December 5, 2011 at 1:27 pm
What is the best encryption type for backup/Restore?
How will you generate the encryption key?
Thanks
December 5, 2011 at 1:46 pm
SQL Server doesn't encrypt backups unless you have TDE enabled and then the key is auto-generated. You do need to back this up.
The native SQL Server backup just uses passwords, which is not very secure.
If you want to encrypt backups only, you need a third party tool, like Red Gate's SQL Backup.
Disclosure: I work for Red Gate.
December 5, 2011 at 1:54 pm
How will u generate the encryption key with third party tools?
Thanks
December 5, 2011 at 3:39 pm
They are generated within the product. In most cases automatically. This varies by product.
CEWII
December 6, 2011 at 1:41 am
Creating master key and creating certificate will encrypt ur data.
December 6, 2011 at 7:58 am
There is a lot more to encryption than creating a Database Master Key and a certificate. You, in general, don't want to encrypt data with a certificate or asymmetrical key because of the overhead. Typically you want to encrypt data with a symmetric key, and protect that with an asymmetric key.
Those keys don't protect a backup, they do encrypt the data in the backup, but you would not usually use them to encrypt all data.
December 6, 2011 at 8:14 am
A master key key and a cert are a step in encrypting SOME of your data. But only a small part which by themselves will not encrypt anything automagically.
When thinking about encryption the first question I ask is who am I trying to protect my self from and what are the attack vectors. Am I concerned about data in motion or data at rest..
In almost no cases would I encrypt an entire database, I might encrypt backups, and I would encrypt specific fields or tables of information.
CEWII
Viewing 7 posts - 1 through 6 (of 6 total)
You must be logged in to reply to this topic. Login to reply