stackoom
  简体   繁体   中英

Encrypt/decrypt columns, without changing existing functionality

 原文  2018-01-24 13:27:25       sql/ sql-server/ encryption

Question

GDPR is causing some headaches in this office. We already have a database table in production, lets call it personal_data, that now requires some columns to be encrypted. We are using SQL Server 2012. I've read that columns can be encrypted and decrypted with a symmetric key stored in the database.

We have dozens of existing queries, stored procedures and views that join to this table, so we'd like to avoid changing them if possible.

Is it possible to encrypt the necessary existing columns and query them without modifying these existing queries?

My thought was that if we renamed the personal_data table to something else, then created a view called personal_data, that queried the personal_data table columns and handled the decryption there, so everything that referenced 'personal_data' would still work as before. But if this is possible, what are the pitfalls with this solution?

2 answers

solution1
 2 ACCPTED  2018-01-24 13:30:19

I would suggest creating another table, say _personal_data . Encrypt the data in that table and replace the current table with a view on the table that returns acceptable columns.

You can give everyone access to the view, while restricting access to the underlying table.

This is a reasonable interim approach. For GDPR and other privacy initiatives, I prefer stronger restrictions, with personal data being in an entirely separate database -- because that is easier to control access to and to log accesses.

solution2
 1  2018-01-24 13:43:43

SQL Server 2005 enables developers to encrypt and decrypt sensitive data using EncryptByKey and DecryptByKey functions You can find a sample case illustrated at SQL Server Database Encryption

But this requires code update for INSERT, UPDATE and READ statements For example, 

SELECT
CONVERT(nvarchar, DecryptByKey(EncryptedData)) AS 'DecryptedData'
FROM myTable;

Instead of direct read as 

SELECT EncryptedData AS 'DecryptedData' FROM myTable;

Another encryption method is SQL Server Transparent Data Encryption aka TDE. Once you enable it, you don't need to make any code changes to write and read data. But this is a protection for securing disk files at all not for specific data fields. And once you connect database with a valid connection all data is transparent to you.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to encrypt/decrypt data in some columns of a table and when a new record gets inserted it should also get encrypt Encrypt/Decrypt Connection Strings Encrypt in SQL and Decrypt in C# Encrypt and decrypt the database before moving it encrypt and decrypt a database with c# Encrypt in SQL Decrypt in .Net - How i made it Firebird database UDF for encrypt/decrypt not freeing memory Encrypt and Decrypt a String value with return type as String How to convert rows to columns without changing the data? Can we add new columns to existing type 2 (slowly changing) table?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM