Roy Ernest Database Administrator Pinnacle Sports Worldwide SQL Server 2008 Transparent Data Encryption.

Slides:



Advertisements
Similar presentations
Roy Ernest Database Administrator Pinnacle Sports Worldwide SQL Server High Availability.
Advertisements

Notes: Update as of 1/13/2010. Vulnerabilities are included for SQL Server 2000, SQL Server 2005, SQL Server Oracle (8i, 9i, 9iR2, 10g, 10gR2,11g),
Database Administration and Security Transparencies 1.
Administering Microsoft SQL Server 2012 Databases.
DESIGNING A PUBLIC KEY INFRASTRUCTURE
Windows XP File System Management Group D. 3 Layers of Drivers Filter Drivers Filter Drivers –Virus protection, compression, encryption File System Drivers.
Gavin Payne Transparent Data Encryption The Hows, Whys and Whens.
Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.
Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.
Dr Alejandra Flores-Mosri Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the.
15 Copyright © 2006, Oracle. All rights reserved. Database Security.
Chapter 13: Electronic Commerce and Information Security Invitation to Computer Science, C++ Version, Fourth Edition SP09: Contains security section (13.4)
Module 7: Restoring Databases. Overview SQL Server Recovery Process Preparing to Restore a Database Restoring Backups Restoring Databases from Different.
1 Chapter Overview Managing Compression Managing Disk Quotas Increasing Security with EFS Using Disk Defragmenter, Check Disk, and Disk Cleanup.
1 Andrew Fryer Technical Evangelist R2 Data Governance for the IT Manager.
Bill Wunder Database Manager Pinnacle Sports Worldwide bon bini a.
File System and Full Volume Encryption Sachin Patel CSE 590TU 3/9/2006.
SQL Server 2008 Implementation and Maintenance Chapter 7: Performing Backups and Restores.
Security & Auditing on SQL Server 2008 R2 Antonios Chatzipavlis Software Architect Evangelist, IT Consultant MCT, MCITP, MCPD, MCSD, MCDBA, MCSA, MCTS,
Module 9 Configuring Server Security Compliance. Module Overview Securing a Windows Infrastructure Overview of EFS Configuring an Audit Policy Overview.
Network Security. An Introduction to Cryptography The encryption model (for a symmetric-key cipher).
© Pearson Education Limited, Chapter 5 Database Administration and Security Transparencies.
ISOM MIS3150 Data and Info Mgmt Database Security Arijit Sengupta.
Maintaining a Microsoft SQL Server 2008 Database SQLServer-Training.com.
Jim McLeod MyDBA  SQL Server Performance Tuning Consultant with MyDBA  Microsoft Certified Trainer with SQLskills Australia 
Cao Tiến Đức. Outline What is TDE How TDE works Basic TDE operations Tablespace encryption HSM Reference.
Configuring Encryption and Advanced Auditing
Chapter 8 Safeguarding the Internet. Firewalls Firewalls: hardware & software that are built using routers, servers and other software A point between.
Additional Security Tools Lesson 15. Skills Matrix.
CYBORG Domain Independent Distributed Database Retrieval System Alok Khemka Kapil Assudani Kedar Fondekar Rahul Nabar.
Course Topics Administering SQL Server 2012 Jump Start 01 | Install and Configure SQL Server04 | Manage Data 02 | Maintain Instances and Databases05 |
1 Securing Data and Communication. 2 Module - Securing Data and Communication ♦ Overview Data and communication over public networks like Internet can.
Roy Ernest Manager of DBA Dept Pinnacle Sports Worldwide
Roy Ernest Database Administrator Pinnacle Sports Worldwide
April 10, Platinum and Gold Partners Data Encryption and Key Management in SQL Said Salomon Database Administrator Unitrin Direct Insurance.
VM Azure Storage Backup to Azure Storage On Premise Data Files in Azure Storage Optionally Managed Microsoft Azure Secondary Primary AlwaysOn.
CSCI 3140 Module 6 – Database Security Theodore Chiasson Dalhousie University.
SharePoint enhancements through SQL Server RSS integration with SharePoint What’s New Elimination of IIS
Deck 10 Accounting Information Systems Romney and Steinbart Linda Batch March 2012.
Roy Ernest Database Administrator Pinnacle Sports Worldwide
Data Confidentiality Oracle Security Do Tri Tuc
Backing Up and Restoring Databases by Using the SQL Server 2000.
Configuring, Managing and Maintaining Windows Server® 2008 Servers Course 6419A.
Module 11: Managing Data Storage. Overview Managing File Compression Configuring File Encryption Configuring EFS Recovery Agents Implementing Disk Quotas.
System Security: Cryptography Technologies CPE Operating Systems
Encryption Name : Maryam Mohammed Alshami ID:H
C Copyright © 2007, Oracle. All rights reserved. Security New Features.
The Encryption Primer Steve Jones Editor SQLServerCentral.
The Spy who loathed me An Introduction to SQL Security.
Ahsay 101.  Software company, based in Hong Kong  Founded in 1999  Sells direct to customers and through partners.
March 7, 2013 SQL Encryption and You By Todd Kleinhans
Over 18 yrs experience with SQL Server
Secure SQL Database with TDE Thomas Chan SQL Saturday Raleigh.
IDS And Tripwire Rayhan Mir COSC 356. What is IDS IDS - Intrusion detection system Primary function – To monitor network or host resources to detect intrusions.
Security Policy and Key Management Centrally Manage Encryption Keys - Oracle TDE, SQL Server TDE and Vormetric. Tina Stewart, Vice President.
SQL Server Encryption Ben Miller Blog:
The Spy who loathed me An Introduction to SQL Security.
AppAssure 101.  Offers full recovery with an RTO of approx 1 hour  Owned by Dell (acquired in 2012)  Sells direct to customers and through partners.
ORACLE's Approach ORALCE uses a proprietary mechanism for security. They user OLS.... ORACLE Labeling Security. They do data confidentiality They do adjudication.
Azure SQL Database Updates
Advanced Backup & Restore
Chapter 5 : Designing Windows Server-Level Security Processes
Common SQL Server Mistakes and How to Avoid Them
A Technical Overview of Microsoft® SQL Server™ 2005 High Availability Beta 2 Matthew Stephen IT Pro Evangelist (SQL Server)
Common Security Mistakes
Designing Database Solutions for SQL Server
Designing Database Solutions for SQL Server
Encryption Not just for the NSA anymore
Secure/Encrypt SQL Server Database With TDE
AWS S3 Cloud Backup Licensing per system Starting at $79 per year.
Presentation transcript:

