Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
Mastro
Starting Member
1 Post |
 Posted - 2009-04-23 : 11:48:36
|
| I had trouble getting my actual questions answered properly on other sites. These are technical development questions on SRS. If I call MS directly and open a support ticket will they be able to provide answers? Or is that only for support related issues, since this more of a pre-deploy technical, development questions.Here's question as I'm sure someone will ask. How to use SRS Report Builder for End Users when the Database is encrypted at the field level with a Symmetric key sent into stored procs. With-out creating decrypted views on the server. Does 2008 support something that will help over 2005. Is there a way to insert a layer between the report builder and the srs service to handle the decryption?I'm not interested if you don't like the idea, or think the database shouldn't be encrypted at the field level, unless you have an alternate secure solution that works. I heard 2008 you can encrypt the whole database at once, does this include views? Would this help?Report Builder sees my VarBinary fields as Images but they are really encrypted data. So not sure what I need to do, handle it at the report model level? There a way to not pull from views but pull from stored procedures?Background Info: The system has highly sensitive information, so the idea is that if someone was to even steal the DB server they wouldn't have access to the data. Because the .Net app sends in the decryption key to the Stored Procedures as it pulls the data. Views are a security risk in this situation as they show decrypted data, if we were to decrypt them when we create it, so we do not use them.I'm trying to figure out, either a) how to use stored procs instead of views or maybe use views if it can work. When a user pulls a report from SRS, we somehow send the key to SRS at that time, and create a layer that pulls the data from the DB and decrypts it at that time. Problem is that might be fine and dandy for generating reports in VS, but we want to allow the end-user to use Report Builder. Then Report Builder sends in the key as it lists the data or pulls the information. Maybe I'm way off or maybe I need to change a few things to accomplish it. Either way I'm not sure what needs to be done. |
|
|
nr
SQLTeam MVY
12543 Posts |
Posted - 2009-04-23 : 13:48:19
|
| You have my sympathy.It's too much work for me to investigate this at the moment but have you triedhttp://social.msdn.microsoft.com/Forums/en-US/sqlreportingservices/threads/You might get some MS people interested there.Is your problem just with views? Then you should be able to get round that by removing them and adding that code to the stored procedures.>> I'm trying to figure out, either a) how to use stored procs instead of views Just use an SP as a source for the datasource in the report - remember to change the type from text to SP or you won't be able to bind the parameters. I only allow SPs as sources in reports and haven't had any problems.p.s. I don't like the idea and hope I'm never in a situation which needs it:).==========================================Cursors are useful if you don't know sql.DTS can be used in a similar way.Beer is not cold and it isn't fizzy. |
 |
|
|
|
|
|
|
|
Where can I get answers for SRS and Encrypted Data