RE: Encrypt data - SQL Server 2000
From: Gates, Gerald A (Jerry) (JerryGates_at_fairisaac.com)
Date: 01/22/04
- Previous message: Shane Colley: "Microsoft Security (...how to reassure customers of)"
- Maybe in reply to: Eduardo.Ortiz_at_alderwoods.com: "Encrypt data - SQL Server 2000"
- Next in thread: Fred Langston: "RE: Encrypt data - SQL Server 2000"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 22 Jan 2004 12:21:18 -0600 To: <focus-ms@securityfocus.com>
We routinely encrypt data in certain columns of our SQL server
databases. We use the encryption facilities provided by the .Net
framework and the Java Crypto API to encrypt and decrypt the data at the
application level.
In order to get around the general inconvenience of having binary data
in our databases, we MIME encode the data after encrypting it (and MIME
decode it before decrypting). This allows us to store the data as
Varchar instead of binary. The data is a little bigger (about 33%), but
we can index and search it.
Later,
Jerry Gates
-----Original Message-----
From: Mr. Momotaro [mailto:momotaro@catholic.org]
Sent: Thursday, January 22, 2004 9:48 AM
To: focus-ms@securityfocus.com
Subject: RE: Encrypt data - SQL Server 2000
> EFS is probably the worst approach to this problem and should me
avoided
> in
> all but the smallest installations when applied in this manner. You
need
> encryption technology designed for this type of application, not a
> user/filesystem based encryption system.
>
I'll piggy-back here that EFS doesn't cut it. EFS doesn't stop the DBAs
from seeing the data. EFS has to be configured in such a way SQL Server
has access to the file. Since SQL Server has access, the DBA will be
able
to see into the table. Therefore, EFS will stop someone from stopping
the
SQL Server service and copying off the data file if they are familiar
with
this approach but aren't familiar with EFS.
The last time I talked to someone from Microsoft about this (a couple of
years ago, albeit), I believe Protegrity (http://www.protegrity.com/)
was
the recommendation for encrypting at the table or column level.
Yes, you're going to suffer a performance hit because SQL Server won't
be
able to index on the data, but there's always a trade-off.
------------------------------------------------------------------------
--- ------------------------------------------------------------------------ --- --------------------------------------------------------------------------- ---------------------------------------------------------------------------
- Previous message: Shane Colley: "Microsoft Security (...how to reassure customers of)"
- Maybe in reply to: Eduardo.Ortiz_at_alderwoods.com: "Encrypt data - SQL Server 2000"
- Next in thread: Fred Langston: "RE: Encrypt data - SQL Server 2000"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
