RE: Encrypting MS SQL databases
- From: "MARTIN Benoni" <benoni.martin@xxxxxxxxxxx>
- Date: Mon, 14 Aug 2006 09:25:51 +0200
Hi !
Yep, I've been thinking yet about your idea, but there are 2 problems on this:
1. The guy would need to decrypt manually the file where are stored the database files before launching MS SQL Server, what will not be acceptable by the clients :)
2. An auto-synchronization has to be performed by the laptops (between the local database and the central one) when they are connected to one of our LANs. I doubt this can be perform automatically if the databases are encrypted :)
Bénoni.
-----Message d'origine-----
De : Lars Solberg [mailto:sunberg@xxxxxxxxx]
Envoyé : vendredi 11 août 2006 15:27
À : MARTIN Benoni
Cc : security-basics@xxxxxxxxxxxxxxxxx
Objet : Re: Encrypting MS SQL databases
Hi
What about an encrypted volume on every laptop? You can use example TrueCrypt to mount the volume. TrueCrypt supports password and using an file as an password.
--
Lars
On 8/11/06, MARTIN Benoni <benoni.martin@xxxxxxxxxxx> wrote:
Hi list !
I'm currently working on a solution needing to perform replications
between MS SQL Server databases: there will be a central database and
several laptops connecting to it. The replications will occur on the
laptops, so they will have all the data on them, including sensitive
data.
So I will need to encrypt the data in their databases, and AFAIK, MS
SQL server 2K does not have encryption tools included.
So I will be looking for a tool that:
- will not be a millstone around people's neck :) (having 5 more
logins/passwords to know just because of the encryption)
- will be strong enough to not panic if a laptop is stolen :)
Any clue will be appreciated !
----------------------------------------------------------------------
----- This list is sponsored by: Norwich University
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has
designated Norwich University a center of Academic Excellence in
Information Security. Our program offers unparalleled Infosec
management education and the case study affords you unmatched consulting experience.
Using interactive e-Learning technology, you can earn this esteemed
degree, without disrupting your career or home life.
http://www.msia.norwich.edu/secfocus
----------------------------------------------------------------------
-----
---------------------------------------------------------------------------
This list is sponsored by: Norwich University
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence
in Information Security. Our program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Using interactive e-Learning technology, you can earn this esteemed degree,
without disrupting your career or home life.
http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------
- Prev by Date: RE: Clientless VPN (SSL VPN) vs HTTPS
- Next by Date: Enterprise security review & design
- Previous by thread: Re: Encrypting MS SQL databases
- Next by thread: Re: RE: Encrypting MS SQL databases
- Index(es):
Relevant Pages
|
