Hi,
I'm developing a software that makes a lot of access to a MS SQL
Server. All information in the data base is decrypted and encrypt upon
each read and write access -- this is causing a big overload of CPU in
my system. I'd like to implement something to make it faster so I
wondered if there is any MS SQL Server API that would make the
cryptography transparent for the application. Another solution would be
setting up an encrypted file system so I could unmount
the device when the application finishes. The last one is not optimal
though, since the encrypted device would have read access while
mounted.
So, I'd like to get some suggestions about tools, api's and probably
other better solutions. Any information would be of great help.
The software runs on Windows 2k, Windows XP, Windows 2k3, Windows NT
and probably would have to be ported to Vista.
thanks a lot in advance for any help,
s 5 1832
Sav wrote:
Hi,
I'm developing a software that makes a lot of access to a MS SQL
Server. All information in the data base is decrypted and encrypt upon
each read and write access -- this is causing a big overload of CPU in
my system. I'd like to implement something to make it faster so I
wondered if there is any MS SQL Server API that would make the
cryptography transparent for the application. Another solution would be
setting up an encrypted file system so I could unmount
the device when the application finishes. The last one is not optimal
though, since the encrypted device would have read access while
mounted.
So, I'd like to get some suggestions about tools, api's and probably
other better solutions. Any information would be of great help.
The software runs on Windows 2k, Windows XP, Windows 2k3, Windows NT
and probably would have to be ported to Vista.
Maybe try here: http://msdn.microsoft.com/msdnmag/is...y/default.aspx
HTH,
TC (MVP MSAccess) http://tc2.atspace.com
Sav wrote:
Hi,
I'm developing a software that makes a lot of access to a MS SQL
Server. All information in the data base is decrypted and encrypt upon
each read and write access -- this is causing a big overload of CPU in
my system.
Do you need to encrypt at the row level? Do different rows have
different keys?
I'd like to implement something to make it faster so I
wondered if there is any MS SQL Server API that would make the
cryptography transparent for the application.
Not natively I believe. If you're using SQL Server 2005 you could embed
an assembly in to the database. This assembly that could do the
encryption "closer" to the database and doing the encryption here would
probably allow greater throughput.
Another solution would be
setting up an encrypted file system so I could unmount
the device when the application finishes. The last one is not optimal
though, since the encrypted device would have read access while
mounted.
By this do you mean that you worry that while the drive is open, some
other application could steal the database?
I'd personally modify something like Truecrypt so that only your
application can access the information. This is probably not for the
faint of heart.
So, I'd like to get some suggestions about tools, api's and probably
other better solutions. Any information would be of great help.
I'd like to know more about your threat model. After all, assuming that
some user can enter and retrieve information, don't they already have
access to all the information anyway?
What assests are you trying to protect?
Simon
Sav (sa*****@gmail.com) writes:
I'm developing a software that makes a lot of access to a MS SQL
Server. All information in the data base is decrypted and encrypt upon
each read and write access -- this is causing a big overload of CPU in
my system. I'd like to implement something to make it faster so I
wondered if there is any MS SQL Server API that would make the
cryptography transparent for the application.
SQL Server 2005 has considerable additions in the encryption area, so
you can encrypt/decrypt in SQL Server. If you are using SQL 2000, you
should probably look into what SQL 2005 can give you.
But encryption of data, always means that things go slower. Not the least
if you encrypt everything, including the keys.
--
Erland Sommarskog, SQL Server MVP, es****@sommarskog.se
Books Online for SQL Server 2005 at http://www.microsoft.com/technet/pro...ads/books.mspx
Books Online for SQL Server 2000 at http://www.microsoft.com/sql/prodinf...ons/books.mspx
Simon Johnson wrote:
Sav wrote:
I'd like to implement something to make it faster so I
wondered if there is any MS SQL Server API that would make the
cryptography transparent for the application.
