<a href="http://g.adspeed.net/ad.php?do=clk&zid=15220&wd=468&ht=60&pair=as" target="_blank"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=15220&wd=468&ht=60&pair=as" alt="i" width="468" height="60"/></a>
Log in
::
Register
::
Not logged in
Home
Tags
Articles
Editorials
Stairways
Forums
Scripts
Videos
Blogs
QotD
Books
Ask SSC
SQL Jobs
Training
Authors
About us
Contact us
Newsletters
Write for us
<a href="http://g.adspeed.net/ad.php?do=clk&zid=15491&wd=120&ht=300&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=15491&wd=120&ht=300&pair=as" alt="i" width="120" height="300"/></a>
Recent Posts
Recent Posts
Popular Topics
Popular Topics
Home
Search
Members
Calendar
Who's On
Home
»
SQL Server 2008
»
SQL Server 2008 - General
»
How to Encrypt Database Objects in SQL Server...
15 posts, Page 1 of 2
1
2
»»
How to Encrypt Database Objects in SQL Server 2008R2
Rate Topic
Display Mode
Topic Options
Author
Message
azhar.iqbal499
azhar.iqbal499
Posted Wednesday, November 30, 2011 12:24 AM
SSC-Enthusiastic
Group: General Forum Members
Last Login: Thursday, April 18, 2013 4:39 AM
Points: 124,
Visits: 359
I am using SQL Server 2008R2, I want to encrypt all database objects before sending these to Production.
I want this to avoid any changes in the objets in Live Environment.
What is the best way to do this and what are the pros and cons of this.
Thanks.
Azhar Iqbal
Post #1213699
Dev
Dev
Posted Wednesday, November 30, 2011 12:41 AM
SSCrazy
Group: General Forum Members
Last Login: 2 days ago @ 2:05 PM
Points: 2,013,
Visits: 1,566
I am recommending a lengthy but good article below. It will help you narrow down the term Encryption (for database / column etc.)
Database Encryption in SQL Server 2008 Enterprise Edition
http://msdn.microsoft.com/en-us/library/cc278098(v=SQL.100).aspx
~Dev~
Post #1213702
Suresh B.
Suresh B.
Posted Wednesday, November 30, 2011 10:22 PM
Ten Centuries
Group: General Forum Members
Last Login: Tuesday, April 30, 2013 5:59 AM
Points: 1,075,
Visits: 5,114
azhar.iqbal499 (11/30/2011)
I want this to avoid any changes in the objets in Live Environment.
You have to consider permissions also. Grant minimum permission to the users.
By revokeing ALTER permission, you can avoid changes.
Post #1214345
azhar.iqbal499
azhar.iqbal499
Posted Thursday, December 01, 2011 12:06 AM
SSC-Enthusiastic
Group: General Forum Members
Last Login: Thursday, April 18, 2013 4:39 AM
Points: 124,
Visits: 359
I have implemented TDE at Database. I want to test the TDE. What is the procedure of this. Should I create new user for this or should I take backup to test.
Please help
Post #1214372
Suresh B.
Suresh B.
Posted Thursday, December 01, 2011 12:20 AM
Ten Centuries
Group: General Forum Members
Last Login: Tuesday, April 30, 2013 5:59 AM
Points: 1,075,
Visits: 5,114
azhar.iqbal499 (12/1/2011)
I have implemented TDE at Database. I want to test the TDE. What is the procedure of this. Should I create new user for this or should I take backup to test.
Please help
TDE will not prevent valid users from altering the objects.
So creating new user is not required.
Yes, backup/restore test you should do.
Post #1214380
azhar.iqbal499
azhar.iqbal499
Posted Thursday, December 01, 2011 12:54 AM
SSC-Enthusiastic
Group: General Forum Members
Last Login: Thursday, April 18, 2013 4:39 AM
Points: 124,
Visits: 359
I have created TDE from sa user and I logged in with another user with same rights. But all DB objects were looking unencrypted.
My Question is that When this database would be uploaded at Liver Server then how it would be protected from attacks. Should I use other users for this? I want to test these scenarios at dev environment before shift it to Live.
I think you understand my Question.
Thanks for reply.
