Post reply

Encryption

  • March 22, 2010 at 8:44 pm

    #218437

    Comments posted to this topic are about the item Encryption

  • March 22, 2010 at 10:11 pm

    #1137965

    Check out this links...

    http://msmvps.com/blogs/gladchenko/archive/2005/04/06/41083.aspx

    http://www.sqlservercentral.com/articles/Security/saveyourpassword/1420/

    this undocumented function is available since SQLServer 7

    so... what you think?

  • March 23, 2010 at 1:15 am

    #1138003

    In SQL Server 2005, column-level (sometimes called cell-level) encryption became available. Now, encryption could occur within the database, but it was not easy to use, offered poor performance, and it required a re-architecture of the application, along with changes to the database schema. Even with these downsides, column-level encryption offered some advantages: such as granular security; data is encrypted in memory and disk; and explicit key management, which allows different users to protect their own data using their own keys, even preventing the DBA from seeing a user’s data. Even so, the disadvantages were so great that only the most sensitive columns of a table were generally encrypted, which meant that much of the data in a database was still left unencrypted

  • March 23, 2010 at 1:53 am

    #1138006

    Ric Sierra (3/22/2010)

    Check out this links...

    http://msmvps.com/blogs/gladchenko/archive/2005/04/06/41083.aspx

    http://www.sqlservercentral.com/articles/Security/saveyourpassword/1420/

    this undocumented function is available since SQLServer 7

    so... what you think?

    Thank you! I love undocumented. I learned something new! πŸ™‚

  • March 23, 2010 at 1:57 am

    #1138011

    Ric Sierra (3/22/2010)

    this undocumented function is available since SQLServer 7

    PWDENCRYPT is a hash function, which means it's a one-way function. Once hashed, data cannot be restored. With cell-level encryption, data can be both encrypted and decrypted.

  • March 23, 2010 at 2:09 am

    #1138017

    Carlo Romagnano (3/23/2010)

    Thank you! I love undocumented.

    I'm afraid you'll be disappointed in this function since it became documented (and obsolete at the same time) in SQL Server 2008 πŸ™‚ http://msdn.microsoft.com/en-us/library/dd822791.aspx

  • March 23, 2010 at 3:18 am

    #1138039

    If SQL 2008 was part of the choices, my guess would have been wrong as I decided to choose the newest of the three.

  • March 23, 2010 at 7:33 am

    #1138210

    Open Minded (3/23/2010)

    If SQL 2008 was part of the choices, my guess would have been wrong as I decided to choose the newest of the three.

    Yeah, same...

    Peter Trast
    Microsoft Certified ...(insert many literal strings here)
    Microsoft Design Architect with Alexander Open Systems

  • March 23, 2010 at 7:36 am

    #1138215

    Not to be too picky but if cell level encryption was available since SQLServer 7 wouldn't SQLServer 7 have been the correct answer? Even if it was undocumented and poorly performing, it was still technically available, correct?

  • March 23, 2010 at 12:30 pm

    #1138480

    Me too.

    Tom Garth
    Vertical Solutions[/url]

    "There are three kinds of men. The one that learns by reading. The few who learn by observation. The rest of them have to pee on the electric fence for themselves." -- Will Rogers

  • March 23, 2010 at 5:51 pm

    #1138620

    Kenneth Wymore (3/23/2010)

    Not to be too picky but if cell level encryption was available since SQLServer 7 wouldn't SQLServer 7 have been the correct answer? Even if it was undocumented and poorly performing, it was still technically available, correct?

    Though that hash function was available, it provided no means to be able to retrieve the data unencrypted and is still somewhat different than the feature at the premise of the question.

    Jason...AKA CirqueDeSQLeil
    _______________________________________________
    I have given a name to my pain...MCM SQL Server, MVP
    SQL RNNR
    Posting Performance Based Questions - Gail Shaw[/url]
    Learn Extended Events

  • March 23, 2010 at 5:52 pm

    #1138621

    Nice Question. It was good to have this question and discussion.

    Jason...AKA CirqueDeSQLeil
    _______________________________________________
    I have given a name to my pain...MCM SQL Server, MVP
    SQL RNNR
    Posting Performance Based Questions - Gail Shaw[/url]
    Learn Extended Events

  • March 24, 2010 at 6:00 am

    #1138819

    vk-kirov (3/23/2010)

    Ric Sierra (3/22/2010)

    this undocumented function is available since SQLServer 7

    PWDENCRYPT is a hash function, which means it's a one-way function. Once hashed, data cannot be restored. With cell-level encryption, data can be both encrypted and decrypted.

    Is a semantic issue. The question is open, looking for the SQL Server version where Encryption (call as you wish: Hash function, two way encryption, masking, obfuscating, base64) can be done.

  • March 30, 2010 at 8:01 am

    #1142215

    Complete guess, but correct. Thanks for the question.

    Paul White
    SQLPerformance.com
    SQLkiwi blog
    @SQL_Kiwi

  • March 30, 2010 at 8:11 am

    #1142231

    Thanks for the explanation! Makes more sense now.

Viewing 15 posts - 1 through 15 (of 18 total)

You must be logged in to reply to this topic. Login to reply