Encryption Not Restriction

  • Comments posted to this topic are about the item Encryption Not Restriction

  • Hi Steve,

    thanks for your thoughts on encryption, like you I think it is to much ignored in our business.

    I would like to ask a further question about encryption. Perhaps you can help, because I have resigned 🙁

    Do you know where I can get information about the EKM api? I would like to integrate our pki-smartcards in the database security/encryption.

    And the only way, as I see it, is to write an own EMK Server DLL to connect to the client where the smartcard is.

    Help would be greatly appreciated

    Sarus

  • No idea, but I'll ask around.

  • Encryption is a key requirement to make cloud computing viable for serious business use at all.

    The comment about control of encryption keys is spot on.

    Control of the keys is the difference between a guest and a hostage.

  • I am not sure that I would entrust the safekeeping and storage of the only thing that can decrypt my production databases in case of emergency, to my end-user community. I am not saying that I am against the idea altogether, but knowing most of my users the way I do, I would be definitely a little nervous about it. That's just me though I guess. 😀

    "Technology is a weird thing. It brings you great gifts with one hand, and it stabs you in the back with the other. ...:-D"

  • Sarus1984 (1/22/2013)


    Hi Steve,

    thanks for your thoughts on encryption, like you I think it is to much ignored in our business.

    I would like to ask a further question about encryption. Perhaps you can help, because I have resigned 🙁

    Do you know where I can get information about the EKM api? I would like to integrate our pki-smartcards in the database security/encryption.

    And the only way, as I see it, is to write an own EMK Server DLL to connect to the client where the smartcard is.

    Help would be greatly appreciated

    Sarus

    http://social.msdn.microsoft.com/Forums/en-US/sqlsecurity/thread/f36ba8b7-ceec-4bdd-8c84-8878e11194e3/#0f2c9a16-6d62-445a-931e-ffe0b0081dfc

  • Wow read the article and it seems MASSIVELY naive. I find it absolutely understandable that the gov't wouldn't want it's data stored in an unfriendly country. I would think it is many times easier to break encryption when your data is sitting on a server that's been incorporated into the state security system. While storing the data in country is no sure thing it sure seems it is a sure thing that the data will be cracked stored somewhere else. Better to be paranoid than burned (or better to prepare for the worst and hope for the best).

  • John Hanrahan (1/22/2013)


    Wow read the article and it seems MASSIVELY naive. I find it absolutely understandable that the gov't wouldn't want it's data stored in an unfriendly country. I would think it is many times easier to break encryption when your data is sitting on a server that's been incorporated into the state security system. While storing the data in country is no sure thing it sure seems it is a sure thing that the data will be cracked stored somewhere else. Better to be paranoid than burned (or better to prepare for the worst and hope for the best).

    Not all data is a candidate for the cloud! That which is should go, should go there. That which should not, should stay home. All should be encrypted.

    🙂

    M.

    Not all gray hairs are Dinosaurs!

  • Hi Steve,

    I know this post and I never got an response to my mail at this address - as I said, I'm totally stuck

    But thanks for your try!

    Sarus

  • Sarus1984 (1/23/2013)


    Hi Steve,

    I know this post and I never got an response to my mail at this address - as I said, I'm totally stuck

    But thanks for your try!

    Sarus

    Sorry, I have a couple other things I'll PM you.

Viewing 10 posts - 1 through 9 (of 9 total)

You must be logged in to reply to this topic. Login to reply