SQL Server 2012 :: Asymmetric Encryption Using Public And Private Key

Jun 3, 2015

We are planning to encrypt few fields using asymmetric encryption. Tyring share public key with users and retain private key with us. How to generate keys? Haven't found any solid document on how to generate these keys.

View 0 Replies


ADVERTISEMENT

The Certificate, Asymmetric Key, Or Private Key File Does Not Exist Or Has Invalid Format.

Sep 20, 2006

I am sure I'm being dumb here but I am trying to deploy an assembly with external_access.

I have signed the assembly using the <new> option in the project properties.

When I then try and create the Key I get the above error using the code below.

CREATE ASYMMETRIC KEY SQLExtensionUDTKey

FROM EXECUTABLE FILE = 'C:Documents and SettingsSimon SabinMy DocumentsVisual Studio 2005ProjectsSQLBitsCoreSQLExtensionsSQLExtensions.UDTinDebugSQLExtensions.UDT.dll'

What could be the problem?

View 7 Replies View Related

Using Private Public Keys In SQL2005

Jul 30, 2007

Here is what I am trying to do. I want to create a private / public key pair (either a certificate or asymmetric key) and be able to give the public key to my business contacts. They would then use the public key to encrypt data to be sent to me and then I could import that data into my SQL 2005 database and use the private key to decrypt it.

It seems to me that this should be a pretty simple process, but it is not. The reason I want to do this is that the data they send to me on a regular basis is sensitive. Currently we use PGP, but then I have to decrypt the data and then import it and then reencrypt it. It would greatly simplify my process if I could just import the data and use it.

So how can I do this. Most of the posts I read say that asymmetric keys are avaiable in SQL2005 but not recommended for use. I don't want my business contacts to be able to decrypt any of my data (if they got access to the database) just encrypt.

Any recommendations???

Thanks!

Jim Youmans
St Louis, Missouri

View 5 Replies View Related

Can't Connect To The Backend DB During Re-install Of Public From Private

Apr 13, 2007

I'm having a great deal of difficultyconnecting to SQL 2005 sp1 during the running of the deployment tool on the FE.. The error message indicates that I have to install the Backward compatible tool on the FE... Did that and upgraded SQL to SP1... Still a no-workie..Exactly what SQLs are compatible with the Public version of OCS... It worked fine with the Private version and SQL2005...

View 2 Replies View Related

How Many IP(Public &&amp; Private) Required For 2 Node Active/Passive Cluster

Jul 13, 2007



Hi all,

I have some doubt about the IP Required for configuring cluster(both Window and SQL server)

Details :
----------
How Many IP(Public & Private) Required for 2 Node Active/Passive both window and SQL server Cluster ?

IP(Public & Private) Required :
---------------------------------------
1 : For Window Clustering : 2 node Active/Passive Cluster ? How many ip ?
2 : For Sql Server Clustering : 2 node Active/Passive Cluster ?how many ip ?
3 : Is there any mathematics for that ? How to analyse the IP requirement ?

Thanks

View 2 Replies View Related

Symmetric Encryption By Asymmetric Keys

Nov 9, 2007

i've getting ready to implement encryption on a rather large database. I'd read that if performance is of utmost concert, you should use symmetric keys. I want to encrypt those keys by asymmetric keys. My code is working, but i'm just not sure if there is a quicker way? do you have to open and close the key each time you select/update/insert in a stored procedure that references an encrypted column, or is there a way to just modify the code by adding the encryptbykey/decryptbykey functions?

has anyone implemented encryption on columns in large tables? any suggestions for me?

Thanks,
Pete

here's my code to create the keys:

create asymmetric key ASK_Auto_Encrypt
with algorithm = RSA_512;

create symmetric key SK_AE
with algorithm = TRIPLE_DES
encryption by asymmetric key ASK_Auto_Encrypt;

here's my code to test this:

create table encryption_test (test varchar(50));

open symmetric key SK_AE
decryption by asymmetric key ASK_Auto_Encrypt;

insert into encryption_test
select encryptbykey(key_guid('SK_AE'),'test');

select convert(varchar(max),decryptbykey(test)) from encryption_test;

close symmetric key SK_AE;

View 14 Replies View Related

SQL Server 2012 :: Show Encryption For Connections

Nov 3, 2015

I have setup ssl encryption for SQL connections by using a self-signed certificate (not the best I know) and setting "Force Encryption" to Yes. Now I am trying to show that the connection is indeed encrypted and I like to see which the ssl-key is used for a connection; preferably the one that I provided. How can I do this? I am just not comfortable trusting the OS or SQL to do what I ask.The query "SELECT encrypt_option FROM sys.dm_exec_connections" Shows incrypted but no extra info.

