Hi
Suppose someone gained unauthorized access to the physical SS data stored on my machine. Is the data encrypted? Will the user need a password to access the data? Here is how I login to SS:
Thank you
January 11, 2025 at 2:08 pm
Without further information, there is no way one can answer your question!
1. Are you using any hard drive encryption?
2. Are you using TDE, transparent data encryption on the server/database level?
3. Have you done any attack vector assessments?
4-100. Why,What,How..... are you protecting and managing the access to your system and the data at the moment?
January 11, 2025 at 5:59 pm
My suggestion is that you need to stop taking chances and hire a consultant to set you up correctly because it sounds like you're not just storing personal data (which can certainly make a mess for you) but maybe some company information, as well.
--Jeff Moden
Change is inevitable... Change for the better is not.
January 12, 2025 at 1:26 am
Without further information, there is no way one can answer your question!
1. Are you using any hard drive encryption? 2. Are you using TDE, transparent data encryption on the server/database level? 3. Have you done any attack vector assessments? 4-100. Why,What,How..... are you protecting and managing the access to your system and the data at the moment?
good questions
My concern is that if my computer is ever stolen then an authorized person may access my SS db because he will have physical access to my drive. I have bitlocker enabled on the drive but not sure how secure this is (ie, is there a backdoor...probably?). Other than this, I don't have any intentional encryption set. I am wondering what encryption, by default, does SS have? Is there any encryption by default? I provided the screenshot to show how I currently access SS. Any feedback you can provide is much appreciated.
January 12, 2025 at 11:08 am
My concern is that if my computer is ever stolen then an authorized person may access my SS db because he will have physical access to my drive. I have bitlocker enabled on the drive but not sure how secure this is (ie, is there a backdoor...probably?). Other than this, I don't have any intentional encryption set. I am wondering what encryption, by default, does SS have? Is there any encryption by default? I provided the screenshot to show how I currently access SS. Any feedback you can provide is much appreciated.
If the hard drive has Bitlocker then it is pretty safe to assume that the data is secure, given that the user authentication is robust enough (password, fingerprint, security token etc.)
If anyone who can break the Bitlocker encryption gets hold of your system, they can probably bypass the Windows authentication anyway.
For database encryption, start by reading this documentation, Transparent data encryption (TDE).
You can check the encryption status of your databases:
SELECT
db.name AS database_name,
db.is_encrypted,
dm.encryption_state,
dm.percent_complete,
dm.key_algorithm,
dm.key_length
FROM
sys.databases db
LEFT OUTER JOIN
sys.dm_database_encryption_keys dm
ON
db.database_id = dm.database_id;
"The credit belongs to the man who is actually in the arena, whose face is marred by dust and sweat and blood"
- Theodore Roosevelt
Author of:
SQL Server Execution Plans
SQL Server Query Performance Tuning
January 13, 2025 at 3:44 pm
You can check the encryption status of your databases:
SELECT
db.name AS database_name,
db.is_encrypted,
dm.encryption_state,
dm.percent_complete,
dm.key_algorithm,
dm.key_length
FROM
sys.databases db
LEFT OUTER JOIN
sys.dm_database_encryption_keys dm
ON
db.database_id = dm.database_id;
Thank you! This is exactly what I was looking for.
February 13, 2025 at 3:24 am
Does encrypting the DB cause performance issues (ie run time increases) for queries?
Viewing 8 posts - 1 through 8 (of 8 total)
You must be logged in to reply to this topic. Login to reply
This website stores cookies on your computer.
These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media.
To find out more about the cookies we use, see our Privacy Policy