JM
Uploaded byJohn Magnabosco
3,191 views

Transparent Data Encryption

This document is an introduction to Transparent Data Encryption (TDE) presented by John Magnabosco. TDE encrypts the physical files of a SQL Server database without requiring changes to the database schema. It uses keys stored in the master database to encrypt the database encryption key that is used to encrypt each database. The presentation covers what TDE is, how its key architecture works, how to implement and backup/restore TDE encrypted databases, and some additional details on TDE functionality.

Embed presentation

A n I n t r o d u c t i o n To Presented By John Magnabosco Database Consultant/Solution Architect – SolutionAvenue President/Co-Founder - Indianapolis Professional Association for SQL Server Coordinator/Co-Founder – IndyTechFest E-Mail: john_magnabosco@live.com
Today’s Presentation 1. What is TDE? 2. Key Architecture of TDE 3. How to Implement TDE 4. Backup Considerations with TDE 5. Restore with TDE 6. Interesting Tid-Bits of TDE An Introduction To
What is Transparent Data Encryption (TDE)? • A new feature of SQL Server 2008 Enterprise Edition • Encrypts of physical files of a database • Designed to protect “data at rest” • Does not require explicit opening/closing of keys • No schema modifications required to implement An Introduction To
Plain Text In The Backup File An Introduction To
Key Architecture of TDE SQL Server Instance Master Database User Database Service Master Key Database Master Key Database Encryption Key Certificate Physical Database Files An Introduction To
How To Implement TDE • Backup the unencrypted user database • Create a Database Master Key in the Master database • Create a Certificate in the Master database • Create a Database Encryption Key in the user database • Set Encryption to ON in the user database • Backup Keys, Certificate and user database An Introduction To
How To Implement TDE Demonstration… An Introduction To
An Introduction To
Backup of TDE Databases • Backup user database • Backup Service Master Key • Backup Database Master Key in Master database • Backup Certificate in Master database • Database Encryption Key is backed up with database • Store backup of db and keys in separate locations An Introduction To
Restore of TDE Databases • Restore Service Master Key if needed • Restore Database Master Key in Master database • Alter DMK’s “Encrypted By” to Service Master Key • Restore Certificate in Master database • Restore the user database An Introduction To
Backup and Restore of TDE Database Demonstration… An Introduction To
Interesting Tid-Bits • TempDB is also encrypted • Transaction log is advanced to next virtual log • TDE must be enabled on the publisher and subscriber • Compression is not recommended with TDE • Full-Text Indexes not recommended with TDE • Both databases used in mirroring will be encrypted An Introduction To
In Summary • TDE encrypts physical files of a database • Designed to protect “data at rest” • The Database Encryption Key is used with TDE • Implementation includes the MASTER database • Backup the keys separately from the database(s) • TempDB is encrypted with TDE is implemented An Introduction To
Transparent Data Encryption Questions… An Introduction To
Additional TDE Resources: MSDN: Understanding TDE (Article) http://msdn.microsoft.com/en-us/library/bb934049.aspx My Blog: Check out my series on TDE http://www.simple-talk.com/community/blogs/johnm/default.aspx Additional General Encryption Resources: MSDN: SQL Server Encryption http://msdn.microsoft.com/en-us/library/bb510663.aspx Have More Questions? My E-Mail: john_magnabosco@live.com An Introduction To

