Monday, 10 December 2012

Transparent data encryption SQL Server



Transparent data encryption (TDE) performs real-time I/O encryption and decryption of the data and log files. The encryption uses a database encryption key (DEK), which is stored in the database boot record for availability during recovery. The DEK is a symmetric key secured by using a certificate stored in the master database of the server or an asymmetric key protected by an EKM module. TDE protects data "at rest", meaning the data and log files. It provides the ability to comply with many laws, regulations, and guidelines established in various industries. This enables software developers to encrypt data by using AES and 3DES encryption algorithms without changing existing applications.

 Encryption of the database file is performed at the page level. The pages in an encrypted database are encrypted before they are written to disk and decrypted when read into memory. TDE does not increase the size of the encrypted database.
The following illustration shows the architecture of TDE encryption:


Displays the hierarchy described in the topic.





To use TDE, follow these steps.

  1. Create a master key
  2. Create or obtain a certificate protected by the master key
  3. Create a database encryption key and protect it by the certificate
  4. Set the database to use encryption

More to follow!!!!!!!!!!!!!!!!!!

Posted by at
Labels:

Deprecated Stored Procedures in SQL Server 2008


Like it's predecessor, SQL Server's support came to the end for some of its Stored Procedures of SQL Server 6.5/7.0

Below shown is a list of those procedures........
sp_addalias 
sp_addgroup 
sp_changegroup 
sp_cleanupwebtask 
sp_convertwebtasks 
sp_dbmmonitorMSgetthelatestlsn 
sp_dropgroup 
sp_dropwebtask 
sp_dts_addfolder 
sp_dts_addlogentry 
sp_dts_checkexists 
sp_dts_deletefolder 
sp_dts_deletepackage 
sp_dts_getfolder 
sp_dts_getpackage 
sp_dts_getpackageroles 
sp_dts_listfolders 
sp_dts_listpackages 
sp_dts_putpackage 
sp_dts_renamefolder 
sp_dts_setpackageroles 
sp_enumcodepages 
sp_extended_logging 
sp_fulltext_MasterMergeCheckpointInterval 
sp_fulltext_querytimeout 
sp_getarticlepkcolbitmap 
sp_helpgroup 
sp_makewebtask 
sp_MSCheck_premature_expired_subscriptions 
sp_MScopy_subscription_regkeys 
sp_MSdropreplsymmetrickey 
sp_MSvupgrade_registry_core 
sp_readwebtask 
sp_runwebtask 
spt_procedure_params_managed_view 
spt_procedure_params_return_values_managed_vsyssegments 



Posted by at
Labels:
Subscribe to: Posts (Atom)