Re: backup Keys
- From: SalamElias <eliassal@xxxxxxxxxxxxx>
- Date: Mon, 5 Mar 2007 01:36:00 -0800
So many thanks, wonderfull articles. In the first article it is mentioned
"Back up the SQL Server 2005 encryption keys by using the corresponding SQL
Server 2005 Transact-SQL commands."
This was exactly my question : what are the T-SQL commandes to backup keys?
Al I misunderstanding something?
Thanks again
"Steven Cheng[MSFT]" wrote:
Hello Salam,.
Regarding on the symmetric and asymmetric keys in SQL Server 2005 database,
they are all stored in the database itself. Therefore, when you backup the
database, you've already backup all those symmetric and asymmetric keys in
that certain database. You can lookup those system catalog views (for
encryption) below
#Security Catalog Views (Transact-SQL)
http://msdn2.microsoft.com/en-us/library/ms178542.aspx
sys.asymmetric_keys
sys.crypt_properties
sys.certificates
sys.key_encryptions
sys.credentials
sys.symmetric_keys
Also, for SQL Server 2005 database which contains symmetric or asymmetric
keys, the important point is that you need to backup the master key of the
database. Since all those secruity/encryption objects(symmetric or
asymmetric keys) are encrypted through a hierarchical structure, and
database masterkey is the topest key in a database. Whenever you've moved a
database to other server instance, you'll surely need to import/restore the
master key so that any down level secured objects can be used. You can also
get some sense on this through the following articles:
#Improving Data Security by Using SQL Server 2005
http://www.microsoft.com/technet/itshowcase/content/sqldatsec.mspx
#Encrypting Your Valuable Data With SQL Server 2005: Part 1
http://www.sql-server-performance.com/da_encryption_2005_1.asp
Hope this helps some.
Sincerely,
Steven Cheng
Microsoft MSDN Online Support Lead
==================================================
Get notification to my posts through email? Please refer to
http://msdn.microsoft.com/subscriptions/managednewsgroups/default.aspx#notif
ications.
Note: The MSDN Managed Newsgroup support offering is for non-urgent issues
where an initial response from the community or a Microsoft Support
Engineer within 1 business day is acceptable. Please note that each follow
up response may take approximately 2 business days as the support
professional working with you may need further investigation to reach the
most efficient resolution. The offering is not appropriate for situations
that require urgent, real-time or phone-based interactions or complex
project analysis and dump analysis issues. Issues of this nature are best
handled working with a dedicated Microsoft Support Engineer by contacting
Microsoft Customer Support Services (CSS) at
http://msdn.microsoft.com/subscriptions/support/default.aspx.
==================================================
This posting is provided "AS IS" with no warranties, and confers no rights.
- Follow-Ups:
- Re: backup Keys
- From: Erland Sommarskog
- Re: backup Keys
- From: Steven Cheng[MSFT]
- Re: backup Keys
- References:
- Re: backup Keys
- From: Erland Sommarskog
- Re: backup Keys
- From: Erland Sommarskog
- Re: backup Keys
- From: Steven Cheng[MSFT]
- Re: backup Keys
- Prev by Date: Re: 2 users mapped to 1 login
- Next by Date: RE: securing Access to DB on remote Server
- Previous by thread: Re: backup Keys
- Next by thread: Re: backup Keys
- Index(es):
Relevant Pages
|