View 0 Replies View Related

SQL Server 2014 :: CLR Works With Trustworthy OFF And No Asymmetric Key

Apr 28, 2015

We have a curious situation on a SQL 2014 DB, with Trustworthy set to OFF. There is a job that runs a data export to a file via a CLR. The assembly as PERMISSION_SET = EXTERNAL_ACCESS, however there is no Asymmetric key for the assembly. Therefore what I trying to work out is why this is NOT failing. Some further information on this specific database that may or may not be relevant is:

1. It was upgraded a few weeks ago (Backup/Restore) from a SQL 2012 - SQL 2014 server
2. It as a Compatibility Level = 110 (2012)
3. The Previous 2012 database DID have Trustworthy ON
4. The CLR are actually being run against a snapshot of the database (Actually I think this one is a red herring. The SP is getting data from a table in the snapshot, but the CLR used it the one from the main DB)

View 2 Replies View Related

Can I Access My Private Db Through My Web Server?

Aug 30, 2005

Web server: win2003 server with iis6DB: sql server 2000I have 50+ remote offices running an Access 2002 app which connectsdirectly to sql server at a 3rd party hosting company, in part using anodbc connection on the workstation.We recently moved our database (and our web site) in-house. The newdatabase is inside the firewall but outside the dmz, where it livesalong side the company's most sensitive databases. IT's policy won'tallow us to connect directly from the internet. I'm trying to avoidbuying another copy of sql server for the Access app, which I one dayhope to drop anyway in favor ofThe web server uses port 1433 to talk to the database. I was wonderingif there is a simple way to route requests from the Access app throughthe web server.Thanks,Bob

View 9 Replies View Related

SQL 2012 :: Using Symmetric Key Encryption

Nov 2, 2015

I am working to set up encryption of my database. am trying to implement a process proposed by the DoD Standard Technical Implementation Guide (STIG) and cannot figure it out. I am using SQL 2012 and the requirement is to

A: Run the following to create a certificate:
USE <'database name'>
CREATE CERTIFICATE <'certificate name'>
ENCRYPTION BY PASSWORD = '<'password'>'
FROM FILE = <'path/file_name'>
WITH SUBJECT = 'name of person creating key',
EXPIRY_DATE = '<'expiration date: yyyymmdd'>'

This script did not work – I did not know what file it was referencing and it kept erroring out, so I used my own process as follows

USE master
GO
CREATE MASTER KEY ENCRYPTION BY PASSWORD = 'mY_P@$$w0rd'
CREATE CERTIFICATE certificate_name
WITH SUBJECT = 'Certificate for my database'

[code]....

This also error out, but my questions are the following:

-What would the symmetric key be encrypting?
-The application that is using the database is IIS, so would there be a problem with it communicating with the database?
-Does the key need to be installed on that IIS server?
-Do I need to apply the encryption to the database, column or table.

View 3 Replies View Related

SQL 2012 :: Force Encryption With DoD Certificate

Sep 15, 2015

I have a SQL Server 2012 Standard and needed to fulfill a requirement to set Force Encryption on the Server with a DoD Certificate.

I will be altering my client connections to use Encrypt=True; TrustServerCertificate=True (The client is a .Net Web Application).

The OS is where SQL Server 2012 Standard resides is Windows 2008 R2 DataCenter Service Pack 1 64-bit.

What I am needing to know is where do I get the DoD Certificate from? and Do I just install it on the server where SQL Server resides?

View 0 Replies View Related

SQL 2012 :: Is Transparent Data Encryption Useful

Oct 12, 2015

We have a large VMWare environment with HP SAN, and 2 datacenters - primary and DR, with SAN based replication between them.We also backup databases to tape via Commvault and send them off-site using a vendor.TDE protects data at 'rest', meaning, (that if it wasn't implemented, and) if someone got a hold of our physical .mdf/.ldf files, or our .bak's, or tapes, they could recover the data.

View 6 Replies View Related

Can't Connect Remotely To SQL Express On Virtual Private Server

Mar 18, 2007

I've just bought a Virtual Private Server Account because I want to host a number of different ASP.NET sites, each backed by their own SQL database. I've downloaded SQLEXPRE.EXE and SQLServer2005_SSMEE-x64.msi to the server and installed the database engine and Management Studio Express on the VPS.
 My problem is that I cannot access the SQLEXPRESS on my server from my local machine.  The Management Studio Express cannot get logged in.  I've used "Surface Area Configuration Manager" to allow "Local and remote connections" using TCP/IP only. I've used SQL Server Configuration Manager" to enable the TCP/IP protocol.  After making these changes I've stopped and started the SQL server - and even rebooted the machine. I've created a login "Remote User" for this access. I've added sqlservr.exe as an exception to the firewall.
What else do I need to do? Is there a simpleton's guide to completing this task?
 

