Completely Encrypted Data

Do we care or worry if our databases need to handle encrypted data? Steve has a few thoughts about why we may or may not be concerned.

Confidential VMs

Google is introducing encrypted virtual machines.

TDE BYOK and Geo-Replication in Azure SQL DB

Recently a customer asked me for help with setting up a test of an Azure SQL Database in the single database tier with Geo-Replication to work with Transparent Data Encryption (TDE) with a customer-managed key, also known as Bring Your Own Key (BYOK). It is very simple to do it when you use service-managed keys, […]

Configure Extensible Key Management Using Azure Key Vault - Level 3 of the Stairway to TDE

In this third level of the Stairway, we examine how to store your encryption certificate in the Azure Key Vault.

Encryption Gets Broken All the Time

There are contests to break encryption algorithms taking place all the time. Another one was completed recently.

Mongodb Encryption

MongoDB adds encryption to protect data from the DBA.

Protecting the DMK

Encryption Libraries

There is an encryption library that Microsoft has released as open source.

Secure Enclave Concerns

A new security flaw in Intel SGX is found by researchers. This may or may not be a problem, but you should be aware.

Changing Algorithms