locked
Encrypting user information RRS feed

  • Question

  • I store users address info in an online SQL server database. What are my options when it comes to encrypting that information - what techniques are commonly used?
    • Moved by Alex Feng (SQL) Friday, October 22, 2010 2:50 AM move to an appropriate forum (From:Getting started with SQL Server)
    Thursday, October 21, 2010 1:30 PM

Answers

All replies

  • Hi,
    If you are using SQL server 2008 there's new feature named: TDE (Transparent Data Encryption)
    When TDE is enabled (or disabled), the database is marked as encrypted in the sys.databases catalog view and the DEK (Data Encrytion Key) state is set to Encryption In Progress.
    
    For more information try to visit this link:
    http://technet.microsoft.com/en-us/library/cc278098(SQL.100).aspx#_Toc189384676
    
    
    Best regards
    
    

    Thursday, October 21, 2010 2:45 PM
  • Currently using 2005 and that is what the shared provider offers. At this time I couldnt use a 2008 version...
    Thursday, October 21, 2010 2:57 PM
  • In SQL 2005 there's no option to do encryption with the wizard but you can also do that with transact-sql. It's more difficult to implement comparing to TDE in SQL 2008. But it guarantee that your data are in the safe way. I found a good link explain how to implement an Encryption strategy with SQL server 2005:

    http://www.sql-server-performance.com/articles/dev/encryption_2005_1_p1.aspx

    Best regards

     

     


    • Proposed as answer by Maher Riahi Friday, October 22, 2010 7:18 AM
    • Marked as answer by Alex Feng (SQL) Friday, October 29, 2010 10:14 AM
    Thursday, October 21, 2010 3:54 PM
  • SQL 2005 provides the ability to encrypt data using t-sql natively.  Based on your post, encrypting column level data, this is definitely possible.  Here is a post that covers how to do this with t-sql:

    http://sqlsafety.blogspot.com/2010/10/encrypting-column-level-data-in-sql.html

     

    Hope this helps


    David Dye http://sqlsafety.blogspot.com/
    Thursday, October 21, 2010 6:44 PM