Roy Ernest Database Administrator Pinnacle Sports Worldwide SQL Server 2008 Transparent Data Encryption

Contents What is Transparent Data Encryption (TDE) How it works How to implement TDE Things to keep in mind After Effects of enabling TDE July 22 nd, 20102Curaçao SQL Server User Group

What is TDE Encryption that protect the physical files performs real-time I/O encryption and decryption of the data and log files. The encryption uses a database encryption key (DEK), which is stored in the database boot record for availability during recovery. The DEK is a symmetric key secured by using a certificate stored in the master database of the server or an asymmetric key protected by an EKM module. July 22 nd Curaçao SQL Server User Group

July 22 nd, 2010Curaçao SQL Server User Group4 How it Works Server starts a background thread that scans all the database files and encrypts them The supported encryption algorithms are AES with 128, 196 and 256 bit keys or 3 key triple DES. The only operations that are not allowed while the encryption thread runs are modifying the file structure and taking the database offline by detaching it. The scan also rolls over the virtual log file so that the future writes to the log are encrypted.

Implementation of TDE Create a master key Create or obtain a certificate protected by master key. Create a database key and protect it by the certificate. Set the database you want to protect to use the encryption. July 22 nd, 20105Curaçao SQL Server User Group

Things that need to be noted. Read Only Filegroups and FileStream Data type Maintenance/Recovery/Warm Standby TempDB Compressed Backups Known Issue with TDE July 22 nd, 20106Curaçao SQL Server User Group

November 26, 20097Curaçao SQL Server User Group

Additional Resources Books Online topics TDE July 22 nd, 2010Curaçao SQL Server User Group8

November 26, 20099Curaçao SQL Server User Group