|
Home > Archive > MS SQL Server > November 2006 > implementing cryptographic functionality
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
implementing cryptographic functionality
|
|
| childofthe1980s 2006-11-15, 7:14 pm |
| Hello:
In terms of adding levels of encryption and ultimately allowing for
cryptographic functionality, I want to make sure that I have the general
steps down pat as follows:
(1) create a certificate,
(2) to create a symmetric key, use the ALTER ANY SYMMETRIC KEY permissions
on the parent database,
(3) create a symmetric key,
(4) create a master key used to protect the private keys of certificates
and asymmetric keys that are present in the database,
(5) create two stored procedures that use the certificate to open the
symmetric key; have one of them encrypt the data with the symmetric key and
have the other decrypt the data with the symmetric key, and
(6) create a stored procedure that encrypts the data with the certificate
and create another stored procedure that decrypts the data with the
certificate.
I know that these are general steps and that the scenario here is even more
general. But, are these the correct overall steps in terms of implementing
encryptiuon?
Thanks!
childofthe1980s
| |
| John Bell 2006-11-16, 5:20 am |
| Hi
Check out
http://blogs.msdn.com/lcris/archive.../16/504692.aspx
and http://blogs.msdn.com/lcris/archive.../13/512829.aspx
John
"childofthe1980s" wrote:
> Hello:
>
> In terms of adding levels of encryption and ultimately allowing for
> cryptographic functionality, I want to make sure that I have the general
> steps down pat as follows:
>
> (1) create a certificate,
> (2) to create a symmetric key, use the ALTER ANY SYMMETRIC KEY permissions
> on the parent database,
> (3) create a symmetric key,
> (4) create a master key used to protect the private keys of certificates
> and asymmetric keys that are present in the database,
> (5) create two stored procedures that use the certificate to open the
> symmetric key; have one of them encrypt the data with the symmetric key and
> have the other decrypt the data with the symmetric key, and
> (6) create a stored procedure that encrypts the data with the certificate
> and create another stored procedure that decrypts the data with the
> certificate.
>
> I know that these are general steps and that the scenario here is even more
> general. But, are these the correct overall steps in terms of implementing
> encryptiuon?
>
> Thanks!
>
> childofthe1980s
|
|
|
|
|