View 1 Replies View Related

SQL 2012 :: Does SSIS Catalog Use Transparent Data Encryption

Jul 10, 2014

In cases when the SSIS package has to be deployed in SQL Server, when we use ProtectionLevel ="server storage" while creating SSIS Catalog, does it use TDE? or Database Standard Encryption? if the database is using TDE?

View 0 Replies View Related

SQL 2012 :: SSIS Catalog Using Transparent Data Encryption?

Aug 7, 2014

In cases when the SSIS package has to be deployed in SQL Server, when we use ProtectionLevel ="server storage" while creating SSIS Catalog, does it use TDE? or Database Standard Encryption? if the database is using TDE?

View 5 Replies View Related

SQL 2012 :: Applying Encryption On Database - Showing Error

Sep 22, 2014

How can I create encryption on database ?. When I try to apply encryption on my database then it showing error message below....

View 9 Replies View Related

Import OpenSSL Certificate With Private Key Into Sql Server 2005 Express Edtion

Jul 7, 2006

hey,

i have a problem, to import a self signed openssl certificate into the sql server 2005.

my final idea is to get encrypted columns from the database over an jdbc connection in a java client.

when i use a certificate generated by the sql server 2005, i can encryt columns of a table. then i catch the

the result in my java client. but in java, i need a keystore with the private key of the certificate.

ok. i have export the the certificate and the private key of the sql server 2005.

problem: in a keystore i can only import the certificate (signed public key) but not the private key.

my new idea is to import an openssl certificate or an certificate generated by the keytool (java) into the

sql server 2005 and encypt the data with the imported certificate. Problem: The SQL Server give me an

Exception: (Sorry i drag & drop the exception, is written in german)

Msg 15208, Level 16, State 1, Line 2

Die Datei für das Zertifikat, den asymmetrischen Schlüssel oder den privaten Schlüssel ist nicht vorhanden oder weist ein ungültiges Format auf.

My Import Statement is:



CREATE CERTIFICATE InsuranceCertOpenSSL

FROM

FILE = 'E:masterkeysinsuranceservice_tomcat_apr_x509_certificate_with_cygwin_openssl_20060630insuranceservice_tomcat_x509_certificate_with_openssl.crt'

WITH PRIVATE KEY (

FILE = 'E:masterkeysinsuranceservice_tomcat_apr_x509_certificate_with_cygwin_openssl_20060630insuranceservice_tomcat_x509_certificate_with_openssl_private.key',

DECRYPTION BY PASSWORD = 'testit2_',

ENCRYPTION BY PASSWORD = 'testit2_'

)

I use password encryption, and not the internal master key (or service master key)

Hope for help :)

nils



View 18 Replies View Related

Remote Connect To SQL Server 2005 At Home From Private/office Network

Dec 18, 2007

I'm green on this networking stuff so any help is greatly appreciated.

I have setup my home computer as a server and assigned a static IP to it. I installed SQL Server 2005 Developer and allowed remote connections to it through the Surface Area Config tool, added port 1433 TCP and 1434 UDP to firewall's exception list, and started the SQL Server Browser service.

Now I can't seem to remote connect to this SQL Server from my office network. Is there something I'm doing wrong here?

Thanks!!

View 3 Replies View Related

SQL 2012 :: Enabling SSL Encrypted Connections Without Using Force Encryption Option

Apr 1, 2015

I have a customer who is looking to encrypt their applications connection to the back-end SQL server. I've gotten a valid certificate for the server from a trusted CA, and it's installed on the server (shows up in Personal certificates in the Certificate MMC when selecting the computer) and I can choose it in the drop down on the certificates tab of the SQL Network protocols properties in Configuration Manager.

Now, my question: If I select the certificate but do NOT enable the "Force Encryption" option, the client will be able to request encryption on their end, and the connection will then be encrypted. If the client (other applications) do NOT request encryption, they will still be able to connect, but their connection will be un-encrypted. URL....

Lastly, I could've swore I had found some information indicating that some methods of establishing a connection to SQL can fail when Force Encryption is enabled, as the method doesn't support SSL encryption.

View 1 Replies View Related

Private SQL Server Express Vs. Shared SQL Server

Aug 7, 2006

Hello,I have a doubt. I've just bought a private server and now I can decide between having my applications under a private SQL Server Express database or under a Shared SQL Server database.The application is not professional, it's just a hobby, but it could have more than 100.000 entries and be used by 200 users at the same time.I know the limitations of SQL Server Express, but I want to know the opinion of someone who have experienced about this.Thanks!

