Click here to monitor SSC
SQLServerCentral is supported by Red Gate Software Ltd.
 
Log in  ::  Register  ::  Not logged in
 
 
 
        
Home       Members    Calendar    Who's On


Add to briefcase ««12

Encryption Expand / Collapse
Author
Message
Posted Tuesday, March 23, 2010 5:51 PM


SSC-Insane

SSC-InsaneSSC-InsaneSSC-InsaneSSC-InsaneSSC-InsaneSSC-InsaneSSC-InsaneSSC-InsaneSSC-InsaneSSC-InsaneSSC-Insane

Group: General Forum Members
Last Login: Yesterday @ 9:32 PM
Points: 21,755, Visits: 15,459
Kenneth Wymore (3/23/2010)
Not to be too picky but if cell level encryption was available since SQLServer 7 wouldn't SQLServer 7 have been the correct answer? Even if it was undocumented and poorly performing, it was still technically available, correct?



Though that hash function was available, it provided no means to be able to retrieve the data unencrypted and is still somewhat different than the feature at the premise of the question.




Jason AKA CirqueDeSQLeil
I have given a name to my pain...
MCM SQL Server


SQL RNNR

Posting Performance Based Questions - Gail Shaw
Posting Data Etiquette - Jeff Moden
Hidden RBAR - Jeff Moden
VLFs and the Tran Log - Kimberly Tripp
Post #888603
Posted Tuesday, March 23, 2010 5:52 PM


SSC-Insane

SSC-InsaneSSC-InsaneSSC-InsaneSSC-InsaneSSC-InsaneSSC-InsaneSSC-InsaneSSC-InsaneSSC-InsaneSSC-InsaneSSC-Insane

Group: General Forum Members
Last Login: Yesterday @ 9:32 PM
Points: 21,755, Visits: 15,459
Nice Question. It was good to have this question and discussion.



Jason AKA CirqueDeSQLeil
I have given a name to my pain...
MCM SQL Server


SQL RNNR

Posting Performance Based Questions - Gail Shaw
Posting Data Etiquette - Jeff Moden
Hidden RBAR - Jeff Moden
VLFs and the Tran Log - Kimberly Tripp
Post #888604
Posted Wednesday, March 24, 2010 6:00 AM
Ten Centuries

Ten CenturiesTen CenturiesTen CenturiesTen CenturiesTen CenturiesTen CenturiesTen CenturiesTen Centuries

Group: General Forum Members
Last Login: Sunday, August 31, 2014 6:28 AM
Points: 1,426, Visits: 342
vk-kirov (3/23/2010)
Ric Sierra (3/22/2010)
this undocumented function is available since SQLServer 7

PWDENCRYPT is a hash function, which means it's a one-way function. Once hashed, data cannot be restored. With cell-level encryption, data can be both encrypted and decrypted.


Is a semantic issue. The question is open, looking for the SQL Server version where Encryption (call as you wish: Hash function, two way encryption, masking, obfuscating, base64) can be done.

Post #888846
Posted Tuesday, March 30, 2010 8:01 AM


SSChampion

SSChampionSSChampionSSChampionSSChampionSSChampionSSChampionSSChampionSSChampionSSChampionSSChampion

Group: General Forum Members
Last Login: Today @ 12:48 PM
Points: 11,194, Visits: 11,169
Complete guess, but correct. Thanks for the question.



Paul White
SQL Server MVP
SQLblog.com
@SQL_Kiwi
Post #892783
Posted Tuesday, March 30, 2010 8:11 AM


Hall of Fame

Hall of FameHall of FameHall of FameHall of FameHall of FameHall of FameHall of FameHall of FameHall of Fame

Group: General Forum Members
Last Login: Yesterday @ 10:57 AM
Points: 3,323, Visits: 1,988
Thanks for the explanation! Makes more sense now.
Post #892801
Posted Thursday, April 1, 2010 10:39 AM


SSCertifiable

SSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiable

Group: General Forum Members
Last Login: Today @ 10:47 AM
Points: 7,158, Visits: 15,269
Ric Sierra (3/24/2010)
vk-kirov (3/23/2010)
Ric Sierra (3/22/2010)
this undocumented function is available since SQLServer 7

PWDENCRYPT is a hash function, which means it's a one-way function. Once hashed, data cannot be restored. With cell-level encryption, data can be both encrypted and decrypted.


Is a semantic issue. The question is open, looking for the SQL Server version where Encryption (call as you wish: Hash function, two way encryption, masking, obfuscating, base64) can be done.



Sorry - i have to bite on this one: under which circumstances do any of the following qualify as "encryption"
- Base64 (it's an enCODING technique, it's certainly NOT an encryption method)
- Obfuscation (the process of making names of constructs and objects very confusing so that code becomes difficult to follow)
- hash function: a function to turn a variable length value to an integer to speed up comparison.

Calling those things the same thing as "encryption" is really comparing apples to oranges.


----------------------------------------------------------------------------------
Your lack of planning does not constitute an emergency on my part...unless you're my manager...or a director and above...or a really loud-spoken end-user..All right - what was my emergency again?
Post #895045
Posted Thursday, April 1, 2010 12:02 PM


Mr or Mrs. 500

Mr or Mrs. 500Mr or Mrs. 500Mr or Mrs. 500Mr or Mrs. 500Mr or Mrs. 500Mr or Mrs. 500Mr or Mrs. 500Mr or Mrs. 500

Group: General Forum Members
Last Login: Friday, June 13, 2014 3:03 PM
Points: 594, Visits: 655
Matt Miller (#4) (4/1/2010)
Ric Sierra (3/24/2010)
vk-kirov (3/23/2010)
Ric Sierra (3/22/2010)
this undocumented function is available since SQLServer 7

PWDENCRYPT is a hash function, which means it's a one-way function. Once hashed, data cannot be restored. With cell-level encryption, data can be both encrypted and decrypted.


Is a semantic issue. The question is open, looking for the SQL Server version where Encryption (call as you wish: Hash function, two way encryption, masking, obfuscating, base64) can be done.



Sorry - i have to bite on this one: under which circumstances do any of the following qualify as "encryption"
- Base64 (it's an enCODING technique, it's certainly NOT an encryption method)
- Obfuscation (the process of making names of constructs and objects very confusing so that code becomes difficult to follow)
- hash function: a function to turn a variable length value to an integer to speed up comparison.

Calling those things the same thing as "encryption" is really comparing apples to oranges.


Pile on... I agree. Thanks for not being as lazy as me...


Peter Trast
Microsoft Certified ...(insert many literal strings here)
Microsoft Design Architect with Alexander Open Systems
Post #895168
Posted Thursday, April 1, 2010 12:52 PM
Ten Centuries

Ten CenturiesTen CenturiesTen CenturiesTen CenturiesTen CenturiesTen CenturiesTen CenturiesTen Centuries

Group: General Forum Members
Last Login: Sunday, August 31, 2014 6:28 AM
Points: 1,426, Visits: 342
Matt Miller (#4) (4/1/2010)
Ric Sierra (3/24/2010)
vk-kirov (3/23/2010)
Ric Sierra (3/22/2010)
this undocumented function is available since SQLServer 7

PWDENCRYPT is a hash function, which means it's a one-way function. Once hashed, data cannot be restored. With cell-level encryption, data can be both encrypted and decrypted.


Is a semantic issue. The question is open, looking for the SQL Server version where Encryption (call as you wish: Hash function, two way encryption, masking, obfuscating, base64) can be done.



Sorry - i have to bite on this one: under which circumstances do any of the following qualify as "encryption"
- Base64 (it's an enCODING technique, it's certainly NOT an encryption method)
- Obfuscation (the process of making names of constructs and objects very confusing so that code becomes difficult to follow)
- hash function: a function to turn a variable length value to an integer to speed up comparison.

Calling those things the same thing as "encryption" is really comparing apples to oranges.



All your definitions are correct, but the in the context of make a "text" unreadability all the options can be.
Post #895209
Posted Sunday, April 4, 2010 4:26 AM


SSCrazy Eights

SSCrazy EightsSSCrazy EightsSSCrazy EightsSSCrazy EightsSSCrazy EightsSSCrazy EightsSSCrazy EightsSSCrazy EightsSSCrazy EightsSSCrazy Eights

Group: General Forum Members
Last Login: Today @ 2:08 PM
Points: 8,844, Visits: 9,405
Ric Sierra (4/1/2010)
Matt Miller (#4) (4/1/2010)
Ric Sierra (3/24/2010)
vk-kirov (3/23/2010)
Ric Sierra (3/22/2010)
this undocumented function is available since SQLServer 7

PWDENCRYPT is a hash function, which means it's a one-way function. Once hashed, data cannot be restored. With cell-level encryption, data can be both encrypted and decrypted.


Is a semantic issue. The question is open, looking for the SQL Server version where Encryption (call as you wish: Hash function, two way encryption, masking, obfuscating, base64) can be done.



Sorry - i have to bite on this one: under which circumstances do any of the following qualify as "encryption"
- Base64 (it's an enCODING technique, it's certainly NOT an encryption method)
- Obfuscation (the process of making names of constructs and objects very confusing so that code becomes difficult to follow)
- hash function: a function to turn a variable length value to an integer to speed up comparison.

Calling those things the same thing as "encryption" is really comparing apples to oranges.



All your definitions are correct, but the in the context of make a "text" unreadability all the options can be.

A semantic issue - certainly. What are the semantics of the phrase "Cell-level Encryption" which is the phrase used in the question? They are absolutely clear: "Cell-level Encryption" means the function provided to encrypy a column so that its values can be recovered using the appropriate key and only (unless someone breaks the cipher) using that key.
The password hashing function in SQLS 7 certainly didn't provide that function. So the semantic issue is quite cleqar, anmd the answer "SQLS 7" is completely wrong.


Tom
Post #896382
« Prev Topic | Next Topic »

Add to briefcase ««12

Permissions Expand / Collapse