Re: Sql 2005 - how to allow users to decrypt table data using a database certificate ??
- From: petery@xxxxxxxxxxxxxxxxxxxx ("privatenews")
- Date: Thu, 13 Jul 2006 09:44:13 GMT
Hello Barry,
Thank you for your reply. As Laurentiu metnioned, it is not suggested that
you use encrypt data directly uisng certficates because of performance
consideration, and this is documented in BOL.
Though it is feasible to use grant permssion to certificate to user/groups,
this has security risk as you have noticed. You may consider the method
Laurentiu suggested if you still want to use certficiates to
decrypt/encrypt data directly.
As per your question on "references" permission, I did not find exact
documents on this but I think it shall similar to references permssion for
Table/Type etc. It shall the permissions to reference the properties of
certificates. Apparently references permission is not enough to use
decrypt/encrupt method.
If you have further concerns on this, please let's know. Have a great day!
Best Regards,
Peter Yang
MCSE2000/2003, MCSA, MCDBA
Microsoft Online Partner Support
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.
.
- References:
- Prev by Date: Re: Protecting database structure
- Next by Date: Re: securityadmin
- Previous by thread: RE: Sql 2005 - how to allow users to decrypt table data using a database certificate ??
- Next by thread: Re: Sql 2005 - how to allow users to decrypt table data using a database certificate ??
- Index(es):
Relevant Pages
|
