Roy Ernest (9/29/2009)
If my understanding is correct, Master key just protect the private key of certificates and asymmetric keys that are present in the DB. It is the certificate that matters in TDE.That is my understanding
to protect the cert from what though? If i have the cert and the password to decrypt the cert, theres no way a master key can protect it, but the master key is still required to create the server certificate ( and prob keys in the db, have not checked this yet though).