SQL Server and .NET: Implementing Transparent Data Encryption(TDE)

Sunday, August 11, 2019

Implementing Transparent Data Encryption(TDE)

For encrypting database we need to do this few steps:

Create master key on master database :

1	create master key encryption by password = 'testPassword'

Create a server certificate derived from database master key :

1	create certificate test_cert with subject = 'test_cert'

Use our database and create database encryption key by our server certificate:

1 2	create database encryption key with algorithm = AES_256 encryption by server certificate test_cert

Set encryption on on database level:
1
alter database test set encryption on

There are few restrictions and possible problems with encrypted databases :

If you don't backup our master key, certificate and encryption key it will not possible to restore or move our database to another server
Encrypted database have performance overhead

No comments:

Post a Comment

Vadym Ilnytskyi

Core skills :
- .NET 4.5, C#, LINQ, SQL, XML, XAML, Multithreading, COM, Design Patterns, IoC/DI, MVP, MVVM, MVC, GUI design, OOD, OOP, Microservices
Web development:
- ASP.NET MVC 5,Web API 2, ASP.NET Core , JavaScript, JQuery, html 5 & css3, Bootstrap, AngularJS,Selenium,Amazon Services, Azure
Windows development:
- WPF, Windows Forms , Windows App Sore
Phone development:
- Windows Phone 8.1
Databases:
- Ms SQL/T-SQL, Ms Access, Oracle, Sybase, ORM: ADO.NET Entity Framework,NHibernate, Linq to SQL, Sqlite,Entity Framework Core
IDE, Components, Tools:
- Visual Studio 2013-2019, Blend, DevExpress, Telerik
Development methodologies, related tools:
- Agile, SCRUM, UML, TFS,VSS, SVN ,JetBrains YouTrack,Jira, Git