http://blogs.technet.com/keithcombs/archive/2005/11/24/sql-server-2005-data-encryption.aspxSQL Server 2005 includes new encryption capabilities that all administrators, programmers and database analyst should be aware of. Key and Certificate creation and management functions are now an integral part of SQL Server 2005. You have the flexibilityen-USCommunityServer 2.1 SP1 (Build: 61025.2)http://blogs.technet.com/keithcombs/archive/2005/11/24/sql-server-2005-data-encryption.aspx#415163Mon, 28 Nov 2005 10:15:20 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:415163Deepankar BandopadhyaExcellent Article. <br>Step by Step guidance provided. <br> <br>Just a small note from the BOL to indicate why the Master Key is not required to be opened just like the Symmetric Key <br>================================== <br>From [BOL] <br>The database Master Key is always encrypted (using TRIPLE_DES) with a user-supplied password and stored in the sys.symmetric_keys table in the database. At the same time, a copy of the database Master Key is encrypted using the Service Master Key and stored in the sys.databases table of the master database. This facilitates the automatic opening of the database Master Key. <br>http://blogs.technet.com/keithcombs/archive/2005/11/24/sql-server-2005-data-encryption.aspx#415207Tue, 29 Nov 2005 01:44:18 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:415207Keith CombsThanks for the comment on the master key. I figured someone would wonder why I didn't go into it. Instead of going into storage and permissions models, I decided to link the CREATE MASTER KEY call to the books online at <a rel="nofollow" target="_new" href="http://msdn2.microsoft.com/en-us/library/ms174382.aspx">http://msdn2.microsoft.com/en-us/library/ms174382.aspx</a> in the blog post. <br> <br>There are a number of spin off posts I could do but I may switch gears into Windows Server R2 or Exchange E12 topics. <br> <br>More SQL or what? http://blogs.technet.com/keithcombs/archive/2005/11/24/sql-server-2005-data-encryption.aspx#415237Tue, 29 Nov 2005 09:33:52 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:415237Deepankar_BandopadhyaActually I had submitted a similar article on <a rel="nofollow" target="_new" href="http://www.sswug.org">http://www.sswug.org</a>. Hence the quick observartion. <br>I agree when you say that &quot;There are a number of spin off posts I could do but I may switch gears into Windows Server R2 or Exchange E12 topics.&quot; <br> <br> <br>http://blogs.technet.com/keithcombs/archive/2005/11/24/sql-server-2005-data-encryption.aspx#415239Tue, 29 Nov 2005 10:33:35 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:415239Keith CombsDeepankar, come back here and post a reference when it gets published. Thanks!http://blogs.technet.com/keithcombs/archive/2005/11/24/sql-server-2005-data-encryption.aspx#420309Thu, 23 Feb 2006 04:27:53 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:420309Matt Hester's WebLogThank you for attending the web cast on SQL Server 2005 Security, as promised here is the scrubbed Q/A...http://blogs.technet.com/keithcombs/archive/2005/11/24/sql-server-2005-data-encryption.aspx#425887Fri, 21 Apr 2006 16:14:04 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:425887SerdarI wonder how long would it take for hackers to crack this crypt ? Would it be a wise idea to use this technique in a commercial software product to guarantee data privacy ? Any advice ?http://blogs.technet.com/keithcombs/archive/2005/11/24/sql-server-2005-data-encryption.aspx#440579Fri, 07 Jul 2006 13:28:59 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:440579piyush parekhhi, <br>It was a good learning experience.... no doubt that hackers would have to crack their heads to do all this.... <br>But i have a doubt...whether it affects the performance.. also what we have seen is for a single user.. <br>but if we need it for general how should i go about it.. <br>http://blogs.technet.com/keithcombs/archive/2005/11/24/sql-server-2005-data-encryption.aspx#442967Sun, 23 Jul 2006 18:20:51 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:442967Stevethanks Keith