Tuesday, March 27, 2012

encryption of sql database

is there a way to encrypt a propriatary database so that it may not be
tampered with except for those who hold the key?"andres palomo" <xats3@.bellsouth.net> wrote in message news:<f7gYb.14470$kR3.5028@.bignews4.bellsouth.net>...
> is there a way to encrypt a propriatary database so that it may not be
> tampered with except for those who hold the key?

That depends if you want to encrypt the objects (eg stored
procedures), or the data in the tables. You can create procedures,
functions and views WITH ENCRYPTION, but it is not strong encryption,
and tools exist to break it. This type of proprietary information
should really be protected with a licence instead - Microsoft's own
system stored procedures are not encrypted, for example. Also, if you
install your database at a client site, you cannot prevent someone
there with sysadmin privileges from doing anything they want with your
database, so there is limited benefit in trying to lock it down.

As for encrypting data, there are some options listed here:

http://www.sqlsecurity.com/DesktopDefault.aspx?tabid=22

Simon

No comments:

Post a Comment