locked
SQL Server 2008 Encryption RRS feed

  • Question

  • Hi there

    I have not worked much on SQL Server 2008 Encryption. But I am aware of creating keys, symmetric keys, certificates in SQL Server 2005 to encrypt the data at column level. 

    My question is, if I enable TDE at database level, does it encrypt the data in the table level? I mean is there no need to again create encryption at table level?


    Thanks
    Itz


    Wednesday, March 10, 2010 1:51 PM

Answers

  • Itz,

    TDE is encryption for data at rest, meaning that if someone were to steal the data files for the database those files would be encrypted. TDE is as it sounds, transparent to the end user. What this means is that if the user is authenticated to select data from a table, the data will be in plain text. TDE will not encrypt data a column level as you would normally do for things such as credit card numbers or social security numbers, for these you'll still have to use column level encryption to keep this data safe from unauthorized access from authenticated users.

    Hope this helps,
    Sean

    Wednesday, March 10, 2010 4:40 PM