More Related Content

PPTX
NOSQL vs SQL
byMohammed Fazuluddin
 
PPTX
Building an Effective Data Warehouse Architecture
byJames Serra
 
PPT
Oracle Transparent Data Encryption (TDE) 12c
byNabeel Yoosuf
 
PDF
NoSQL databases
byMarin Dimitrov
 
ZIP
NoSQL databases
byHarri Kauhanen
 
PPT
Database performance tuning and query optimization
byUsman Tariq
 
PDF
しばちょう先生による特別講義! RMANバックアップの運用と高速化チューニング
byオラクルエンジニア通信
 
PDF
Introduction to MongoDB
byMike Dirolf
 
NOSQL vs SQL
byMohammed Fazuluddin
 
Building an Effective Data Warehouse Architecture
byJames Serra
 
Oracle Transparent Data Encryption (TDE) 12c
byNabeel Yoosuf
 
NoSQL databases
byMarin Dimitrov
 
NoSQL databases
byHarri Kauhanen
 
Database performance tuning and query optimization
byUsman Tariq
 
しばちょう先生による特別講義! RMANバックアップの運用と高速化チューニング
byオラクルエンジニア通信
 
Introduction to MongoDB
byMike Dirolf
 

What's hot

PPTX
Data platform modernization with Databricks.pptx
byCalvinSim10
 
PDF
Building Lakehouses on Delta Lake with SQL Analytics Primer
byDatabricks
 
PPTX
NOSQL Databases types and Uses
bySuvradeep Rudra
 
PPTX
Introduction to NoSQL
byPolarSeven Pty Ltd
 
PDF
Introduction to column oriented databases
byArangoDB Database
 
PPTX
Sql vs NoSQL
byRTigger
 
PPT
Introduction to MongoDB
byRavi Teja
 
PDF
Data Warehouse or Data Lake, Which Do I Choose?
byDATAVERSITY
 
PPTX
An Introduction To NoSQL & MongoDB
byLee Theobald
 
PPT
Présentation data vault et bi v20120508
byEmpowered Holdings, LLC
 
PPTX
Nosql databases
byateeq ateeq
 
PPT
MDM Strategy & Roadmap
byvictorlbrown
 
PDF
Getting Data Quality Right
byDATAVERSITY
 
PPTX
ETL
byMallikarjuna G D
 
PPTX
Data Vault Overview
byEmpowered Holdings, LLC
 
PPTX
Big data architectures and the data lake
byJames Serra
 
PPTX
Database basics
byprachin514
 
PDF
Owning Your Own (Data) Lake House
byData Con LA
 
PPTX
Introduction to MongoDB
byMongoDB
 
PPTX
Introduction to NoSQL Databases
byDerek Stainer
 
Data platform modernization with Databricks.pptx
byCalvinSim10
 
Building Lakehouses on Delta Lake with SQL Analytics Primer
byDatabricks
 
NOSQL Databases types and Uses
bySuvradeep Rudra
 
Introduction to NoSQL
byPolarSeven Pty Ltd
 
Introduction to column oriented databases
byArangoDB Database
 
Sql vs NoSQL
byRTigger
 
Introduction to MongoDB
byRavi Teja
 
Data Warehouse or Data Lake, Which Do I Choose?
byDATAVERSITY
 
An Introduction To NoSQL & MongoDB
byLee Theobald
 
Présentation data vault et bi v20120508
byEmpowered Holdings, LLC
 
Nosql databases
byateeq ateeq
 
MDM Strategy & Roadmap
byvictorlbrown
 
Getting Data Quality Right
byDATAVERSITY
 
ETL
byMallikarjuna G D
 
Data Vault Overview
byEmpowered Holdings, LLC
 
Big data architectures and the data lake
byJames Serra
 
Database basics
byprachin514
 
Owning Your Own (Data) Lake House
byData Con LA
 
Introduction to MongoDB
byMongoDB
 
Introduction to NoSQL Databases
byDerek Stainer
 

Similar to Transparent Data Encryption

PDF
Sql Server 2008 Security Enhanments
byEduardo Castro
 
PPTX
Protecting Your SharePoint Content Databases using SQL Transparent Data Encry...
byMichael Noel
 
PPTX
Transparent Data Encryption for SharePoint Content Databases
byMichael Noel
 
PDF
About Oracle TDE (Transparent Data Encryption)
byijtsrd
 
PDF
Oracle advance security transparent data encryption best practices
byFITSFSd
 
PPTX
Ict conf td-evs_pcidss-final
byDejan Jeremic
 
PPTX
Column Level Encryption in Microsoft SQL Server
byBehnam Mohammadi
 
PDF
columnarlevelencryption-161229175937 (2).pdf
byMelvin739799
 
PDF
Organizational compliance and security SQL 2012-2019 by George Walters
byGeorge Walters
 
PPTX
Presentation
bySantosh Kumar
 
PDF
Ppt security-database-overview-11g r2
byOracle BH
 
PDF
SafeNet DataSecure vs. Native SQL Server Encryption
bySafeNet
 
PDF
Geek Sync | Always Encrypted for Beginners
byIDERA Software
 
PPTX
Securing your data with Azure SQL DB
byMicrosoft Tech Community
 
PDF
Choosing Encryption for Microsoft SQL Server
byJerome J. Penna
 
PPT
SQL Server Encryption - Adi Cohn
bysqlserver.co.il
 
PPTX
A Designer's Favourite Security and Privacy Features in SQL Server and Azure ...
byKaren Lopez
 
PDF
Organizational compliance and security in Microsoft SQL 2012-2016
byGeorge Walters
 
