Re: SQL 2005 - Searching Encrypted SSN

---

• From: "Mike C#" <xyz@xxxxxxx>
• Date: Thu, 6 Jul 2006 09:54:41 -0400

---

"Laurentiu Cristofor [MSFT]" <laur@xxxxxxxxxx> wrote in message
news:uNLoccGoGHA.2364@xxxxxxxxxxxxxxxxxxxxxxx

Of course you are better: if you have two pieces of data encrypted with
different IVs, you're not going to be able to tell whether they're
identical or not, but if you use a fixed IV, the blobs will be identical.
Storing the IVs with the data is ok, they're not supposed to be secret;
the encryption key is the secret.

Thanks

That said, why is there no option to allow programmers to specify their own
IV at encryption time?


.

---

• Follow-Ups:
  • Re: SQL 2005 - Searching Encrypted SSN
    • From: Laurentiu Cristofor [MSFT]

• References:
  • Re: SQL 2005 - Searching Encrypted SSN
    • From: Mike C#
  • Re: SQL 2005 - Searching Encrypted SSN
    • From: Laurentiu Cristofor [MSFT]

• Prev by Date: Re: Network Service Account
• Next by Date: Re: "Random IV"?
• Previous by thread: Re: SQL 2005 - Searching Encrypted SSN
• Next by thread: Re: SQL 2005 - Searching Encrypted SSN
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: SQL 2005 - Searching Encrypted SSN ... to specify custom IVs. ... Software Design Engineer ... Storing the IVs with the data is ok, they're not supposed to be secret; ... the encryption key is the secret. ... (microsoft.public.sqlserver.security) Re: SQL 2005 - Searching Encrypted SSN ... IVs with the data is ok, they're not supposed to be secret; ... Software Design Engineer ... SQL Server Engine ... (microsoft.public.sqlserver.security)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > microsoft.public.sqlserver.security  > 2006-07