Masking content of some stored procedures

  • I want to protect the content of some stored procedures and user functions in order to hide it from non authorized eyes.

    Is that possible if I retain the sa login and give away the db owner login?

    I was thinking of putting the desired SPs and UDFs in another DB on the same server where the main DB owner has only execute permissions and not read ones.

    Would this degrade performace? Would be possible on the same DB limiting dbo permission on those SPs to execute and not to read?

    Any better suggestions?

    Regards

    Giovanni

  • Check out BOL under CREATE PROCEDURE WITH ENCRYPTION

  • Not possible.

    "With encryption" - easy decrypting by dSQLRVD.

    >>I was thinking of putting the desired SPs and UDFs in another DB on the same server where the main DB owner has only execute permissions and not read ones.

    OK. How do you limit access to table syscomments?

    And anyway : how can you restrict NT Administrator to add logins, attach-detach your "encrypted" database and such?

    IMHO, you're wasting time - there is no methods to limit NT Administrator.

     

  • Thanks for reply,

    I think I can retain NT Admin password, and just give the password of the login owning the actual db.

    Does it look feasible a double DB structure with sensible data and SPs on a second DB?

    Regards

    Giovanni

Viewing 4 posts - 1 through 3 (of 3 total)

You must be logged in to reply to this topic. Login to reply