Could a join of encrypted SQL Server data have a problem?

Special Ops Security

When encrypting SQL tables that have joins in SQL Server 2000, learn about possible problems that may arise with different data values in those tables.

We are in the process of encrypting various pieces of sensitive information in our SQL Server 2000 tables. For many fields, we are using Blowfish 448 encryption and a concern has arisen about inline SQL statements that contain joins in our ASP scripts. Have you run across any scenarios where there's been a problem with a join of encrypted data? Could there ever be an instance where the encrypted field (encrypted by Blowfish) in one table would be different from the field in another table given the same initial string, which upon executing the join would cause the join to fail?

Step 2 of 2:

To be clearer, here is a quick example:

Table A has an encrypted account number column. Table B also has an encrypted account number column (same data). If we have a SQL statement that performs a join on the account number columns in the two tables, is there any possibility that the join will fail because the Blowfish encryption somehow yielded a different value?

From what you have described, it does not appear that there should be any issues with the join. If you are using symmetric encryption with the same key (passphrase), the resultant ciphertext should be identical. It would also help to check with the manufacturer of the encryption tool (I don't know if you're using SQL Server 2005 for this or one of the fine third party encryption products).

This was first published in December 2007

This Content Component encountered an error

PRO+

Content

Find more PRO+ content and other member only offers, here.

E-Handbook

Pricing out the new Windows Azure SQL Database

Related Q&A; from Steven Andres

Code to connect SQL Server 7.0 to Visual Basic 6.0

Get the code to connect SQL Server version 7.0 to Visual Basic 6.0.continue reading

How to set SQL Server password for SA login

Learn how to set a SQL Server password to an SA login and why you can not set this account for access to separate SQL Server databases.continue reading

Creating a login in SQL Server 2000 Enterprise Manager

Find how to create a SQL Server 2000 login account and then set user account rights to specific databases with "db_owner."continue reading

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our SQL Server experts

View all SQL Server questions and answers

SearchBusinessAnalytics

Nate Silver lays out data-driven business strategy

A lack of standards and best practices can hold back businesses from becoming more data-driven, says Nate Silver, founder and ...

HP Vertica users put limits on using Hadoop for analytics

Hadoop is one of the most popular big data technologies. But when it comes to predictive modeling and data visualization, its ...

New business intelligence skills in, BI developers out

Consultant Lee Feinberg says organizations need to build up their data storytelling and visualization capabilities -- and details...

SearchDataCenter

Network bottleneck looms when data center storage improves

The high-IOPS, low-latency potential of SSDs moves bottlenecks to the network. SDN offers provisioning adjustments to avoid any ...

Colocation pricing morphs into cloud pay-per-use model

Cloud computing users have been able to pay just for what they use, but that hasn't been an option for colocation customers -- ...

Is IT service continuity only for the rich?

Technologies like cloud and virtualization mean IT service continuity no longer requires an extra data center or two.

SearchDataManagement

IBM pushes MPP engine to boost cloud database services line

IBM has added massively parallel processing and R language support to its dashDB software -- important steps for a data warehouse...

Swim fast with a Hadoop data lake architecture -- or sink

The Hadoop data lake concept presents plenty of challenges for organizations. But the experiences of early adopters point the way...

How to select the best DBMS software: A buyer's guide

Learn how to evaluate and buy the best DBMS software for your organization.

SearchAWS

Azure or AWS? A cloud database comparison

AWS offers a multitude of database services, but Microsoft Azure has several options worth considering for a savvy multi-cloud ...

Meet the family of AWS EC2 instance types

AWS EC2 instance types offer an array of options for compute power. Get to know the nine types of Elastic Compute Cloud instances...

Making sense of AWS containers, EC2 Container Service

Some enterprises are diving head first into cloud containers, but the technology -- an old form of virtualization brought back ...

SearchOracle

How to make sense of Oracle licenses for VMware environments

Oracle licenses are a tricky subject and Oracle licensing for VMware environments doubly so. Find out about the important ...

Oracle announces its new, lower-cost SPARC processor

At Hot Chips 27, Oracle presented its new, lower-cost SPARC processor, Sonoma, which puts Oracle into competition with Intel x86 ...

Oracle Mobile Cloud will integrate with Xamarin platform

Oracle Mobile Cloud Services will integrate with the Xamarin platform, which lets developers build, test and model mobile ...

SearchContentManagement

Experts highlight potholes in the Office 365 roadmap

Office 365 provides new options for lightweight collaboration, but experts at SPTechCon Boston said some features aren't ready ...

SharePoint 2016 beta is solid, but don't expect fireworks

SharePoint 2016 beta makes some solid improvements for the user experience, but feels more like an update than a major new ...

Are text analytics tools the future of records management?

In recent years, text analytics tools have simplified the time-consuming and onerous work of records management.

SearchWindowsServer

With Azure Key Vault, cloud security no longer up in air

Admins with an Azure subscription can use Azure Key Vault to protect and encrypt keys and data. Here's how to set it up with ...

Control IT access with JEA PowerShell toolkit

Just Enough Administration restricts administrative access to the bare necessities for user tasks, giving organizations more ...

Tips for landing the best Windows administrator jobs

Whether you're looking for the best Windows Server job or have been in your position for years, these five tips will help you ...

E-Handbook

Related Q&A; from Steven Andres

Have a question for an expert?

0 comments

E-Mail

Username / Password

Password

Forgot Password?

Your password has been sent to: