In my previous articles on TDE Ive gone through whats TDE and how to configure it. Now here in this article Im going to test whether Im able to restore attach the database without encryption key since the main property of TDE is not to allow to use the physical files of the database without certificate. Ill also brief about how to copy move the database that is encrypted with TDE.
In my previous article we have discussed what is TDE, how it works, its pros and cons. In this article Im going to cover how to implement transparent data encryption to your server. Its very simple to implement TDE, below are the steps that needs to be completed to enable TDE.
- Create a master key
- Create or obtain a certificate protected by the master key
- Create a database encryption key and protect it by the certificate
- Set the database to use encryption
Lets discuss on each of this title to create TDE
Securing each part and datas in a database is now an important task for DBAs to accomplish else the datas might be hacked. Keeping in mind Microsoft has started encryption features from SQL 2005 and its greatly improved its feature in SQL Server 2008. Lets recall the encryption features in previous versions of SQL Server.