question

ruancra avatar image
ruancra asked

Column (or Row) Level Encryption

Hi all When implementing Column (or Row) Level Encryption, is it possible to store the Master Key, Encryption Certificate and Symmetric Key in a different database or a different server?
securityencryptionmaster-keysymmetric-key
10 |1200 characters needed characters left characters exceeded

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

KenJ avatar image
KenJ answered
You cannot store these keys in a different database or server. They are stored within the database. You can back them up to a different server so you can recover your encrypted data in the event your server becomes unavailable - [ http://msdn.microsoft.com/en-us/library/aa337546.aspx][1] [1]: http://msdn.microsoft.com/en-us/library/aa337546.aspx
10 |1200 characters needed characters left characters exceeded

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

eric_russell avatar image
eric_russell answered
If you specify the same values for the ALGORITHM, KEY_SOURCE, and IDENTITY_VALUE clauses of CREATE SYMMETRIC KEY, the same key can be generated on different databases. http://blogs.msdn.com/b/lcris/archive/2006/07/06/658364.aspx
1 comment
10 |1200 characters needed characters left characters exceeded

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

Thanks Eric, this post was very useful.
0 Likes 0 ·

Write an Answer

Hint: Notify or tag a user in this post by typing @username.

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.