Sure, if you do the encryption and decryption in the app itself. Now that
may not stop someone from reverse engineering the app but that takes the
DBA's permissions out of the picture.
Hi,
We are creating a distributed app (VS 2005) which will ship with SQL
server
express. The database will reside on the client environment and contain
very
sensitive data. Is it possible to create an environment where this data
will
not be available to anyone - except through the application. I have been
looking at encryption but it appears that a dba would be able to use
existing
stored procedures or views within the db to get at the data.
Re: Securing data to a process principal ... reasonable controls that protect against "casual" abuse. ... hooks into your encryption function) and you cannot prevent an admin using ... The RM analyst also uses an app that has an embedded obfuscated key (I'll ... where the secret is stored in the registry. ... (microsoft.public.platformsdk.security)
Re: Securing data to a process principal ... The RM analyst also uses an app that has an embedded obfuscated key (I'll ... where the secret is stored in the registry. ... can use a login context of the app ID itself as the encryption key as I've ... application should be able to decrypt data on another computer. ... (microsoft.public.platformsdk.security)
Re: Securing data to a process principal ... Yes, you can protect against ... The RM analyst also uses an app that has an embedded obfuscated key (I'll ... where the secret is stored in the registry. ...encryption would be done with a key that was associated with the app ID. ... (microsoft.public.platformsdk.security)
Re: Securing data to a process principal ... reasonable controls that protect against "casual" abuse. ... hooks into your encryption function) and you cannot prevent an admin using ... The RM analyst also uses an app that has an embedded obfuscated key (I'll ... where the secret is stored in the registry. ... (microsoft.public.platformsdk.security)
Re: SP Permission Inheritance and Table Creation ... I understand your reluctance to hardcode passwords in your app as plain ...encryption is adequate for most applications but I'd no ... > his computer and find the line that actually makes the connection.... (microsoft.public.sqlserver.security)
