469,167 Members | 1,154 Online
Bytes | Developer Community
New Post

Home Posts Topics Members FAQ

Post your question to a community of 469,167 developers. It's quick & easy.

Hiding Data

Hi,

I am intetrested to know if there is a way to hide the information in a
specific column in my table. SQLServer 200. Something like a password
protection were you only see *****. I have a DBA but want to hide salary
information from him that is stored in the database.

Any suggestions
Thanks
Elmo
Jul 20 '05 #1
3 2198

"elmo" <el**@delphisure.com> wrote in message
news:hv********************@is.co.za...
Hi,

I am intetrested to know if there is a way to hide the information in a
specific column in my table. SQLServer 200. Something like a password
protection were you only see *****. I have a DBA but want to hide salary
information from him that is stored in the database.

Any suggestions
Thanks
Elmo


This isn't possible - a member of the sysadmin role can access all data in
all databases. You can encrypt/decrypt the sensitive information in your
client application using whatever encryption API is available, then just
store the encrypted value in the database table:

http://www.sqlsecurity.com/DesktopDefault.aspx?tabid=22

Simon
Jul 20 '05 #2
I have exactly the same issue.
Our security person wants an audit on all 'select' on 4 tables
containing sensitive data.

Any idea how we can manage to do this???
Jul 20 '05 #3

"Praim Sankar" <pr**************@cogeco.com> wrote in message
news:32**************************@posting.google.c om...
I have exactly the same issue.
Our security person wants an audit on all 'select' on 4 tables
containing sensitive data.

Any idea how we can manage to do this???


One way would be to run a trace, filtered on object name and SELECT. Or
there are commercial products for auditing purposes, such as this one (which
I've never used):

http://www.lumigent.com/products/entegra_sql.html

However, it would be extremely difficult to prevent a determined
administrator from viewing the data - he can disable auditing briefly,
restore a backup to another server without auditing etc. So any technical
solution needs a 'human' part too, ie. good staff, and a clear policy on
data access.

Simon
Jul 20 '05 #4

This discussion thread is closed

Replies have been disabled for this discussion.

Similar topics

8 posts views Thread by F. Da Costa | last post: by
11 posts views Thread by Lorenzo Villari | last post: by
2 posts views Thread by coolwarrior | last post: by
11 posts views Thread by sofeng | last post: by
dmjpro
4 posts views Thread by dmjpro | last post: by
27 posts views Thread by matt | last post: by
1 post views Thread by CARIGAR | last post: by
reply views Thread by zhoujie | last post: by
1 post views Thread by Mortomer39 | last post: by
By using this site, you agree to our Privacy Policy and Terms of Use.