Re: SQL-Server and Content encryption
From: Reiner (Reiner.proels@laposte.net)
Date: 04/24/03
- Previous message: TNL: "Re: performance of Insert with Partitioned View"
- In reply to: news@news.com: "Re: SQL-Server and Content encryption"
- Next in thread: Hal Berenson: "Re: SQL-Server and Content encryption"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Reiner" <Reiner.proels@laposte.net> Date: Thu, 24 Apr 2003 01:27:48 -0700
Thanks (to all)!
I will check to see what I will use.
Reiner
>-----Originalnachricht-----
>Yup, this scheme would work if only a secure authority
could check out the
>decrypt key. In this case the UDF stores the key.
>
>"Andrew J. Kelly" <ajkellynospam@attbi.com> wrote in
message
>news:#CN#cZaCDHA.1304@TK2MSFTNGP11.phx.gbl...
>> That will not do what he requested. There would be
nothing to stop the
>sa
>> from calling the udf and decrypting the data.
>>
>> --
>>
>> Andrew J. Kelly
>> SQL Server MVP
>>
>>
>> "Madhu" <madhu@visionencompass.com> wrote in message
>> news:O800dJaCDHA.2376@TK2MSFTNGP10.phx.gbl...
>> > Hi,
>> >
>> > U can try this. (only in Sql server 2000)
>> >
>> > 1. Have a encryption api from third party vendor (ex:
activecrypt.com)
>> > 2. Map the dll to sql server using extended stored
procedure
>> > 3. Write a user-defined function to call the encrypt
and decrypt
>> functions.
>> > Use some your own password (which are exposed in API)
>> > 4. Rename all tables to <table_name_org> (could be
anything)
>> > 5. Create a view as original table name
>> > 6. Write a triggers to view to insert/update/delete
the actual table
>> >
>> > If you have any problem revert back.
>> >
>> > Bye,
>> > Madhu
>> >
>> > "Andrew J. Kelly" <ajkellynospam@attbi.com> wrote in
message
>> > news:uR$SS#ZCDHA.392@TK2MSFTNGP12.phx.gbl...
>> > > SQL Server does not have any encryption features
built in like that.
>If
>> > you
>> > > really don't want anyone (even sa) to be able to
decrypt it then you
>> must
>> > do
>> > > the encryption and decryption in the application.
Then sql server is
>> just
>> > a
>> > > data store as it is intended and unless someone
else has this
>decryption
>> > > scheme they won't be able to interpret the data
even if they can read
>> it.
>> > >
>> > > --
>> > >
>> > > Andrew J. Kelly
>> > > SQL Server MVP
>> > >
>> > >
>> > > "Reiner" <Reiner.proels@laposte.net> wrote in
message
>> > > news:02b301c3099b$f4f9ac50$2f01280a@phx.gbl...
>> > > > Hello,
>> > > >
>> > > > is there any possibility to hide the datas stored
in the
>> > > > database even for an administrator (encryption).
So only a
>> > > > special application with a build in password /
key can
>> > > > read the data stored in the SQL-Server database?
>> > > >
>> > > > Thanks
>> > > >
>> > > > Reiner
>> > >
>> > >
>> >
>> >
>>
>>
>
>
>.
>
- Previous message: TNL: "Re: performance of Insert with Partitioned View"
- In reply to: news@news.com: "Re: SQL-Server and Content encryption"
- Next in thread: Hal Berenson: "Re: SQL-Server and Content encryption"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