Not natively I believe. If you're using SQL Server 2005 you could embed
an assembly in to the database. This assembly that could do the
encryption "closer" to the database and doing the encryption here would
probably allow greater throughput.
The reference that I cited describes various things that are
implemented natively; eg. managing keys, creating certificates,
encrypting & decrypting fields, & so on. Why would you need an external
assembly?
TC (MVP MSAccess) http://tc2.atspace.com
You don't specify if you're using 4.21a, 6.0, 6.5, 7.0, SQL 2005 or SQL
2000. If SQL 2005, look into the built-in Transact-SQL encryption
functionality. If SQL 2000, look into this: http://www.sqlservercentral.com/colu...olkitpart1.asp.
If SQL 7.0 or lower, upgrade ASAP.
"Sav" <sa*****@gmail.comwrote in message
news:11**********************@i3g2000cwc.googlegro ups.com..
Hi,
I'm developing a software that makes a lot of access to a MS SQL
Server. All information in the data base is decrypted and encrypt upon
each read and write access -- this is causing a big overload of CPU in
my system. I'd like to implement something to make it faster so I
wondered if there is any MS SQL Server API that would make the
cryptography transparent for the application. Another solution would be
setting up an encrypted file system so I could unmount
the device when the application finishes. The last one is not optimal
though, since the encrypted device would have read access while
mounted.
So, I'd like to get some suggestions about tools, api's and probably
other better solutions. Any information would be of great help.
The software runs on Windows 2k, Windows XP, Windows 2k3, Windows NT
and probably would have to be ported to Vista.
thanks a lot in advance for any help,
s This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics |
by: Andrzej |
last post by:
Hi,
I have to figure out why we have a problem with special characters in
encrypted usernames and passwords.
Case:
Username: r&bgeorge
Password: tigger
|
by: Jener Silva |
last post by:
I have a Windows 2003 Enterprise server hosting my web service and it has
the System cryptography set to run in FIPS complaint mode.
When I try to run my asp.net application, which resides on...
|
by: Jener Silva |
last post by:
I have a Windows 2003 Enterprise server hosting my web service and it has
the System cryptography set to run in FIPS complaint mode.
When I try to run my asp.net application, which resides on...
|
by: EP |
last post by:
I have a WSE server app that uses the <cryptography> element in the
configuration (seen below). This worked perfectly in WSE sp1, but when I
upgraded to SP2 and then to SP3, I get the following...
|
by: muthu |
last post by:
Hi,
I have two web applications running on my machine.The
application is developed using asp.net 1.1 and vb.net.When i try to run
both the applications in the same browsers, i get the following...
| |
by: landers |
last post by:
Dear Fellow Developers,
There is a little bit of code in my web app that encrypts a string, converts
it to base64 string and uses it as a querystring parameter. It then
redirects to this new...
|
by: =?Utf-8?B?ZGF2aWQ=?= |
last post by:
Hi, everybody here.
I am implementing data encryption/decryption, and try to use
System.Security.Cryptography.TripleDESCryptoServiceProvider.
But I can not find it in MS Visual Studio when I...
|
by: Eric Simmons |
last post by:
Hello,
I am trying to run a .NET 2.0 application that I developed and I am
getting the following error:
Key not valid for use in specified state
I am attempting to retrieve the...
|
by: tutorialwebs |
last post by:
Applied cryptography text books
http://www.365x24live.com/Applied%20Cryptography/ewtoc.html
http://www.365x24live.com/Applied%20Cryptography/ewtoc.html...
|
by: marktang |
last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
|
by: Hystou |
last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can...
| |
by: Oralloy |
last post by:
Hello folks,
I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>".
The problem is that using the GNU compilers,...
|
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
|
by: Hystou |
last post by:
Overview:
Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows...
|
by: tracyyun |
last post by:
Dear forum friends,
With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each...
|
by: agi2029 |
last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing,...
|
by: adsilva |
last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
| |
by: muto222 |
last post by:
How can i add a mobile payment intergratation into php mysql website.
| |