SQL Server Encryption

  • Hi all,

    We have a database with around 40 ish tables in it. 4 of these contain data of a sensitive nature so I'm exploring options for encrypting them or to be precise selected columns in them but I wanted to get some expert opinions on the best approach to protect the data.

    The backups are already encrypted so that protects them.

    I'm thinking of turning on TDE to protect the drives in case they got pinched.

    This then leaves me protecting the data from direct querying either by a compromised account or some other rogue element and this is where I'm not sure of the best way to encrypt the colums, should I be using a passphrase in an encrypted stored procedure, or would I be better to use certificates or something else?

    Any comments would be gratefully received.

    Thanks,

    Nic

  • Thanks for posting your issue and hopefully someone will answer soon.

    This is an automated bump to increase visibility of your question.

  • Always Encrypted in SQL 2017 would let you protect things. You'd need to supply each client with a certificate, but it can work.

    Column level encryption works, but it requires some code changes.

     

  • Thanks for the response, its appreciated.

    Always encrypted sounds interest, guess I've got some reading up and testing to do.

    Thanks again.

    Nic

Viewing 4 posts - 1 through 3 (of 3 total)

You must be logged in to reply to this topic. Login to reply