Encrypting MSSQL standard databases


I am trying to find out a way to encrypt certain fields or tables or databases. I am using MSSQL 2014 standard.

Any advice?
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Vikas GargAssociate Principal EngineerCommented:

There is one wonderful article on the same


Hope this will help you

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
btanExec ConsultantCommented:
as mentioned it will be via TSQL https://www.mssqltips.com/sqlservertip/2431/sql-server-column-level-encryption-example-using-symmetric-keys/
The above is specific to Column-level encryption (aka cell-level encryption) via Passphrase, asym/sym keys or Certificate (preferred for stronger protection and better performance) allows you to encrypt and decrypt confidential data in the database. It may suit your use case. Though it provides a more granular level of SQL Server encryption, giving you the means to encrypt a single cell within a table, you need to note that it requires application code and database schema changes because all encrypted data must be stored using the varbinary data type

also leverage on Transparent data encryption (TDE) - it encrypts every page of your database and automatically decrypts each page as needed during access. TDE does not require additional storage space or change in the underlying database schema, application code or process. Moreover, it is totally transparent to the user or application because it's performed at the SQL Server service layer.

For info - Database Encryption Key (DEK), which is an asymmetric key that is encrypted using the server certificate stored in the master database. The DEK is stored in the database boot record, which is why it is available during database recovery.

As a whole, you can also go into encrypting SQL Server object definitions such that you create stored procedures, views, function and triggers using WITH ENCRYPTION clause, to encrypt the definition text of these objects. Once encrypted, you cannot decrypt the objects' text.
Vitor MontalvãoMSSQL Senior EngineerCommented:
shpresa, do you still need help with this question?
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.