Tools to enhance Sql server Security

Hi,

Can anyone Suggest Third party Tools which are available to enhance sql server security in terms of access and data integrity(i.e. encryption).

For Addition Info,

We are using sql server 2012  on AWS (amazon cloud) EC2.

Thanks
ccfcfcAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

ste5anSenior DeveloperCommented:
hmm, I would use SQL Server.. but on the other hand: of what levels of security are we talking about?

As it's a cloud hosted, you cannot control access. Cause physical access control is not in your hand.
Encryption of cloud system means in a strict sense, that you need to encrypt data on cell level and handle the encryption/decryption on a third system which is totally under your control (not hosted).

On the other using the default encryption provided by SQL Server itself allows you to loose backup files without further consequences.

Basically: Security in a cloud system heavily depends on the basic security provided by the cloud hoster.
0
Rich RumbleSecurity SamuraiCommented:
HSM's are a best practice when encrypting a database: http://en.wikipedia.org/wiki/Hardware_security_module but being cloud-hosted, I don't know. Perhaps there are HSM's available to AWS... it looks like there are:http://aws.amazon.com/cloudhsm/
http://docs.aws.amazon.com/redshift/latest/mgmt/working-with-HSM.html
-rich
0
ccfcfcAuthor Commented:
Hi,

Here i am talking about encryption for sql server database files (.mdf and .ldf and backup files). as we are in cloud we would like to secure our database files with third party software tools as sql server standard edition does not support TDE.

Can anyone suggest some tools that support encryption on cloud .

Thanks
0
Rich RumbleSecurity SamuraiCommented:
Maybe your cloud provider can give you your own HSM: http://aws.amazon.com/cloudhsm/
-rich
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft SQL Server 2008

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.