July 19, 2005 at 10:15 am
Hi,
I’ve just started to look into encrypting our databases to bring them into line with new regulations (we offer a credit and debit card payment processing service). The solution must run on SQL 2000 (clustered), with log shipping to a DR server. At the moment I’m not sure whether I'm going to go for encrypting the whole database, or just the sensitive columns. We also may need to be able to audit and control access to particular columns whilst allowing access to the rest of the table.
I would like to minimise any redevelopment, as well as having the usual minimal impact on performance and wallet! I have looked at several different companies who offer off the shelf solutions, (hardware and software) and they all seem to vary widely in cost, is this a “you get what you pay for” situation or are there good and bad deals for the same end result?
I quite like the look (and name!) of the Encryptionizer from Netlib, has anyone used this in production? If so, what do you think of it?
If anyone else has been through this I’d appreciate any advice you could offer.
Cheers
Dave
July 22, 2005 at 8:00 am
This was removed by the editor as SPAM
July 26, 2005 at 12:42 pm
I have not worked with any of the third party products that perform encryption. A couple of thought though ... have you searched this web site for 'encryption' ? I've seen a few good posts about it in the last 3-4 months. Also, dependent on your timeline for implementation you may want to look into SQL 2005. It has encryption built in.
RegardsRudy KomacsarSenior Database Administrator"Ave Caesar! - Morituri te salutamus."
July 27, 2005 at 2:58 am
thanks Rudy.
I've looked at most of the articles here and am currently evaluating a couple of third party options. I thought of SQL 2005, but there are no plans for us to upgrade in the near future (In fact we probably need the encryption in place before November.)
cheers
Dave
Viewing 4 posts - 1 through 3 (of 3 total)
You must be logged in to reply to this topic. Login to reply