Presentation is loading. Please wait.

Presentation is loading. Please wait.

April 10, 2010. Platinum and Gold Partners Data Encryption and Key Management in SQL Said Salomon Database Administrator Unitrin Direct Insurance.

Published byWilliam French Modified over 9 years ago

Similar presentations

Presentation on theme: "April 10, 2010. Platinum and Gold Partners Data Encryption and Key Management in SQL Said Salomon Database Administrator Unitrin Direct Insurance."— Presentation transcript:

1 April 10, 2010

2 Platinum and Gold Partners

3 Data Encryption and Key Management in SQL Said Salomon Database Administrator Unitrin Direct Insurance

4 Who am I?  I has over 25 year experience as an Information Technology Professional. He has a vast array of abilities in the field in the areas of Network, Desktop Support, DBA, Staff Project Management, Application Software Development, Business Analysis and Quality Assurance. I have Microsoft certifications as a MCTS, MCPS, and MCNPS, and multiple certifications from the Insurance Institute of America. Current Said is a DBA at Unitrin Direct Insurance.

5 SQL Key Management Overview

6 2008 Key Management Overview

7 Service Master Key  One per server instance  Backup  Restore  Alter  Is automatically generated when needed  There is not create command for Service Master Key

8 Database Master Key  One per database  Is encrypted by the server master key and the password used when created.

9 Certificate  Can have as many as need  Is encrypted by the database master key as well as the password use on the certificate

10 Asymmetric key  Why?  Public key  Private key  No backup  Poor performance (100 x)

11 Symmetric key  Can have as many as needed  Is encrypted by the Certificate or Asymmetric key or Symmetric key or password  Algorithms DES | TRIPLE_DES | TRIPLE_DES_3KEY | RC2 | RC4 | RC4_128 | DESX | AES_128 | AES_192 | AES_256  No Backup

12 Symmetric Functions  EncryptByKey  DecryptByKey  EncryptByPassPhrase  DecryptByPassPhrase  Key_ID  Key_GUID

13 Asymmetric Functions  EncryptByAsmKey  DecryptByAsmKey  EncryptByCert  DecryptByCert  Cert_ID  AsymKey_ID  CertProperty

14 SQL Encryption Step-by-Step

15 Backup Service Master Key  BACKUP SERVICE MASTER KEY TO FILE = 'path_to_file' ENCRYPTION BY PASSWORD = 'password'

16 Restore Service Master Key  RESTORE SERVICE MASTER KEY FROM FILE = 'path_to_file' DECRYPTION BY PASSWORD = 'password' [FORCE]

17 Create (Database) Master Key  CREATE MASTER KEY ENCRYPTION BY PASSWORD = 'password'

18 Backup (Database) Master Key  BACKUP MASTER KEY TO FILE = 'path_to_file' ENCRYPTION BY PASSWORD = 'password'

19 Restore (Database) Master Key  RESTORE MASTER KEY FROM FILE = 'path_to_file' DECRYPTION BY PASSWORD = 'password' ENCRYPTION BY PASSWORD = 'password' [ FORCE ]

20 Sharing a symmetric key  CREATE SYMMETRIC KEY test_aes128_key WITH KEY_SOURCE = 'I am the very model of a modern major general', IDENTITY_VALUE = 'E pluribus unum', ALGORITHM = AES_128 ENCRYPTION BY PASSWORD = 'p@$$w0rd';'p@$$w0rd'

21 Transparent Data Encryption (2008 only)

22 Please complete the online evaluation form

23 Resources  SQL 2005 Symmetric Encryption By Michael Coles http://bit.ly/bFQsrohttp://bit.ly/bFQsro  My web site http://www.timelordshangout.com http://www.timelordshangout.com  My Twitter SaidSalomon

Download ppt "April 10, 2010. Platinum and Gold Partners Data Encryption and Key Management in SQL Said Salomon Database Administrator Unitrin Direct Insurance."

