Hi
Suppose someone gained unauthorized access to the physical SS data stored on my machine. Is the data encrypted? Will the user need a password to access the data? Here is how I login to SS:
Thank you
January 11, 2025 at 2:08 pm
Without further information, there is no way one can answer your question!
😎
1. Are you using any hard drive encryption?
2. Are you using TDE, transparent data encryption on the server/database level?
3. Have you done any attack vector assessments?
4-100. Why,What,How..... are you protecting and managing the access to your system and the data at the moment?
January 11, 2025 at 5:59 pm
My suggestion is that you need to stop taking chances and hire a consultant to set you up correctly because it sounds like you're not just storing personal data (which can certainly make a mess for you) but maybe some company information, as well.
--Jeff Moden
Change is inevitable... Change for the better is not.
January 12, 2025 at 1:26 am
Without further information, there is no way one can answer your question! 😎 1. Are you using any hard drive encryption? 2. Are you using TDE, transparent data encryption on the server/database level? 3. Have you done any attack vector assessments? 4-100. Why,What,How..... are you protecting and managing the access to your system and the data at the moment?
good questions
My concern is that if my computer is ever stolen then an authorized person may access my SS db because he will have physical access to my drive. I have bitlocker enabled on the drive but not sure how secure this is (ie, is there a backdoor...probably?). Other than this, I don't have any intentional encryption set. I am wondering what encryption, by default, does SS have? Is there any encryption by default? I provided the screenshot to show how I currently access SS. Any feedback you can provide is much appreciated.
January 12, 2025 at 11:08 am
My concern is that if my computer is ever stolen then an authorized person may access my SS db because he will have physical access to my drive. I have bitlocker enabled on the drive but not sure how secure this is (ie, is there a backdoor...probably?). Other than this, I don't have any intentional encryption set. I am wondering what encryption, by default, does SS have? Is there any encryption by default? I provided the screenshot to show how I currently access SS. Any feedback you can provide is much appreciated.
If the hard drive has Bitlocker then it is pretty safe to assume that the data is secure, given that the user authentication is robust enough (password, fingerprint, security token etc.)
😎
If anyone who can break the Bitlocker encryption gets hold of your system, they can probably bypass the Windows authentication anyway.
For database encryption, start by reading this documentation, Transparent data encryption (TDE).
You can check the encryption status of your databases:
SELECT
db.name AS database_name,
db.is_encrypted,
dm.encryption_state,
dm.percent_complete,
dm.key_algorithm,
dm.key_length
FROM
sys.databases db
LEFT OUTER JOIN
sys.dm_database_encryption_keys dm
ON
db.database_id = dm.database_id;
"The credit belongs to the man who is actually in the arena, whose face is marred by dust and sweat and blood"
- Theodore Roosevelt
Author of:
SQL Server Execution Plans
SQL Server Query Performance Tuning
January 13, 2025 at 3:44 pm
You can check the encryption status of your databases:
SELECT
db.name AS database_name,
db.is_encrypted,
dm.encryption_state,
dm.percent_complete,
dm.key_algorithm,
dm.key_length
FROM
sys.databases db
LEFT OUTER JOIN
sys.dm_database_encryption_keys dm
ON
db.database_id = dm.database_id;
Thank you! This is exactly what I was looking for.
Viewing 7 posts - 1 through 6 (of 6 total)
You must be logged in to reply to this topic. Login to reply