Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

DB Encryption

Status
Not open for further replies.
mossbs

mossbs

Programmer
Aug 19, 2008
102
GB
Hi guys,

Although I've been working with SQL for a while, encryption is not something I've worked with before - I've done a bit of reading up on BOL etc but have some specific questions I'm still not sure of the answer to...

- Is it possible to encrypt data so that it is encrypted only on the SQL side? (ie reports and queries wouldn't display the sensitive data)
- But... in the app that sits on top of the DB - values are not encrypted.

From what I've read - this is possible but means alot of messing about and changes are required to the application?

What I would ideally like is some form of encryption that requires no alterations to the application.

Is this possible? or am I living in a dream world?!

Any help greatly appreciated!

 
Sort by date Sort by votes
Which version of SQL are you using? You may be able to use Transparent Data Encryption (TDE).

If you encrypt a column then decrypting will be needed.

djj
The Lord is my shepherd (Psalm 23) - I need someone to lead me!
 
Upvote 0 Downvote
I don't do encryption...and would be curious to see the ultimate answer to this. But I see the issue as, you want the decryption done in SQL Server not the application. I would think if the decryption is done in SQL Server, you couldn't limit it to a specific application, so it would be more effective to have the decryption happen in the application.

If the application uses a specific login or can be identified someway in SQL Server you might be able to have a trigger or something that checks for that value and does the decryption. Maybe something like:
Code: 
IF 
  BEGIN
    DECLARE @myPassphrase VARCHAR(10)
    SET @myPassphrase = 'OpenSesame'
    SELECT col1, col2, DecryptByPassphrase(@Passprase, col3, 0)
    FROM mytable
  END
ELSE
  SELECT col1, col2
  FROM mytable

You might have to pull the decrypted values into a temp table and then have that returned in the select. As I said, I don't work with encryption, but this is how I think it might have to work.

It would be a lot of work to set it up on the SQL Server side and I really think it would be easier to set the decryption in the application.

-SQLBill

The following is part of my signature block and is only intended to be informational.
Posting advice: FAQ481-4875
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Auguy
  • Locked
  • Question
Move SQL DB to the Cloud and Access it From a .Net Program
Replies
0
Views
67
Auguy
Auguy
BTrees
  • Locked
  • Question
Implement Encryption in Data Warehousing (ETL)
Replies
0
Views
41
BTrees
BTrees
trisoldee
  • Locked
  • Question
Query multiple DB's on same server for Dynamics GP
Replies
1
Views
93
trisoldee
trisoldee
ms901Boss
  • Locked
  • Question
Converting DB2 query to Microsoft Database
Replies
1
Views
138
fredericofonseca
fredericofonseca
peac3
  • Locked
  • Question
SQL encryption without DMK
Replies
0
Views
36
peac3
peac3

Part and Inventory Search

Sponsor

Back
Top