RE: Transferring data to web host

Sorry, do linked servers use SSL including exchanging data via bcp? I am
able to link to the webhost's server. If that the case, then I would be
fine with encrypting sensitive columns and then transmitting using SSL.

"Mohit K. Gupta" wrote:

Hi Ron,

Since Data is Sensitive .. I was thinking maybe this option would work
for you .. but it is a bit of work ..

Option 1:
1) Move the tables/data from your main database to a staging database.
2) Encrypt the database in staging database using a Certificate from an CA.
3) Backup database.
4) FTP Database using SSL-FTP to your web host.
5) They restore the backup into their staging database.
6) Decrypt data.
7) Update their database from the staging database.

Option 2:
Use HTTP End point, with SSL to publish a function to web in your internal
environment that uses a certificate to authenticate and the web-host pulls
information from there using a web app?

Option 3:
You said SSL is not possible? Can't it be setup for port 1433 between the
two sites? If that is possible then you'll be able to use linked servers?
Maybe?

... Just bouncing Ideas :-).

--
Mohit K. Gupta
B.Sc. CS, Minor Japanese
MCITP: Database Administrator
MCTS: SQL Server 2005
http://sqllearnings.blogspot.com/


"Ron" wrote:

Using SQL SERVER 2005. Our goal is for the web host (3rd-party) to house the
data that users can then query through a secure website.

I have got it down now where I can move data between my internal SQL
Server and our webhost's SQL Server database utilizing bcp. What I am not
clear on is how to secure such communications. I've spent the last hour or
two searching the MSDN library but am still confused.

If some of the data I want to BCP is HIPAA-sensitive, how do I secure the
data? I
need to script this so that it is an automated task. I don't see how to
encrypt a file before transmit and then decrypt before bcpimports it nor do I
see how to secure the communications. While our server has a linked_server
relationship with the webhost server, we do not have a trusted connection so
I don't think SSL is possible.

Since the amount of data being moved nightly is very substantial (several
hundred thousand rows), bcp seems the only practical way to get it done
quickly. I'm not sure if just securing the data by encrypting the columns
before export is secure enough.(?)



.

Relevant Pages

  • Re: Multithreading for standalone php
    ... I'm working on a project that will need to connect to 2 different servers and to speed things up (being ssl) I was hoping to be able to do this simultaneously. ... I need my web visitor to hit a button and be able to enter information on another server while at the same time my system is looking up data ... Would this be the sort of thing possible with PHP or would it have to use threads? ... You probably could still spawn a C/C++ program to do the database work, but I'm not sure it's worth the extra effort and complications. ...
    (comp.lang.php)
  • RE: Transferring data to web host
    ... Because SSL is implemented on the TCP/IP protocol using the SQL Server ... fine with encrypting sensitive columns and then transmitting using SSL. ... Move the tables/data from your main database to a staging database. ...
    (microsoft.public.sqlserver.security)
  • Re: Access to internal database
    ... So we can make the connection to the database server over SSL? ... The web server then would connect to the ...
    (microsoft.public.dotnet.framework.aspnet)
  • Re: Access to internal database
    ... So we can make the connection to the database server over SSL? ... The web server then would connect to the ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: BCP and security
    ... As far as SQL Server is concerned, BCP and the other utilities are ... Database permissions are determined by the login ... > installation CD doesn't give you the option for bcp only ...
    (microsoft.public.sqlserver.security)