Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
prabhash
Starting Member
1 Post |
 Posted - 2004-07-09 : 02:01:04
|
I was looking for a security in SQL Database. What I want is No other than our program can view the data in any case. All the Data should be encrypted and when our program passes a request then the data should be back in the decrypted format. I don't want to modify the existing interface of my application.  I was looking something which can be injected in between the communication process going on between my application and sql server. |
|
|
Wanderer
Master Smack Fu Yak Hacker
1168 Posts |
Posted - 2004-07-09 : 03:40:25
|
| no other program has access:User rights- grant rights to the database only the specific userid that is used by your application. You might even want to go so far as put it on its own instance.data should be passed back in a decrypted format:Use only SP's to access the data. have all your insert,updates encrypt the data received. Have all your select's decrypt the data.I was looking something which can be injected in between the communication process going on between my application and sql server:don't *think* I've ever heard of anything doing that. I've heard of having the network communication encrypted as a seperate activity.CiaO*##* *##* *##* *##* Chaos, Disorder and Panic ... my work is done here! |
 |
|
|
|
|
|
Database Security