May 12, 2010 at 6:27 am
SQL 2005 express sp3 32bit, windows 2003
Good day everyone,
The plan is to let hosting company to manage some sql databases.
However we need to make sure that they will not be able to access data.
What do you think the best approaches would be?
My thoughts are: data (sql server) and backup (third party) encryption.
Even if they have SA level permissions, without decryption keys they shouldn’t be able to read or write to the encrypted tables or database?
Am I right?
Another choice would be to give them access level where they will be able to manage dbs but not see the data.
Any thoughts or suggestions?
May 12, 2010 at 6:36 am
Where are you storing the encryption keys?
Gail Shaw
Microsoft Certified Master: SQL Server, MVP, M.Sc (Comp Sci)
SQL In The Wild: Discussions on DB performance with occasional diversions into recoverability
May 12, 2010 at 6:48 am
i'm thinking... it will be at the hosted site
May 12, 2010 at 6:53 am
Then anyone who has access to the hosted site has access to the keys and hence the data.
If you're using SQL column-level encryption then, unless you're encrypting by password, the keys are stored in the database and sysadmins have full permissions on those keys and hence to the encrypted data.
The only real way to prevent a sysadmin from accessing data is to encrypt it in the app and store the keys somewhere where the sysadmin has no permissions.
Gail Shaw
Microsoft Certified Master: SQL Server, MVP, M.Sc (Comp Sci)
SQL In The Wild: Discussions on DB performance with occasional diversions into recoverability
May 12, 2010 at 6:57 am
Can you please elaborate on appl encryption?
What about permissions that they can do db maintenance only?
Viewing 5 posts - 1 through 4 (of 4 total)
You must be logged in to reply to this topic. Login to reply