Click here to monitor SSC
SQLServerCentral is supported by Red Gate Software Ltd.
 
Log in  ::  Register  ::  Not logged in
 
 
 
        
Home       Members    Calendar    Who's On


Add to briefcase

TDE - SQL Server 2008 Expand / Collapse
Author
Message
Posted Wednesday, June 10, 2009 12:11 AM
SSChasing Mays

SSChasing MaysSSChasing MaysSSChasing MaysSSChasing MaysSSChasing MaysSSChasing MaysSSChasing MaysSSChasing Mays

Group: General Forum Members
Last Login: Tuesday, July 23, 2013 6:34 AM
Points: 654, Visits: 265
Comments posted to this topic are about the item TDE - SQL Server 2008
Post #732041
Posted Wednesday, June 10, 2009 12:27 AM
SSCrazy

SSCrazySSCrazySSCrazySSCrazySSCrazySSCrazySSCrazySSCrazy

Group: General Forum Members
Last Login: Tuesday, July 22, 2014 1:45 AM
Points: 2,826, Visits: 3,866
Small correction: tempdb can be encrypted using TDE:
When TDE is enabled on any user database, encryption is also automatically enabled for the temporary database (tempdb). This prevents temporary objects that are used by the user database from leaking to disk. System databases other than tempdb cannot currently be encrypted by using TDE.


Best Regards,
Chris Büttner
Post #732045
Posted Wednesday, June 10, 2009 6:58 AM


SSCrazy

SSCrazySSCrazySSCrazySSCrazySSCrazySSCrazySSCrazySSCrazy

Group: General Forum Members
Last Login: Tuesday, February 11, 2014 4:12 PM
Points: 2,007, Visits: 768
From the referenced Microsoft whitepaper...

System databases other than tempdb cannot currently be encrypted by using TDE.

I wonder if there are plans to expand TDE usage to these system databases? For example, one might want to protect the msdb database since its exposure could reveal operational information such as schedules.
Post #732215
Posted Wednesday, June 10, 2009 12:28 PM


SSC-Dedicated

SSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-Dedicated

Group: Administrators
Last Login: Today @ 6:20 PM
Points: 33,078, Visits: 15,192
Correction noted and the explanation fixed.

I'd have thought msdb could be encrypted, though that would add complexity for SQL Agent.







Follow me on Twitter: @way0utwest

Forum Etiquette: How to post data/code on a forum to get the best help
Post #732547
« Prev Topic | Next Topic »

Add to briefcase

Permissions Expand / Collapse