SQLBits 2020

Getting To Know SQL Server Encryption Capabilities

How to increase security by using symmetric and asymmetric server encryption, client side Always Encrypted, secure SSL/TLS channels and Transparent Data Encryption for data at rest.

With stricter privacy laws, the need to encrypt data is greater than ever. In this session we'll look at what SQL Server offers in this area: 1) symmetric and asymmetric server encryption which lets the server encrypt table data and control the keys, 2) Overview of Always Encrypted (AE) which works similarly to server encryption but the client control the keys meaning server can't decrypt the data 3) Transparent Data Encryption (TDE) which encrypts your data at rest making getting data from stolen drives useless 4) creating secure SSL/TLS communication channels between your apps and the server to prevent clear text network traffic which can be observed