October 26, 2017 at 3:14 am
Hi,
I need to integrate data (ETL for a DW) from MySQL (network a) into SQL Server (network b). This is no problem in itself.
The problem I need to solve is that PII data coming over the wires needs to be encrypted. This is going to be incremental data for the past 20 minutes.
We've tried using AES-256 but it seems the implementation of AES is different on each platform.
Different ways of solving this I think :
1. Use a MYSQL function (in network b) to decrypt and then load this to SQL Server
2. Develop a CLR function in SQL Server to decrypt
3. Use a custom SSIS component
4. Find an encryption function that is consistent across both platforms
Ideally I'd prefer option 4 but I don't know if this is possible.
Otherwise, a SSIS component would be the next option.
Has anyone else handled this problem?
Best
October 26, 2017 at 5:51 am
Quick thought, why not use an SSH tunnel with an encrypted target volume for this?
😎
October 26, 2017 at 8:14 am
Do you mean create an SSH tunnel from network b to a and then run the AES_DECRYPT(crypt_str,key_str) in the linked server select?
This will keep the decryption on the MYSQL machine and SSH will protect the data.
I'm no security expert! Will an SSH tunnel provide the same protection as AES256?
Viewing 3 posts - 1 through 2 (of 2 total)
You must be logged in to reply to this topic. Login to reply