Click here to monitor SSC
SQLServerCentral is supported by Red Gate Software Ltd.
 
Log in  ::  Register  ::  Not logged in
 
 
 
        
Home       Members    Calendar    Who's On


Add to briefcase «««123

When to use Transparent Data Encryption (TDE)? Expand / Collapse
Author
Message
Posted Tuesday, May 14, 2013 11:14 PM


SSCertifiable

SSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiable

Group: General Forum Members
Last Login: Today @ 2:36 PM
Points: 6,759, Visits: 14,408
You would more likely use a certificate for your column encryption.

What Gail is saying is that someone who is sysadmin on another instance could take the backup and the cert and restore it elsewhere and as they are sysadmin will automatically have database permission to open the encryption key.

They do still of course need to know the password that the cert backup was encrypted with, and be able to access the disk location where it's stored.

There are many factors, but essentially the weaker your security around the stored backups the more possible it becomes.


-----------------------------------------------------------------------------------------------------------

"Ya can't make an omelette without breaking just a few eggs"
Post #1452917
« Prev Topic | Next Topic »

Add to briefcase «««123

Permissions Expand / Collapse