current community

your communities

more stack exchange communities

Stack Exchange
tour help
careers 2.0
Take the 2-minute tour ×
Stack Overflow is a question and answer site for professional and enthusiast programmers. It's 100% free, no registration required.
up vote 0 down vote favorite

I have a database which currently is using by my application. I dodn't want to change anything in my application CORE. But I want to encrypt DATA and INFORMATION in which stored or is storing in database.

SQL Server 2008 (or 2008 R2) should have an internal mechanism to encrypt and decrypt information which given and taken to application.

How to get it to work? Encryption is needed for all of the fields in Database, numerics, strings, booleans, datetimes, etc.

Any help is appriciated

share|improve this question
    
@Ehsan This case is different: In my scenario, DBA is able to see & work with Table but the data is encrypted just like password fields, no one can understand what's the meaning of them. DBA also can remove, add or edit any structures (DON'T forget that these are DBAs job). I just want to encrypt Information inside tables –  Nasser Hadjloo Jan 12 '12 at 9:34
add comment

3 Answers

up vote 1 down vote

If you want cell level Encryption you should do it yourself (using Triggers or any other wayes) if you want Encrypt Database file you can use Transparent Data Encryption (TDE)

share|improve this answer
    
+1 for encrypting Database file even though I didn't meant that. –  Nasser Hadjloo Jan 12 '12 at 9:00
add comment
up vote 1 down vote

SQL 2008 has TDE or, Total Database Encryption. This encrypts the entire database and is transparent to any users of the database. The details of how to go about it can be found in these two Microsoft articles:

http://msdn.microsoft.com/en-us/library/cc278098%28v=sql.100%29.aspx

http://msdn.microsoft.com/en-us/library/bb934049.aspx

share|improve this answer
    
+1 Isn't encryption available in Express editions..? –  shashwat Jun 27 '13 at 17:07
add comment
up vote 0 down vote

You may substitute your real table with a VIEW add INSTEAD OF INSERT and INSTEAD OF UPDATE triggers, create several User Defined Functions. You'd probably need to modify your application slightly.

Instead of that, consider using encryption on file level with schema protection. Such tools like DbDefence available in free edition for small databases and very moderate price for mid-size databases.

share|improve this answer
add comment

Your Answer

 
discard

By posting your answer, you agree to the privacy policy and terms of service.

Not the answer you're looking for? Browse other questions tagged or ask your own question.