Post #1214397
anthony.green
anthony.green
Posted Thursday, December 01, 2011 2:02 AM
SSCertifiable
Group: General Forum Members
Last Login: Friday, April 12, 2013 3:51 AM
Points: 5,075,
Visits: 4,831
i think the question is, how do you get the padlock on objects like some 3rd parties do, one example is LiteSpeed, where the properties of the object show as Encrypted and you cannot right click and modify the object via SSMS or by doing a sp_helptext on the object
Want an answer fast? Try here
How to post data/code for the best help - Jeff Moden
Need a string splitter, try this - Jeff Moden
How to post performance problems - Gail Shaw
CrossTabs-Part1
&
Part2 - Jeff Moden
SQL Server Backup, Integrity Check, and Index and Statistics Maintenance - Ola Hallengren
Managing Transaction Logs - Gail Shaw
Troubleshooting SQL Server: A Guide for the Accidental DBA - Jonathan Kehayias and Ted Krueger
Post #1214412
GilaMonster
GilaMonster
Posted Thursday, December 01, 2011 7:21 AM
SSC-Dedicated
Group: General Forum Members
Last Login: Today @ 2:45 PM
Points: 37,635,
Visits: 29,885
azhar.iqbal499 (12/1/2011)
I have created TDE from sa user and I logged in with another user with same rights. But all DB objects were looking unencrypted.
Yes, because TDE is encryption of the database file to prevent people from attaching it on other servers. Nothing whatsoever to do with the objects in the DB.
Gail Shaw
Microsoft Certified Master: SQL Server 2008, MVP
SQL In The Wild
: Discussions on DB performance with occasional diversions into recoverability
We walk in the dark places no others will enter
We stand on the bridge and no one may pass
Post #1214610
GilaMonster
GilaMonster
Posted Thursday, December 01, 2011 7:24 AM
SSC-Dedicated
Group: General Forum Members
Last Login: Today @ 2:45 PM
Points: 37,635,
Visits: 29,885
anthony.green (12/1/2011)
i think the question is, how do you get the padlock on objects like some 3rd parties do, one example is LiteSpeed, where the properties of the object show as Encrypted and you cannot right click and modify the object via SSMS or by doing a sp_helptext on the object
Just bear in mind that is not encryption. It's nothing more than a bit of obfuscation and extra checks by SQL. It's trivial to reverse.
Gail Shaw
Microsoft Certified Master: SQL Server 2008, MVP
SQL In The Wild
: Discussions on DB performance with occasional diversions into recoverability
We walk in the dark places no others will enter
We stand on the bridge and no one may pass
Post #1214614
azhar.iqbal499
azhar.iqbal499
Posted Thursday, December 01, 2011 10:08 PM
SSC-Enthusiastic
Group: General Forum Members
Last Login: Thursday, April 18, 2013 4:39 AM
Points: 124,
Visits: 359
Thanks.
I just want to save my database from any user at live, In case if He would be able to reach the database then He must not be able to see the code of database objects.
So What security meausres should I take to acheive this goal.
Thanks
Post #1215118
« Prev Topic
|
Next Topic »
15 posts, Page 1 of 2
1
2
»»
Permissions
You
cannot
post new topics.
You
cannot
post topic replies.
You
cannot
post new polls.
You
cannot
post replies to polls.
You
cannot
edit your own topics.
You
cannot
delete your own topics.
You
cannot
edit other topics.
You
cannot
delete other topics.
You
cannot
edit your own posts.
You
cannot
edit other posts.
You
cannot
delete your own posts.
You
cannot
delete other posts.
You
cannot
post events.
You
cannot
edit your own events.
You
cannot
edit other events.
You
cannot
delete your own events.
You
cannot
delete other events.
You
cannot
send private messages.
You
cannot
send emails.
You
may
read topics.
You
cannot
rate topics.
You
cannot
vote within polls.
You
cannot
upload attachments.
You
may
download attachments.
You
cannot
post HTML code.
You
cannot
edit HTML code.
You
cannot
post IFCode.
You
cannot
post JavaScript.
You
cannot
post EmotIcons.
You
cannot
post or upload images.
Copyright © 2002-2013 Simple Talk Publishing. All Rights Reserved.
Privacy Policy.
Terms of Use.
Report Abuse.
