Question: Is it possible to decrypt a Transaction Log taken off a database against which TDE is applied?
Context: Business is transferring a portion of functionality to an outsourcer, this requires us to shift a substantial quantity of SQL data in a short timeframe. We'd like to use a delta approach to minimise the data quantity at final cutover - essentially sending full backups prior then sending weekly transaction log backups until cutover occurs.
Problem Space: not surprisingly, our security architects do not want to share our Production TDE certificates with the other organisation. Hence, we need to give them un-encrypted information. Easy enough for the initial full backup (restore to a staging server that has the Prod TDE cert, decrypt, backup, send) but complex for the Transaction Logs - hence the question.
Hope I've been able to describe the problem, any & all help greatly appreciated