Presentation is loading. Please wait.

Presentation is loading. Please wait.

Hacking Exposé Using SSL to Protect SQL Connections.

Published byAndrea Thornton Modified over 8 years ago

Similar presentations

Presentation on theme: "Hacking Exposé Using SSL to Protect SQL Connections."— Presentation transcript:

1 Hacking Exposé Using SSL to Protect SQL Connections

2 Who Am I? WaterOx Consulting SQL Server MVP Friend of Redgate PASSDC SQL Saturday DC & Nova Scotia SQL Summer Camp

3 WaterOxConsulting.com Concierge DBA® Services Customized SQL Training Sp_WOxCompliant

4 What is Hacking?

5 How safe is your data? Hacking / Cracking Modifying computer hardware or software Accomplish goals outside of original purpose Measures taken to protect your data Primarily at rest In motion over the network Not always the case

6 Easy to get tools RawCap Command line tool Run from USB Captures packets into a file for reference later WireShark GUI Captures packets as well Reads other capture files Lots of others out there

7 DEMO

8 What to do?

9 SSL Definition Secure Socket Layer Standard security technology Provide communication security over network Encrypts data flowing between parties Primarily prevent eavesdropping and tampering

10 How SSL Works 1.Client attempts to connect to server 2.Server send client copy of certificate 3.Client confirms trust 4.Server sends back acknowledgement to start SSL Session 5.Encrypted data shared between client and server

11 Lockdown

12 Secure Your SQL Server Connection 1.Create / Obtain SSL Certificate 2.Grant permissions to use certificate 3.Enable SSL in SQL Server 4.Connect

13 DEMO

14 No single solution Data in motion SSL – encrypt connections File encryption tools Data at rest TDE Column level encryption

15 Gotchas SSL 3.0 is no longer good enough Need to consider TLS instead TLS needs the first name on the certificate to be the SQL Server SQL Azure is protected SQL on an Azure VM, is not Need to treat like physical server Force Encryption does not need a certificate

16 Review By default connections are not encrypted Need to setup SSL (self signed minimum) Requires restart Encrypts data being transmitted No one solution Protect data in transit Protect data at rest Separation of duties

17 Cont act @CBellDBA Chris@WaterOxConsulting.com WaterOxConsulting.com Session Eval LinkEvent Eval Link

Download ppt "Hacking Exposé Using SSL to Protect SQL Connections."

Similar presentations

Internet Protocol Security (IP Sec)

Internet Protocol Security (IP Sec)
Transfer Content to a Website What is FTP? File Transfer Protocol FTP is a protocol – a set of rules Designed to allow files to be transferred across.

Transfer Content to a Website What is FTP? File Transfer Protocol FTP is a protocol – a set of rules Designed to allow files to be transferred across.
Security Protocols Sathish Vadhiyar Sources / Credits: Kerberos web pages and documents contained / pointed.

Security Protocols Sathish Vadhiyar Sources / Credits: Kerberos web pages and documents contained / pointed.
Chapter 1: Fundamentals of Security JV Note: Images may not be relevant to information on slide.

Chapter 1: Fundamentals of Security JV Note: Images may not be relevant to information on slide.
Security by Design A Prequel for COMPSCI 702. Perspective “Any fool can know. The point is to understand.” - Albert Einstein “Sometimes it's not enough.

Security by Design A Prequel for COMPSCI 702. Perspective “Any fool can know. The point is to understand.” - Albert Einstein “Sometimes it's not enough.
Cryptography and Network Security

Cryptography and Network Security
SSL CS772 Fall 2011. Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.

SSL CS772 Fall Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.
Module 5: TLS and SSL 1. Overview Transport Layer Security Overview Secure Socket Layer Overview SSL Termination SSL in the Hosted Environment Load Balanced.

Module 5: TLS and SSL 1. Overview Transport Layer Security Overview Secure Socket Layer Overview SSL Termination SSL in the Hosted Environment Load Balanced.
Encryption, SSL and Certificates BY JOSHUA COX AND RACHAEL MEAD.

Encryption, SSL and Certificates BY JOSHUA COX AND RACHAEL MEAD.
Session Hijacking Why web security depends on communications security and how TLS everywhere is the only solution. Scott Helme - 6th Aug 2013 - scotthel.me.

Session Hijacking Why web security depends on communications security and how TLS everywhere is the only solution. Scott Helme - 6th Aug scotthel.me.
1 Supplement III: Security Controls What security services should network systems provide? Confidentiality Access Control Integrity Non-repudiation Authentication.

1 Supplement III: Security Controls What security services should network systems provide? Confidentiality Access Control Integrity Non-repudiation Authentication.
Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.

Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.
Database Encryption. Encryption: overview Encrypting Data-in-transit As it is transmitted between client-server Encrypting Data-at-rest Storing data in.

Database Encryption. Encryption: overview Encrypting Data-in-transit As it is transmitted between client-server Encrypting Data-at-rest Storing data in.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 13: Planning Server and Network Security.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 13: Planning Server and Network Security.
1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.

1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.
LAB#2 JAVA SECURITY OVERVIEW Prepared by: I.Raniah Alghamdi.

LAB#2 JAVA SECURITY OVERVIEW Prepared by: I.Raniah Alghamdi.
Cryptography and Network Security Chapter 17

Cryptography and Network Security Chapter 17
K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.

K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.
Securing Data Storage Protecting Data at Rest Advanced Systems Group Dell Computer Asia Ltd.

Securing Data Storage Protecting Data at Rest Advanced Systems Group Dell Computer Asia Ltd.
Chapter 8 Web Security.

Chapter 8 Web Security.

Similar presentations

Ads by Google