In Protecting SQL Server Data, John Magnabosco demonstrates how sensitive data, stored in SQL Server, can be protected using an efficient and maintainable encryption-based data architecture.
He explains how to assess and categorize data elements according to sensitivity, regulate access to the various categories of data using database roles, views and stored procedures, and then how to implement a secure data architecture using features such as cell-level encryption, transparent data encryption, one-way encryption, obfuscation, and more.
The battle to secure personal and business data is a tough one, and the consequences of mishandling sensitive data can be severe. Even more damaging than the fines and lawsuits that can be result from non-compliance with regulations, is the loss of customer confidence that results when these breaches of security occur.
Database Administrators must use every weapon and strategy at their disposal in the “war” to protect their sensitive data from would-be hackers, phishers, rumor mongers and identity thieves. Encryption is one of the primary weapons with which this battle can be won.
About the author
For almost the past twenty years, John Magnabosco has been able to create database systems for the benefit of the banking industry, State government, and more recently heading the Data Services group of one of the fastest growing businesses in the United States.
Through his participation as a co-founder of local organizations such as the Indianapolis Professional Association for SQL Server (www.IndyPASS.org) and IndyTechFest (www.IndyTechFest.org) his home town of Indianapolis is one of the most active SQL Server communities in the country. In wider circles of influence he has authored articles at DevX.com, provided snack-style instructional videos at JumpstartTV.com and presented on sensitive data solutions at SQL Saturday events.
You can find his latest contribution to the sensitive data dialog at his blog.