Presentation is loading. Please wait.

Presentation is loading. Please wait.

Roy Ernest Database Administrator Pinnacle Sports Worldwide SQL Server 2008 Transparent Data Encryption.

Published byJerome Young Modified over 8 years ago

Similar presentations

Presentation on theme: "Roy Ernest Database Administrator Pinnacle Sports Worldwide SQL Server 2008 Transparent Data Encryption."— Presentation transcript:

1 Roy Ernest Database Administrator Pinnacle Sports Worldwide royernest@yahoo.com SQL Server 2008 Transparent Data Encryption

2 Contents What is Transparent Data Encryption (TDE) How it works How to implement TDE Things to keep in mind After Effects of enabling TDE July 22 nd, 20102Curaçao SQL Server User Group

3 What is TDE Encryption that protect the physical files performs real-time I/O encryption and decryption of the data and log files. The encryption uses a database encryption key (DEK), which is stored in the database boot record for availability during recovery. The DEK is a symmetric key secured by using a certificate stored in the master database of the server or an asymmetric key protected by an EKM module. July 22 nd 20103 Curaçao SQL Server User Group

4 July 22 nd, 2010Curaçao SQL Server User Group4 How it Works Server starts a background thread that scans all the database files and encrypts them The supported encryption algorithms are AES with 128, 196 and 256 bit keys or 3 key triple DES. The only operations that are not allowed while the encryption thread runs are modifying the file structure and taking the database offline by detaching it. The scan also rolls over the virtual log file so that the future writes to the log are encrypted.

5 Implementation of TDE Create a master key Create or obtain a certificate protected by master key. Create a database key and protect it by the certificate. Set the database you want to protect to use the encryption. July 22 nd, 20105Curaçao SQL Server User Group

6 Things that need to be noted. Read Only Filegroups and FileStream Data type Maintenance/Recovery/Warm Standby TempDB Compressed Backups Known Issue with TDE July 22 nd, 20106Curaçao SQL Server User Group

7 November 26, 20097Curaçao SQL Server User Group

8 Additional Resources Books Online topics http://msdn.microsoft.com/en-us/library/bb934049.aspx TDE http://www.sqlservercentral.com/articles/Transparent+Data+Encryption/66334 July 22 nd, 2010Curaçao SQL Server User Group8

9 November 26, 20099Curaçao SQL Server User Group

Download ppt "Roy Ernest Database Administrator Pinnacle Sports Worldwide SQL Server 2008 Transparent Data Encryption."

Similar presentations

Roy Ernest Database Administrator Pinnacle Sports Worldwide SQL Server High Availability.

Roy Ernest Database Administrator Pinnacle Sports Worldwide SQL Server High Availability.
Notes: Update as of 1/13/2010. Vulnerabilities are included for SQL Server 2000, SQL Server 2005, SQL Server 2008. Oracle (8i, 9i, 9iR2, 10g, 10gR2,11g),

Notes: Update as of 1/13/2010. Vulnerabilities are included for SQL Server 2000, SQL Server 2005, SQL Server Oracle (8i, 9i, 9iR2, 10g, 10gR2,11g),
Database Administration and Security Transparencies 1.

Database Administration and Security Transparencies 1.
Administering Microsoft SQL Server 2012 Databases.

Administering Microsoft SQL Server 2012 Databases.
DESIGNING A PUBLIC KEY INFRASTRUCTURE

DESIGNING A PUBLIC KEY INFRASTRUCTURE
Windows XP File System Management Group D. 3 Layers of Drivers Filter Drivers Filter Drivers –Virus protection, compression, encryption File System Drivers.

Windows XP File System Management Group D. 3 Layers of Drivers Filter Drivers Filter Drivers –Virus protection, compression, encryption File System Drivers.
Gavin Payne Transparent Data Encryption The Hows, Whys and Whens.

Gavin Payne Transparent Data Encryption The Hows, Whys and Whens.
Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.

Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.
Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.

Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.
Dr Alejandra Flores-Mosri Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the.

Dr Alejandra Flores-Mosri Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the.
15 Copyright © 2006, Oracle. All rights reserved. Database Security.

15 Copyright © 2006, Oracle. All rights reserved. Database Security.
Chapter 13: Electronic Commerce and Information Security Invitation to Computer Science, C++ Version, Fourth Edition SP09: Contains security section (13.4)

Chapter 13: Electronic Commerce and Information Security Invitation to Computer Science, C++ Version, Fourth Edition SP09: Contains security section (13.4)
Module 7: Restoring Databases. Overview SQL Server Recovery Process Preparing to Restore a Database Restoring Backups Restoring Databases from Different.

Module 7: Restoring Databases. Overview SQL Server Recovery Process Preparing to Restore a Database Restoring Backups Restoring Databases from Different.
1 Chapter Overview Managing Compression Managing Disk Quotas Increasing Security with EFS Using Disk Defragmenter, Check Disk, and Disk Cleanup.

1 Chapter Overview Managing Compression Managing Disk Quotas Increasing Security with EFS Using Disk Defragmenter, Check Disk, and Disk Cleanup.
1 Andrew Fryer Technical Evangelist R2 Data Governance for the IT Manager.

1 Andrew Fryer Technical Evangelist R2 Data Governance for the IT Manager.
Bill Wunder Database Manager Pinnacle Sports Worldwide bon bini a.

Bill Wunder Database Manager Pinnacle Sports Worldwide bon bini a.
File System and Full Volume Encryption Sachin Patel CSE 590TU 3/9/2006.

File System and Full Volume Encryption Sachin Patel CSE 590TU 3/9/2006.
SQL Server 2008 Implementation and Maintenance Chapter 7: Performing Backups and Restores.

SQL Server 2008 Implementation and Maintenance Chapter 7: Performing Backups and Restores.
Security & Auditing on SQL Server 2008 R2 Antonios Chatzipavlis Software Architect Evangelist, IT Consultant MCT, MCITP, MCPD, MCSD, MCDBA, MCSA, MCTS,

Security & Auditing on SQL Server 2008 R2 Antonios Chatzipavlis Software Architect Evangelist, IT Consultant MCT, MCITP, MCPD, MCSD, MCDBA, MCSA, MCTS,
Module 9 Configuring Server Security Compliance. Module Overview Securing a Windows Infrastructure Overview of EFS Configuring an Audit Policy Overview.

Module 9 Configuring Server Security Compliance. Module Overview Securing a Windows Infrastructure Overview of EFS Configuring an Audit Policy Overview.

Similar presentations

Ads by Google