Alright, so you've just implemented Transparent Data Encryption on your database.
Your database is extremely secure. The data, not so much. You see, the
problem is this: the data travels unencrypted between SQL Server and your application.
Whoops.
To enable SSL Encryption on the server side, there are a couple of fairly simple
steps involved:
-
In SQL Server Configuration Manager, expand SQL Server Network
Configuration, right-click Protocols for <server
instance>, and then select Properties.
-
In the Protocols for <instance name> Properties dialog
box, on the Certificate tab, select the desired certificate from
the drop down for the Certificate box, and then click OK.
-
On the Flags tab, in the ForceEncryption box, select Yes,
and then click OK to close the dialog box.
-
Restart the SQL Server service.
To enable SSL Encryption on the client side:
-
Copy either the original certificate or the exported certificate file to the client
computer.
-
On the client computer, use the Certificates snap-in to install either
the root certificate or the exported certificate file.
-
In the console pane, right-click SQL Server Native Client Configuration,
and then click Properties.
-
On the Flags page, in the Force protocol encryption box,
click Yes.
finally, set your connection string within the application to 'Use
Encryption for Data=True'.
Driver={SQL Native Client};
Server=myServerAddress;Database=myDataBase;Trusted_Connection=yes;Encrypt=yes;
That's really not all that difficult. One more reason to have a more secure infrastructure!>