View 4 Replies View Related

How Do I Open Up Sql Server To The Public On Web

Feb 14, 2008

set up windows 2003 server
sql server 2000

have public IP from netword soluctions
I can see website

what settings to i need to open up sql server to the public?

View 12 Replies View Related

Public Server Role

Mar 30, 2006

In exploring permissions that users have, I find that they all have VIEW ANY DATABASE permission which they inherit from the public server role. You can see this by selecting the Permissions page on the Server Properties dialog and highlighting "public". The permission shows as having been granted by sa. This is listed as a server role. However, it does not show in the list of server roles and I can't find any documentation for it (RTM BOL). Interestingly, if I revoke this permission (which is the only permission this role has), the public server role disappears from view. But I can subsequently regrant the permission with Transact-SQL in master and the role comes back.

I would like more information about this role. It seems to be sort of "secret".

When I revoke the permission, users can't see any databases except master and tempdb (both of which have active guest users) even though they have been granted access to other databases.

What I was trying to accomplish by changing this permission was to allow a user to see only those databases which they are allowed to use. But that does not seem to be possible.

Thanks for the help.

Sharon

View 5 Replies View Related

Using SQL Server 2005 Public Keys In VB.Net

May 1, 2006

I'm creating an asymmetric key in SQL Server:

CREATE ASYMMETRIC KEY MY_KEY
WITH ALGORITHM = RSA_512
ENCRYPTION BY PASSWORD = 'password1@'

I'm then taking the public key...

SELECT public_key
FROM sys.asymmetric_keys
WHERE [name] = 'MY_KEY'

I'm trying to import this into VB.Net using RSACryptoServiceProvider.

Dim RSA As New
Security.Cryptography.RSACryptoServiceProvider(512)
RSA.ImportCspBlob(KeyBlobByteArray)

I have to add the following line to get it to not give me errors.
(Why?) But the data looks right when I look at the exponet and modulus
of the parameters that are exported and then immediately imported.
Something is obviously being thrown away when I do this, but I don't
know what. It's probably the key to the whole problem.

RSA.ImportParameters(RSA.ExportParameters(False))

I encrypt the message...

EncryptedMessageByteArray = RSA.Encrypt(MessageByteArray,
False)

And in SQL server I try to decrypt the message and I get NULL.

SET @DecryptedMessage =
DecryptByAsymKey (
AsymKey_ID('MY_KEY') ,
@EncryptedMessage ,
N'password1@')

I've noticed that the encrypted array is completely different in VB
than when I encrypt it in SQL (obviously), but I can't figure out how
to configure to the RSACryptoServiceProvider to match what SQL Server
is doing under the hood.

Any ideas?
Thanks,
Jerrill

View 10 Replies View Related

CREATE ASYMMETRIC KEY Issues.

Aug 8, 2006

Hi
I created an sqlserverproject successfuly ( just has one CLR stored proc)
(http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnsql90/html/mandataaccess.asp)
i followed above steps to create the project.
when i tried to deploy the same to sql server  VS studio threw below error
CREATE ASSEMBLY for assembly 'MySqlServerProject' failed because assembly 'MySqlServerProject' is not authorized for PERMISSION_SET = EXTERNAL_ACCESS.  The assembly is authorized when either of the following is true: the database owner (DBO) has EXTERNAL ACCESS ASSEMBLY permission and the database has the TRUSTWORTHY database property on; or the assembly is signed with a certificate or an asymmetric key that has a corresponding login with EXTERNAL ACCESS ASSEMBLY permission. MySqlServerProject
then i realized i will have to either sign the assembly or create an asymmetric key. i decied to follow the latter. so i tried below t-sql statements in sql sever 2005
use master
GO
CREATE ASYMMETRIC KEY SQLCLRTestKey FROM EXECUTABLE FILE = 'C:myWorkSQL2005DBProMySqlServerProjectMySqlServerProjectinDebugMySqlServerProject.dll'
when i execute the above, SQL Server threw below error
The certificate, asymmetric key, or private key file does not exist or has invalid format.
What i am i doing wrong. please advise
THNQDigital
 
 
 

View 2 Replies View Related

CREATE ASYMMETRIC KEY Issue

May 8, 2007

Hi,
 I am trying to create an asymmetric key to have   EXTERNAL ACCESS ASSEMBLY  for an SQL login. When I try to run following script. it gives error
1    User master2    GO 3    CREATE ASYMMETRIC KEY SN FROM EXECUTABLE FILE = 'D:Partners.dll' 4    CREATE LOGIN TestLogin FROM ASYMMETRIC KEY SN 5    GRANT EXTERNAL ACCESS ASSEMBLY TO TestLogin6    GO7   
Error is "The certificate, asymmetric key, or private key file does not exist or has invalid format."
Any help how can I fix this error. The database already have Trustworth ON.
 
