Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
askmanojjain
Starting Member
10 Posts |
 Posted - 2007-07-31 : 14:23:49
|
| Dear All,I have developed a application using SQL express.One of my client wats to protect his database so that if some body takes the backup he/she is not able to view data either directly or from the application i am delivering (may be he can buy my software and use his database or simply use demo version of my data)Previously I used Access database and use database password protection (which every body knows is not good enough).Now what I should do to protect my database (I am not worried about database structure or other objects but clients data that he will enter into the software like accounts data)I need a moderate and a hard solution so that depending upon clients ability to affort I can implement at client side. There is no need to deliver protection in distrbution of my software.Thanks in advanceMANOJ JAIN |
|
|
spirit1
Cybernetic Yak Master
11752 Posts |
Posted - 2007-07-31 : 16:24:23
|
| well something like that is not possible out of the box.you can encrypt your backuped file though. but that's not the sql server option._______________________________________________Causing trouble since 1980blog: http://weblogs.sqlteam.com/mladenp |
 |
|
|
rmiao
Master Smack Fu Yak Hacker
7266 Posts |
Posted - 2007-07-31 : 23:01:08
|
| You can set password for db backup, but not much can do for db files. |
|
|
|
Kristen
Test
22859 Posts |
Posted - 2007-08-01 : 01:52:20
|
| Database files are hard to copy whilst the database is running, which might offer some protection.Backup files could be encrypted as soon as they are made (and before copying to Tape/etc.)Other than that I can't think of much.What about using encrypted folder in NTFS?Kristen |
|
|
|
askmanojjain
Starting Member
10 Posts |
Posted - 2007-08-01 : 08:10:25
|
| While searching web I have found some commenst but I have not understood them. I reproduce here for your commentsi've found that I should be able to protect my database using the CREATE MASTER KEY. If somebody attaches the database in another server, OPEN MASTER KEY DECRYPTION BY PASSWORD = 'pwd' will have to be called.what this actually means?? can some one suggest a code. If by this way attaching mdf to server can be prohibited to some extent its fine for me.I will then have two level of protection one is backup file password and second as suggested above.please suggest a code or a way to do it manually on server and connection string. |
|
|
|
rmiao
Master Smack Fu Yak Hacker
7266 Posts |
Posted - 2007-08-01 : 11:45:05
|
| You can find syntax and details in books online. |
|
|
|
|
|
|
Securing MDF file