Under the Hood of Transparent Data Encryption: Securing Data at Rest in Azure SQL and SQL Server
Regular 50 minute session for SQLBits 2026Wednesday - 22 Apr 2026 - 16:40 - 17:30 Room 3ATL; DR
Flip the switch on TDE! Join our deep dive into how Transparent Data Encryption works in Azure SQL & SQL Server. Learn architecture, performance tips, and CMK integration—plus demos and practical guidance for DBAs and security pros.
Session Details
Ever wondered what really happens when you flip the switch on Transparent Data Encryption (TDE)? Join us for a technical deep dive into how TDE works in Azure SQL and SQL Server.
We’ll unpack the architecture behind TDE, explore how it protects your data at rest. You’ll learn how to measure and mitigate performance impact, and integrate TDE with customer-managed keys (CMK) for maximum control and compliance.
Expect demos, architecture diagrams, and practical tips you can take back to your team. Perfect for DBAs and security architects who want to go beyond the basics
We’ll unpack the architecture behind TDE, explore how it protects your data at rest. You’ll learn how to measure and mitigate performance impact, and integrate TDE with customer-managed keys (CMK) for maximum control and compliance.
Expect demos, architecture diagrams, and practical tips you can take back to your team. Perfect for DBAs and security architects who want to go beyond the basics
3 things you'll get out of this session
Demystify how TDE works under the hood in Azure SQL and SQL Server
Equip attendees to measure and optimize performance
Show how to extend TDE with Customer‑Managed Keys (CMK)
Equip attendees to measure and optimize performance
Show how to extend TDE with Customer‑Managed Keys (CMK)
Speakers
Pieter Vanhove's other proposed sessions for 2026
When AI meets your database: Securing sensitive data in Azure SQL in an AI-driven world - 2026
Pieter Vanhove's previous sessions
Navigating Modern Authentication in SQL
Learn about modern authentication and credential management options available for Azure SQL and Arc-Enabled SQL Server, and how to implement best practices for keeping your infrastructure secure.
Confidential development with Always Encrypted using enclaves
Developing applications that use Always Encrypted protected databases requires some special attention, such as using parameterized queries and collations. Join us for this session to learn about this game-changing technology. We will demonstrate the main benefits of Always Encrypted with secure enclaves, discuss the best practices for developing your application the right way, and address the latest Always Encrypted investments in Azure SQL.