Regards,
 

View 2 Replies View Related

How To Backup Asymmetric Key In SQL 2005

Feb 5, 2006

How
to backup asymmetric key in SQL 2005 created in the following way so it
can be copied to another server ? Also can you copy it to the other
server after backing it up.



CREATE ASYMMETRIC KEY ccnumber WITH ALGORITHM = RSA_512
ENCRYPTION BY PASSWORD = 'password';

View 11 Replies View Related

How To Make Sql Server 2000 Public On A Windows 2003 Server...any One Know?

Feb 14, 2008

set up windows 2003 serversql server 2000have public IP from netword soluctionsI can see websitewhat settings to i need to open up sql server to the public?

View 1 Replies View Related

Security Admin On A Server With NO Public Permissions

Sep 21, 2005

I am working with a SQLServer installation where all public permissionshave been revoked from the system.I currently hold the securityadmin and sysadmin roles to perform mylogicall access control work (creating logins and adding users todatabases and changing group memberships.)There has been a question as to whether or not I need the sysadmin roleto do my job, so we tried an experiment in dropping the sysadmin rolefrom my id.With no public permissions, I see no user information on the server,which really limits my ability to do the job.Has anyone ever worked with a super-locked-down server without thesysadmin role for doing security admin work?What I'm looking for is hopefully SQL to perform the access privilegesneeded for the security admin role by itself.Thanks in advance!

View 2 Replies View Related

SQL Server 2005 Service Pack 1 Public (NON-CTP) Is Available

Apr 19, 2006

SQL Server Service 2005 Pack 1 is available here.

The list of new features and fixed was published here on KB Article 916940 .

Keep in mind to read the readme file first in order to avoid problems during the update or unexpected bahaviour.

Have Fun !

-Jens Suessmeyer.

View 6 Replies View Related

Can I Setup A Global Public View In SQL Server ?

Feb 21, 2007

I need a master view that gets data from different DBs located on the same SQL Server (similar with Oracle feature that allows to get data from different schemas).

Is it possible to create such a view ?

Thanks

View 5 Replies View Related

Prolem With Create Login From Asymmetric Key

Feb 26, 2007

Greetings...

I'm trying to create assembly with "PERMISSION_SET = UNSAFE".
For that I've signed assembly's .dll and installed root certificate to €œTrusted Root Certificate Authority.€?: http://www.sqljunkies.com/WebLog/ktegels/articles/SigningSQLCLRAssemblies.aspx
now I'm trying to create login from asymmetric key:

USE master
GO

CREATE ASYMMETRIC KEY SQLCLRTestKey
FROM EXECUTABLE FILE = 'C:Documents and SettingsAll UsersDocumentshunterStoredProcedures.dll'
CREATE LOGIN SQLCLRTestLogin
FROM ASYMMETRIC KEY SQLCLRTestKey

but I'm receiving error: "Cannot find the asymmetric key 'SQLCLRTestKey', because it does not exist or you do not have permission."


What's wrong?

Best regards...

View 6 Replies View Related

Problem In Creating Asymmetric Keys

Aug 7, 2006

I am a novice to the SQL server. I am trying to create Asymmetric key using the query

CREATE ASYMMETRIC KEY PacificSales19 AUTHORIZATION dbo

FROM FILE = ' C: emp emp1.snk'

ENCRYPTION BY PASSWORD = 'ABC123!@#$';

GO

But I alwys get the follwing error

The certificate, asymmetric key, or private key file does not exist or has invalid format.

Can anyone please guide me as to how to go ablout creating the ASYMMETRIC KEY FROM FILE.

Thanks and regards





View 4 Replies View Related

SQL Security :: Encryption 2005 - User Defined Function For Encryption And Decryption

Oct 7, 2015

I have created two user defined functions for encryption and decryption using passphrase mechanism. When I call encryption function, each time I am getting the different values for the same input. While I searching a particular value, it takes long time to retrieve due to calling decryption function for each row.

best way to encrypt and decrypt using user defined functions.Below is the query which is taking long time.

SELECT ID FROM table WITH (NOLOCK)
                     WHERE dbo.DecodeFunction(column) = 'value'

When I try to use symetric or asymetric encryption, I am not able to put "OPEN SYMETRIC KEY" code in a function. So, I am using PassPhrase mechanism.

View 3 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved