Stronger Security Via Always Encrypted in SQL Server 2016

Kevin Kline

Published On: October 7, 2015

Categories: SQL Server 2016, Best Practices, Security, SQL Server 0

Prior to SQL Server 2016, your main method for encrypting a SQL Server application was to use a feature called Transparent Data Encryption. TDE provides strong encryption, but with some shortcomings. First, you have to encrypt an entire database. No granularity is offered at a lower level, such as encrypting specific tables or certain data within a table. Second, TDE encrypts only data at rest, in files. Data in memory or in-flight between the application and server are unencrypted. Enter Always Encrypted.

READ MORE...

Originally Posted October 07, 2015

Kevin Kline

Kevin (@kekline) serves as Principal Program Manager at SentryOne. He is a founder and former president of PASS and the author of popular IT books like SQL in a Nutshell. Kevin is a renowned database expert, software industry veteran, Microsoft SQL Server MVP, and long-time blogger at SentryOne. As a noted leader in the SQL Server community, Kevin blogs about Microsoft Data Platform features and best practices, SQL Server trends, and professional development for data professionals.


Comments
Fighting Downtime and Slowdowns

Related Posts:

Fun with JSON, SQL Server, and SentryOne (JSON, not Jason)
Latest Builds of SQL Server 2016
Introducing Storage Forecasting with SQL Server Machine Learning Services
Slides & Video - Tales from Building a SQL Server DW in Azure
Slides and Scripts: Baltimore SQL Server User Group