kpwimberger (1/17/2013)
...But doesn't this mean I need the password inside EVERY proc I write that touches an encrypted column? isn't this adding insecurity into the system? What if the password needs to change, it will be scattered throughout the system.
...
By doing this, you shift the responsibility for key management from SQL
Server to yourself. Sometimes this is needed...
kpwimberger (1/17/2013)
...Iam sure there must be a way to do this without explicitly calling the password.
Yes, relay on key management by SQL. User then need a rights to open key, cert.
Unfortunately, there is no "Best practices" from microsoft for SQL Encryption. The encryption and connected with that security is a very complex theme.