22-25 April 2026 
Under the Hood of Transparent Data Encryption: Securing Data at Rest in Azure SQL and SQL Server
Regular 50 minute session for SQLBits 2026TL; DR
Flip the switch on TDE! Join our deep dive into how Transparent Data Encryption works in Azure SQL & SQL Server. Learn architecture, performance tips, and CMK integration—plus demos and practical guidance for DBAs and security pros.
Session Details
Ever wondered what really happens when you flip the switch on Transparent Data Encryption (TDE)? Join us for a technical deep dive into how TDE works in Azure SQL and SQL Server.
We’ll unpack the architecture behind TDE, explore how it protects your data at rest. You’ll learn how to measure and mitigate performance impact, and integrate TDE with customer-managed keys (CMK) for maximum control and compliance.
Expect demos, architecture diagrams, and practical tips you can take back to your team. Perfect for DBAs and security architects who want to go beyond the basics
We’ll unpack the architecture behind TDE, explore how it protects your data at rest. You’ll learn how to measure and mitigate performance impact, and integrate TDE with customer-managed keys (CMK) for maximum control and compliance.
Expect demos, architecture diagrams, and practical tips you can take back to your team. Perfect for DBAs and security architects who want to go beyond the basics
3 things you'll get out of this session
Demystify how TDE works under the hood in Azure SQL and SQL Server
Equip attendees to measure and optimize performance
Show how to extend TDE with Customer‑Managed Keys (CMK)
Equip attendees to measure and optimize performance
Show how to extend TDE with Customer‑Managed Keys (CMK)
Speakers
Pieter Vanhove's other proposed sessions for 2026
Drive security-focused features from concept to general availability - 2026
Unveiling the new Security Features in SQL Server 2025 - 2026
Pieter Vanhove's previous sessions
Navigating Modern Authentication in SQL
Learn about modern authentication and credential management options available for Azure SQL and Arc-Enabled SQL Server, and how to implement best practices for keeping your infrastructure secure.
Confidential development with Always Encrypted using enclaves
Developing applications that use Always Encrypted protected databases requires some special attention, such as using parameterized queries and collations. Join us for this session to learn about this game-changing technology. We will demonstrate the main benefits of Always Encrypted with secure enclaves, discuss the best practices for developing your application the right way, and address the latest Always Encrypted investments in Azure SQL.
How to solve common data security requirements
In this session, you will learn how to solve common security requirements for new or existing applications using Azure SQL Database and Azure SQL Managed Instance. We will cover Authentication and Authorization, Data Protection, Auditing and Security Management. After completing this session, you will understand how to meet specific security compliance standards and best practices.
Protecting data integrity with ledger
Join this session to learn how ledger tables in Azure SQL Database and SQL Server 2022 work and why you should use them in your databases and applications.
Run your DBA morning checklist with Policy Based Management
In this session you will learn how you can perform your DBA morning checklist with Policy Based Management to evaluate your servers and how I configured my setup.
From Here to Azure
Attend this interactive session and learn how to create, deploy, and migrate data from your on-premises instance of SQL Server to Microsoft Azure Virtual Machines and Microsoft Azure SQL Database.