Data Engineer and Nerd
I’d previously inherited a legacy SQL environment running SSAS with a handful of multi-dimensional models. The models were actively being used however development on them had ceased a number of years earlier so it was just a case of keeping the lights on. The problem Fast forward to the point we wanted to start winding […]
This post goes out to both the administrators and security folks out there who may be looking after encrypted databases. If you have schedules in place to maintain your certificates for any accounts, web sites, SFTP, etc. then you may want to add the certificates protecting your databases into the mix too. One element of […]
We’ve recently been looking at Transparent Database Encryption and how we go about implementing it an dealing with it in our environments. Now the question comes – what if we need to remove it? Well that’s why we’re here! Decrypting the database We’ll be approaching this in the reverse order to how we applied the […]
We’ve previously looked at how to implement transparent database encryption and then crucially how we can back up the certificate we’re using to apply the encryption. This time we’ll look at how we restore the certificate and a database backup which has been encrypted with Transparent Database Encryption (TDE). When we implement TDE on a […]
Over the last couple of weeks we’ve had an overview of Transparent Database Encryption (TDE) followed by a scripted example of the process. In both of these posts I’d mentioned the importance of backing up the keys and certificates which we’re using for the encryption. In this post we get to looking at this key step in the […]
Last time out we looked at the concepts behind implementing Transparent Database Encryption (TDE) on a SQL Server database. This time we’re going to go through a worked exampled of how to implement this practically so we’ll get into some scripting. For this example I’m using a database named ‘Blog’ on my local instance. First things […]
With SQL Server there are a variety of ways we have available to secure data within the databases, however if an attacker can gain access to the underlying data files we may be vulnerable to having that data interrogated. Similarly when we backup our databases these flat files could also be intercepted and restored elsewhere […]
Once you’ve got a healthy collections of reports hosted in Reporting Services there’s usually a requirement to deliver these out to end users via different methods such as via email, or in our example to a file share. Delivering to a file share requires account credentials which would have permissions to the specified share. We […]
As Deborah’s invitation opens this month she quite rightly points out that there are a lot of professionals out there who have a few (passionate) opinions about what they do or the way they do it. This month we’re invited to … well, have a rant – a rant about those experiences which have shaped […]
Following on from previous posts where we looked at Dynamic Data Masking, how to use it, and the challenges we may encounter, there’s one last area I wanted to touch on. With the arrival of SQL Server 2022 the masking functionality has been extended so we have an additional masking function and more granular permissions […]
Andy Brownsword 