Click here to monitor SSC
SQLServerCentral is supported by Red Gate Software Ltd.
 
Log in  ::  Register  ::  Not logged in
 
 
 
        
Home       Members    Calendar    Who's On


Add to briefcase ««12

Encrypting the entire database. Expand / Collapse
Author
Message
Posted Friday, April 30, 2010 12:56 AM
SSCommitted

SSCommittedSSCommittedSSCommittedSSCommittedSSCommittedSSCommittedSSCommittedSSCommitted

Group: General Forum Members
Last Login: Monday, August 18, 2014 8:25 AM
Points: 1,519, Visits: 2,550
Many of the prior replies noted Transparent Data Encryption as an option. It was also noted that TDE encrypts the physical data files and not the data itself. The intent of this feature is to prevent someone from stealing your backup files or .mdf/.ldf files and restoring them on another server.



... This is what exactly my client's requirement.
"to prevent someone from stealing your backup files or .mdf/.ldf files and restoring them on another server."

Thank you all.
Post #913489
Posted Friday, April 30, 2010 4:29 AM


SSCertifiable

SSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiable

Group: General Forum Members
Last Login: Today @ 8:35 AM
Points: 7,197, Visits: 6,342
Joy Smith San (4/30/2010)
Many of the prior replies noted Transparent Data Encryption as an option. It was also noted that TDE encrypts the physical data files and not the data itself. The intent of this feature is to prevent someone from stealing your backup files or .mdf/.ldf files and restoring them on another server.


... This is what exactly my client's requirement.
"to prevent someone from stealing your backup files or .mdf/.ldf files and restoring them on another server."


I guess our confusion came from the part where you said no one with proper logins should be able to see the data in the database too. Which makes it more than just TDE / backup encryption.

FYI, .mdf & .ldf files can't be read while SQL Services are still going. So if someone "stole" the drive without logging into SQL or the Server first and stopping the services, then those files should be completely unreadable.

Note use of phrase "SHOULD be".


Brandie Tarvin, MCITP Database Administrator

Webpage: http://www.BrandieTarvin.net
LiveJournal Blog: http://brandietarvin.livejournal.com/
On LinkedIn!, Google+, and Twitter.

Freelance Writer: Shadowrun
Latchkeys: Nevermore, Latchkeys: The Bootleg War, and Latchkeys: Roscoes in the Night are now available on Nook and Kindle.
Post #913564
« Prev Topic | Next Topic »

Add to briefcase ««12

Permissions Expand / Collapse