Encryption Not Restriction

I believe in encryption. I have an encryption talk that delivers the very basics of what encryption options exist in SQL Server, and I would think that most data professionals that develop or manage databases should understand encryption and how to enable it. I find lots of people don't understand, and I'm glad that I can try to teach them a few things about when encryption is and how it works in SQL Server.

Cloud computing use is growing, and while we don't have a good definition for what a cloud computing means, more and more organizations are considering looking at moving some of their applications, and data, to the cloud. As we move this data, many DBAs have concerns over the security of the data they are supposed to protect. These are valid concerns, and they should be at the forefront of your mind if you plan on moving anything to any type of service provider.

One interesting point brought up in this op-ed is that customers ought to have their data encrypted, but the keys used for the encryption should be controlled by the customer, not the service provider. That's sound business strategy, and it should be the case with all your data, not just data sent to the cloud. If you use a service to rotate and store your tape backups, you ought to have encryption on those tapes, with keys managed by your company. Just as you ought to have the keys inside your company if you use locks on the shipping containers holding the tapes.

Steve Jones

The Voice of the DBA Podcasts

We publish three versions of the podcast each day for you to enjoy.

Watch the Windows Media Podcast - 17.2MB WMV
Watch the iPod Video Podcast - 16.3MB MP4
Listen to the MP3 Audio Podcast - 3.4MB MP3

Everyday Jones

The podcast feeds are available at sqlservercentral.mevio.com. Comments are definitely appreciated and wanted, and you can get feeds from there. Overall RSS Feed: or now on iTunes!

Today's podcast features music by Everyday Jones. No relation, but I stumbled on to them and really like the music. Support this great duo at www.everydayjones.com.

You can also follow Steve Jones on Twitter:

The Auditor Attack Vector

by Steve Jones

SQLServerCentral.com

Editorial

Steve Jones shares a story about losing data today.

★ ★ ★ ★ ★ ★ ★ ★ ★ ★

You rated this post out of 5. Change rating

2015-12-01

132 reads

Discuss

Encrypt Everything

by Steve Jones

SQLServerCentral.com

Editorial

Yahoo recently announced they are encrypting their traffic between data centers. Steve Jones thinks we should encrypt all traffic.

★ ★ ★ ★ ★ ★ ★ ★ ★ ★

You rated this post out of 5. Change rating

2013-12-16

394 reads

Discuss

Encryption in Production

by Steve Jones

SQLServerCentral.com

Editorial

This Friday Steve Jones wants to know if you are using encryption in your production system and if so, how is it working? Can you handle DR situations?

★ ★ ★ ★ ★ ★ ★ ★ ★ ★

You rated this post out of 5. Change rating

2012-02-10

250 reads

Discuss

Precious Ideas

by Steve Jones

SQLServerCentral.com

Editorial

Steve Jones talks about encrypting stored procedures and why it's a bad idea. And that it's a feature that should be removed from SQL Server.

★ ★ ★ ★ ★ ★ ★ ★ ★ ★

You rated this post out of 5. Change rating

2010-05-17

164 reads

Discuss

Man in the MIddle

by Steve Jones

SQLServerCentral.com

Editorial

Are you worried about man in the middle attacks on your database server? If you run Oracle you should be, but SQL Server DBAs should not assume they are safe. Adding communication encryption can be a good idea for SQL Server DBAs.

★ ★ ★ ★ ★ ★ ★ ★ ★ ★

You rated this post out of 5. Change rating

2010-04-29

276 reads

Discuss

Encryption Not Restriction

The Voice of the DBA Podcasts

Rate

Share

Categories

Share

Rate

Encryption Not Restriction

The Voice of the DBA Podcasts

Rate

Share

Categories

Share

Rate

Related content

The Auditor Attack Vector

Encrypt Everything

Encryption in Production

Precious Ideas

Man in the MIddle