SQL Server Pro
Connect With Us
Home > Project Plans > SQL Server 2008 > SQL Server Encryption

SQL Server Encryption

How to encrypt sensitive information in your SQL Server databases
Feb. 21, 2013 Basit Aalishan Masood-al-farooq | SQL Server Pro

144904.zip With the increasing number of incidents of lost and unauthorized exposure to sensitive data, database security is a vital and growing concern for many organizations. Companies that hold sensitive data within their databases have to meet various compliance requirements such as the Gramm-Leach-Bliley Act (GLBA), European Union Data Protection Directive (EUDPD), Health Insurance Portability and Accountability Act (HIPAA), Payment Card Industry Data Security Standard (PCI ...

Buy This Project Plan Now!

This content is part of the Migrating to SQL Server 2008 & 2008 R2 Project Plan.

Purchase this project plan to receive:

  • Step-by-step guidance for managing your project, start to finish
  • Tested advice for preparing for and completing your project
  • Insights to help you avoid common pitfalls and traps
Buy Now!

Register
Already registered? here

Discuss this Article 1

VorTodd
on Feb 21, 2013
This is a good write up. A couple of comments: 1) Something to consider if you have more than a handful of databases and want to avoid key management headaches is a network Hardware Security Module (HSM) to secure and manage the keys. The network HSM manages the asymmetric key which is used to protect the symmetric key that is created when TDE is enabled for both SQL Server (and Oracle if you are using Oracle TDE). 2) The key in the Master database is not secure - there are known ways to extract this key if you have access to the system. This is a security hole and without an external key manager or HSM on the system SQL Server with TDE is technically not PCI compliant if that is critical to your regulatory needs. A network HSM allows you to avoid having to purchase a hardware HSM for each server to protect the key. On a side note, Vormetric Key Management manages TDE keys for both SQL Server and Oracle. 3) There are third party solutions. Vormetric Encryption combined encryption and key management and provides file-level encryption for data outside of your user and tempdb tables along with associated files outside of the database. This can encrypt the Master Tables, System Tables, Log files and any other external content such as trace files that may contain sensitive data Cheers! Todd from Vormetric

Please or Register to post comments.

Related Articles
Migrating to SQL Server 2008 & 2008 R2 Project Plan

<<< Back to the Project Plan


Planning

SQL Server 2008 R2 Requirements

SQL Server Version Build Numbers

SQL Server 2008 R2 New Features

Migrating

Upgrading to SQL Server 2008 R2

Migrating to SQL Server 2008

How to Upgrade to SQL Server 2008 from SQL Server 2000

Tools for Migrating Access to SQL Server

SQL Server 2008 - Episode 8: How Do I Upgrade

Fine Tune Your Migration

Database Administration

Top 10 SQL Server Performance Tuning Tips

Configuring SQL Server 2008’s Resource Governor

Set Up a SQL Server 2008 Cluster

Upgrading a SQL Server 2005 Cluster to a SQL Server 2008

Compression in SQL Server 2008

An Overview of SQL Server High Availability Options

3 Log Shipping Techniques

Efficient Data Management in SQL Server 2008, Part 1

Efficient Data Management in SQL Server 2008, Part 2

Build a Policy-Based Management System for SQL Server 2008

Synchronizing Disparate Data with Master Data Services

Introducing the SQL Server Utility

Tips for Using SQL Server Management Studio 2008

SQL Server 2008 - Episode 2: Under the Hood

SQL Server 2008 - Episode 5: Knowing Your Data

SQL Server 2008 - Episode 6: 64 Bit and You

SQL Server 2008 - Episode 7: Ready for your Environment

SQL Server 2008 R2: Enterprise Data Access for Mission-Critical Applications

Backup and Recovery

Database Mirroring in SQL Server 2008 R2 and SQL Server 2008

Advanced BACKUP and RESTORE Options

Step-by-Step Approach to Differential Backup and Recovery

Security and Auditing

Hardening SQL Server

SQL Server 2008 Boosts Built-in Encryption

SQL Server Ecryption

SQL Server 2008 - Episode 1: How Can I Secure Data

SQL Server 2008 - Episode 3: Protecting Your Data

Virtualization

Optimizing SQL Server Performance in a Virtual Environment

7 Best Practices for Running SQL Server on Hyper-V

T-SQL

Upgrading Clusters to SQL Server 2012 When AlwaysOn Availability Groups Will Be Used

Planning and Implementing a SQL Server Cluster

More SQL Server 2008 T-SQL Improvements

SQL Server 2008’s T-SQL Development and Debugging Features

Parallelism Enhancements in SQL Server 2008

Date and Time Support in SQL Server 2008

Using SQL Server 2008 FILESTREAM Storage

Using SQL Server 2008's FILESTREAM Data Type

Simplifying Spatial Data

SQL Server 2008 - Episode 4: What About Developers

Business Intelligence

Introducing PowerPivot for SharePoint

SQL Server 2008 Change Data Capture

SharePoint and SQL Server Integration

5 Considerations for Setting up a SQL Server 2008 Backend for SharePoint 2010

SSRS 2008 R2 and SharePoint 2010 Integration

PowerPivot and Excel

How to Create PowerPivot Applications in Excel 2010

A Walkthrough of PowerPivot for Excel 2010

A Walkthrough of PowerPivot for Excel 2010

Integrating SQL Server 2008 Spatial Capabilities with Microsoft Virtual Earth

Managed Self-Service BI

SQL Server Reporting Services

Unlock the Secrets of SQL Server 2008 Reporting Services

A Candid Look at Report Builder 3.0

SQL Server Reporting Services

Use Checkpoints to Restart Failed SSIS Packages

SSIS Novices’ Guide to Data Warehouses: Moving Data into the Data Warehouse

SQL Server Reporting Services

Backup Basics for SQL Server Analysis Services

SQLMag.com
Related Sites
Copyright © 2013 Penton Media, Inc