SQLBits 2020

Getting To Know SQL Server Encryption Capabilities

How to increase security by using symmetric and asymmetric server encryption, client side Always Encrypted, secure SSL/TLS channels and Transparent Data Encryption for data at rest.

With stricter privacy laws, the need to encrypt data is greater than ever. In this session we'll look at what SQL Server offers in this area: 1) symmetric and asymmetric server encryption which lets the server encrypt table data and control the keys, 2) Overview of Always Encrypted (AE) which works similarly to server encryption but the client control the keys meaning server can't decrypt the data 3) Transparent Data Encryption (TDE) which encrypts your data at rest making getting data from stolen drives useless 4) creating secure SSL/TLS communication channels between your apps and the server to prevent clear text network traffic which can be observed

Mladen Prajdic's previous sessions

Social Engineering: Hacking People

The best attacks happen when people don’t even realize they are being attacked and in this session we’re going to try to fix that and educate you on how to realize when someone is trying to socially engineer you.

Thē wönderfűl wôrld of ćollåtions, eñcodingß and téxt sţoræge

Once you get to talking or thinking about characters, collations, encodings, sort orders, diacritics, code pages, etc, a brain melt is what you end up with. In this session we'll look at what all of these things are, how they all fit together.

Getting To Know SQL Server Encryption Capabilities

How to increase security by using symmetric and asymmetric server encryption, client side Always Encrypted, secure SSL/TLS channels and Transparent Data Encryption for data at rest.

An End-to-End Approach to App and DB Security

Learn about the methodology to increase security related development practices, backed by real world examples. Including securely accessing a database, properly encrypting data, using SSL/TLS, etc

Think Inside the Box! Understanding the Query Life Cycle

In this session we'll take two queries, a read and a write one, and look at the whole trip from the client through the server and back to the client. On this journey we'll try to identify where things might go wrong.

Optimizing database access and diving into .Net SqlClient

Because there are always at least two sides of the performance coin, in this session aimed at .Net and SQL developers, we'll dive into the workings of the .Net SqlClient and give you insight into way more than just SqlCommand.ExecuteReader()

From SQL Traces to Extended Events. The next big switch

This session will give you insight into both of the current tracing technologies in SQL Server. Old SQL Trace has served us well but new times call for new technology. The new Extended Events are a new lightweight tracing mechanism built into SQLOS.

Awesome new T-SQL candy in SQL Server 2012

We'll focus on the awesome new SQL Server 2012 stuff that will make your T-SQL development a breeze. We'll look at new stuff like OFFSET, WINDOWING FUNCTIONS, SEQUENCES, ERROR HANDLING, FORMAT & CONVERT functions and METADATA DISCOVERY.

Database Testing-Minimizing "If it can break, it will."

A look into the world of database testing, how to go about it, why do we really need it and how to work well with your peers and managers for greater project success.