technorati Tags:

SQL Server 2008 - Transparent Data Encryption

Noticias externas — Wed, 05 Dec 2007 16:08:41 GMT

Andrew's turning into a really useful guy. He also has a great post on TDE here . :-) Technorati

re: SQL Server 2008 - Transparent Data Encryption

John Baker — Wed, 05 Dec 2007 18:08:49 GMT

Is there any difference between this solution and just using EFS on your filesystem? Using EFS has been an option since Win 2k and from what I see it provides the same results.

http://www.sqlservercentral.com/articles/Administering/implementing_efs/870/

re: SQL Server 2008 - Transparent Data Encryption

Andrew_Fryer — Fri, 07 Dec 2007 15:03:37 GMT

John. EFS won't protect the backup or the MDF, LDF database files if you put those on a CD, but TDE does do that. Andrew

Transparent Data Encryption and difference between EFS/BitLocker

Sean — Sat, 15 Nov 2008 01:35:44 GMT

Here are 2 big disadvantages to EFS and BitLocker from MS "Detaching or backing up the database to a different volume that is not protected by EFS or BitLocker causes any protection the file currently has to be lost. The other disadvantage of BitLocker is the broad scope of protection. Because the entire volume is unlocked, any user with access to a computer that can access the files on disk can access the data in plaintext." Reference http://msdn.microsoft.com/en-us/library/cc278098.aspx

re: SQL Server 2008 - Transparent Data Encryption

Andrew_Fryer — Mon, 17 Nov 2008 10:48:12 GMT

Sean,

Completely agree, but Your point about bitlocker is also true of the RSA encryption used by manby UK govenrment departments.

so it's important to pick the right tool for the job. field encryption within the database, might make sense to protect credit card numbwers. TDE stops the database being moved to another location without the certificate. EFS / bitlocker are the only offerings form Micrsoft to protect filestream, and if these aren't sufficent to meet your needs then there are numerous third aprty tools thiat might.

Andrew

re: SQL Server 2008 - Transparent Data Encryption

Raoshan — Fri, 31 Jul 2009 15:46:08 GMT

How do I prevent access to the database and its objects in the SQL server Management Studio. I want only my application should use the data and no-one should be able to work in the back-end including administrator.

re: SQL Server 2008 - Transparent Data Encryption

Andrew_Fryer — Fri, 31 Jul 2009 18:28:41 GMT

I'm not sure why you would want to do this unless your app provides all of the functionality of SSMS (backup, access to T-SQL and to monitor the health of the databases etc.)

All you can do is use a strong sysadmin password and chnage the default port that SQL uses (1433). You can't stop soemone installing SSMS, and SQL erver doesn't care what tool you connect with.