PPT
SQL Server 2008 Security Overview
byukdpe
 
PPTX
2° Ciclo Microsoft CRUI 3° Sessione: l'evoluzione delle piattaforme tecnologi...
byJürgen Ambrosi
 
Sql Server 2008 Security Enhanments
byEduardo Castro
 
Protecting Your SharePoint Content Databases using SQL Transparent Data Encry...
byMichael Noel
 
Transparent Data Encryption for SharePoint Content Databases
byMichael Noel
 
About Oracle TDE (Transparent Data Encryption)
byijtsrd
 
Oracle advance security transparent data encryption best practices
byFITSFSd
 
Ict conf td-evs_pcidss-final
byDejan Jeremic
 
Column Level Encryption in Microsoft SQL Server
byBehnam Mohammadi
 
columnarlevelencryption-161229175937 (2).pdf
byMelvin739799
 
Organizational compliance and security SQL 2012-2019 by George Walters
byGeorge Walters
 
Presentation
bySantosh Kumar
 
Ppt security-database-overview-11g r2
byOracle BH
 
SafeNet DataSecure vs. Native SQL Server Encryption
bySafeNet
 
Geek Sync | Always Encrypted for Beginners
byIDERA Software
 
Securing your data with Azure SQL DB
byMicrosoft Tech Community
 
Choosing Encryption for Microsoft SQL Server
byJerome J. Penna
 
SQL Server Encryption - Adi Cohn
bysqlserver.co.il
 
A Designer's Favourite Security and Privacy Features in SQL Server and Azure ...
byKaren Lopez
 
Organizational compliance and security in Microsoft SQL 2012-2016
byGeorge Walters
 
SQL Server 2008 Security Overview
byukdpe
 
2° Ciclo Microsoft CRUI 3° Sessione: l'evoluzione delle piattaforme tecnologi...
byJürgen Ambrosi
 

Recently uploaded

PDF
Kubernetes Cloud Native Indonesia Meetup - January 2026
byPrasta Maha
 
PDF
Taxonomy Alignment for SDG Tagging - ASHA Case Study
byEnterprise Knowledge
 
PDF
B2SMB SaaS Philosophy Lab: Simplicity vs Options
byAnton Shulke
 
PDF
Computer-Based Training (CBT) The Backbone of Modern Technical & Defence Trai...
bycomputerbasedtrainin1
 
PPTX
6G and Non-Terrestrial Networks (NTN) Testing.pptx
byXRComm
 
PDF
2026_01_28 - OpenMetadata Community Meeting.pdf
byOpenMetadata
 
PDF
Peculiar Findings Around CEX Activity and ETH Price
bytobbymnbvcxz
 
PDF
Real-Time AI at Scale Masterclass: Feature Store at Scale
byScyllaDB
 
PDF
React Mastery: Visual Mental Models to Understand React Deeply
byThomas Gaye
 
PDF
TrustArc Webinar - From Zero to Privacy Hero: Launching Your Program Right an...
byTrustArc
 
PDF
Agentic AI Roadmap 2026: Mastering Autonomous AI Workflows and Systems
byAeafat Ahmed Mubin
 
PDF
"When every team does things "right", but together it turns into chaos", Yozh...
byFwdays
 
PPTX
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
PPTX
The Lex Wire Precedent: A Technical Standard for Machine-Mediated Authority ...
byJeff Howell
 
PPTX
Jisc Equipment Data Service Update Workshop 3 December 2025
byJisc
 
PPTX
Code Like Bro -A guide for better Coding
byMadan Panthi
 
PDF
Skills to Pass the UiPath Agentic Automation Associate (UiAAA) Certification
byUiPathCommunity
 
PDF
Build Next-Gen Spatial & Sensor Workflows: Secure, Scalable Processing in Sno...
bySafe Software
 
PDF
Enterprise Data Services_ A Development Guide with Use Cases, Trends and Impl...
by2601harsh23
 
PPTX
API Gateway Architecture - Technical Report 2026
byPowersoft2026
 
Kubernetes Cloud Native Indonesia Meetup - January 2026
byPrasta Maha
 
Taxonomy Alignment for SDG Tagging - ASHA Case Study
byEnterprise Knowledge
 
B2SMB SaaS Philosophy Lab: Simplicity vs Options
byAnton Shulke
 
Computer-Based Training (CBT) The Backbone of Modern Technical & Defence Trai...
bycomputerbasedtrainin1
 
