Transparent Data Encryption (TDE)

TDE BYOK and Geo-Replication in Azure SQL DB

  • Article

Recently a customer asked me for help with setting up a test of an Azure SQL Database in the single database tier with Geo-Replication to work with Transparent Data Encryption (TDE) with a customer-managed key, also known as Bring Your Own Key (BYOK). It is very simple to do it when you use service-managed keys, […]

5 (3)


1,234 reads

Stairway to TDE icon

Stairway level 3 : Configure Extensible Key Management Using Azure Key Vault

  • Stairway Step

In Level 1 of this Stairway series, we discussed how to configure TDE in a user database using a Database Master Key (DMK) and a certificate. Level 2 showed the steps to restore the backup of this database on another instance.  In this level, we will explain how to configure TDE in SQL Server with […]

5 (3)


742 reads

Stairway to TDE icon

Stairway Level 2 : Restore a Backup of a TDE Database to Another Server

  • Stairway Step

In Level 1 of this Stairway, we discussed how to configure TDE in a user database using a Database Master Key and Certificate. In this level, we explain the steps for backing up and securing this certificate, as well as how to restore the database on another server instance. Backup the Certificate and Private Key […]

5 (2)


1,293 reads

Stairway to TDE icon

Transparent Data Encryption Using Certificates and EKM - Level 1 of the Stairway to TDE

  • Stairway Step

Introduction Transparent Data Encryption (TDE) is one of the key security features available in SQL Server from SQL Server 2008 onwards. Using this feature, the ‘data at rest’ in the physical files for the database, are protected from unauthorized access if the files are copied, or the physical media is stolen. TDE is available with […]

5 (3)


2,048 reads

6 steps to a more secure SQL database

  • Article

Security is often something people think about only after they have had a problem. Given that the average cost of a data breach is $3.92 million (SecurityIntelligence 2019) and ransomware attacks have increased 97% over the past 2 years (PhishMe 2019), the "if it's not broke, don't fix it" approach can clearly be catastrophic. Here […]

5 (2)


5,022 reads

Key Rotation in TDE

  • Article

Transparent Data Encryption (TDE) has been around for a long time. It first appeared in SQL Server 2008, and after a rocky start with some bugs, it has become a regularly used feature for many organizations. While not perfect, it does provide some protection and auditors like to see physical protection features being used. It's […]


5,021 reads


What you need to know About Azure SQL backup


Most of DBA are coming from On-premise Database Servers they know very well How...

Social: Respecting Names


This is a non-technical post, and my opinion. If you don’t want to read...

Proud to present at this year’s VMworld 2020 conference


I’m thrilled to support and participate in this year’s VMworld 2020 conference, which is...

Read the latest Blogs


sql server installation in azure VM

By abdalah.mehdoini

Good morning all for an sql installation in an AZURE VM machine the installation...

slow query

By thenewbee

Hi All, I have some issue with a slow running query and im quite...

How to be an MVP

By Kathi Kellenberger

Comments posted to this topic are about the item How to be an MVP

Visit the forum


SQL Server Q&A from the SQLServerCentral community

Get answers

Question of the Day

BDC Storage

See possible answers