Similar presentations

Invoice Management Software Developed by Morbadevi Softwares Morbadevi Softwares®2014, All Rights Reserved.

Invoice Management Software Developed by Morbadevi Softwares Morbadevi Softwares®2014, All Rights Reserved.
Conventional Encryption: Algorithms

Conventional Encryption: Algorithms
Enkripsi dan Dekripsi Data

Enkripsi dan Dekripsi Data
II.I Selected Database Issues: 1 - SecuritySlide 1/20 II. Selected Database Issues Part 1: Security Lecture 2 Lecturer: Chris Clack 3C13/D6.

II.I Selected Database Issues: 1 - SecuritySlide 1/20 II. Selected Database Issues Part 1: Security Lecture 2 Lecturer: Chris Clack 3C13/D6.
Oracle Database Security

Oracle Database Security
Said Salomon Unitrin Direct Insurance T-SQL Aggregate Functions Said Salomon.

Said Salomon Unitrin Direct Insurance T-SQL Aggregate Functions Said Salomon.
Security Security is critical in the storage and transmission of information loss of information can not only cause problems to the organisation but can.

Security Security is critical in the storage and transmission of information loss of information can not only cause problems to the organisation but can.
15 Copyright © 2006, Oracle. All rights reserved. Database Security.

15 Copyright © 2006, Oracle. All rights reserved. Database Security.
Chapter 19 Security.

Chapter 19 Security.
Managing the Data SQL Overview. Client\Server RDMS (relational database management system) Client\Server RDMS (relational database management system)

Managing the Data SQL Overview. Client\Server RDMS (relational database management system) Client\Server RDMS (relational database management system)
An Encryption Primer Steve Jones Editor in Chief SQLServerCentral.

An Encryption Primer Steve Jones Editor in Chief SQLServerCentral.
TrustPort Public Key Infrastructure. WWW.TRUSTPORT.COM Keep It Secure Table of contents  Security of electronic communications  Using asymmetric cryptography.

TrustPort Public Key Infrastructure. Keep It Secure Table of contents  Security of electronic communications  Using asymmetric cryptography.
STANFORD UNIVERSITY INFORMATION TECHNOLOGY SERVICES Windows Encryption File System (EFS) Tech Briefing July 18 th 2008

STANFORD UNIVERSITY INFORMATION TECHNOLOGY SERVICES Windows Encryption File System (EFS) Tech Briefing July 18 th 2008
What is Encryption? - The translation of data into a secret code - To read an encrypted file, you must have access to a secret key or password that enables.

What is Encryption? - The translation of data into a secret code - To read an encrypted file, you must have access to a secret key or password that enables.
MCTS: Pass one of 24 exams (a few require more). Multiple counters are 70-506 70-511 70-513 70-516 70-573 70-662 70- 667 and 70-680. You can also choose.

MCTS: Pass one of 24 exams (a few require more). Multiple counters are and You can also choose.
Database Key Management CSCI 5857: Encoding and Encryption.

Database Key Management CSCI 5857: Encoding and Encryption.
Module 9 Configuring Server Security Compliance. Module Overview Securing a Windows Infrastructure Overview of EFS Configuring an Audit Policy Overview.

Module 9 Configuring Server Security Compliance. Module Overview Securing a Windows Infrastructure Overview of EFS Configuring an Audit Policy Overview.
.Net Security and Performance -has security slowed down the application By Krishnan Ganesh Madras.

.Net Security and Performance -has security slowed down the application By Krishnan Ganesh Madras.
Jim McLeod MyDBA  SQL Server Performance Tuning Consultant with MyDBA  Microsoft Certified Trainer with SQLskills Australia 

Jim McLeod MyDBA  SQL Server Performance Tuning Consultant with MyDBA  Microsoft Certified Trainer with SQLskills Australia 
Said Salomon  I has over 25 year experience as an Information Technology Professional. He has a vast array of abilities.

Said Salomon  I has over 25 year experience as an Information Technology Professional. He has a vast array of abilities.

Similar presentations

Ads by Google