6G and Non-Terrestrial Networks (NTN) Testing.pptx
byXRComm
 
2026_01_28 - OpenMetadata Community Meeting.pdf
byOpenMetadata
 
Peculiar Findings Around CEX Activity and ETH Price
bytobbymnbvcxz
 
Real-Time AI at Scale Masterclass: Feature Store at Scale
byScyllaDB
 
React Mastery: Visual Mental Models to Understand React Deeply
byThomas Gaye
 
TrustArc Webinar - From Zero to Privacy Hero: Launching Your Program Right an...
byTrustArc
 
Agentic AI Roadmap 2026: Mastering Autonomous AI Workflows and Systems
byAeafat Ahmed Mubin
 
"When every team does things "right", but together it turns into chaos", Yozh...
byFwdays
 
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
The Lex Wire Precedent: A Technical Standard for Machine-Mediated Authority ...
byJeff Howell
 
Jisc Equipment Data Service Update Workshop 3 December 2025
byJisc
 
Code Like Bro -A guide for better Coding
byMadan Panthi
 
Skills to Pass the UiPath Agentic Automation Associate (UiAAA) Certification
byUiPathCommunity
 
Build Next-Gen Spatial & Sensor Workflows: Secure, Scalable Processing in Sno...
bySafe Software
 
Enterprise Data Services_ A Development Guide with Use Cases, Trends and Impl...
by2601harsh23
 
API Gateway Architecture - Technical Report 2026
byPowersoft2026
 

Transparent Data Encryption

  • 1.
    A n In t r o d u c t i o n To Presented By John Magnabosco Database Consultant/Solution Architect – SolutionAvenue President/Co-Founder - Indianapolis Professional Association for SQL Server Coordinator/Co-Founder – IndyTechFest E-Mail: john_magnabosco@live.com
  • 2.
    Today’s Presentation 1. What is TDE? 2. Key Architecture of TDE 3. How to Implement TDE 4. Backup Considerations with TDE 5. Restore with TDE 6. Interesting Tid-Bits of TDE An Introduction To
  • 3.
    What is TransparentData Encryption (TDE)? • A new feature of SQL Server 2008 Enterprise Edition • Encrypts of physical files of a database • Designed to protect “data at rest” • Does not require explicit opening/closing of keys • No schema modifications required to implement An Introduction To
  • 4.
    Plain Text InThe Backup File An Introduction To
  • 5.
    Key Architecture ofTDE SQL Server Instance Master Database User Database Service Master Key Database Master Key Database Encryption Key Certificate Physical Database Files An Introduction To
  • 6.
    How To ImplementTDE • Backup the unencrypted user database • Create a Database Master Key in the Master database • Create a Certificate in the Master database • Create a Database Encryption Key in the user database • Set Encryption to ON in the user database • Backup Keys, Certificate and user database An Introduction To
  • 7.
    How To ImplementTDE Demonstration… An Introduction To
  • 8.
  • 9.
    Backup of TDEDatabases • Backup user database • Backup Service Master Key • Backup Database Master Key in Master database • Backup Certificate in Master database • Database Encryption Key is backed up with database • Store backup of db and keys in separate locations An Introduction To
  • 10.
    Restore of TDEDatabases • Restore Service Master Key if needed • Restore Database Master Key in Master database • Alter DMK’s “Encrypted By” to Service Master Key • Restore Certificate in Master database • Restore the user database An Introduction To
  • 11.
    Backup and Restoreof TDE Database Demonstration… An Introduction To
  • 12.
    Interesting Tid-Bits •TempDB is also encrypted • Transaction log is advanced to next virtual log • TDE must be enabled on the publisher and subscriber • Compression is not recommended with TDE • Full-Text Indexes not recommended with TDE • Both databases used in mirroring will be encrypted An Introduction To
  • 13.
    In Summary •TDE encrypts physical files of a database • Designed to protect “data at rest” • The Database Encryption Key is used with TDE • Implementation includes the MASTER database • Backup the keys separately from the database(s) • TempDB is encrypted with TDE is implemented An Introduction To
  • 14.
    Transparent Data Encryption Questions… An Introduction To
  • 15.
    Additional TDE Resources: MSDN: Understanding TDE (Article) http://msdn.microsoft.com/en-us/library/bb934049.aspx My Blog: Check out my series on TDE http://www.simple-talk.com/community/blogs/johnm/default.aspx Additional General Encryption Resources: MSDN: SQL Server Encryption http://msdn.microsoft.com/en-us/library/bb510663.aspx Have More Questions? My E-Mail: john_magnabosco@live.com An Introduction To