
	Home > Ask the SQL Server Experts > Steven Andres - Security Questions & Answers > Could a join of encrypted SQL Server data have a problem?

Ask The SQL Server Expert: Questions & Answers

EMAIL THIS

Could a join of encrypted SQL Server data have a problem?

EXPERT RESPONSE FROM: Steven Andres

		Pose a Question

		Other SQL Server Categories

		Meet all SQL Server Experts
		Become an Expert for this site

Expert advice on database administration

Digg This! StumbleUpon Del.icio.us

QUESTION POSED ON: 31 December 2007
We are in the process of encrypting various pieces of sensitive information in our SQL Server 2000 tables. For many fields, we are using Blowfish 448 encryption and a concern has arisen about inline SQL statements that contain joins in our ASP scripts. Have you run across any scenarios where there's been a problem with a join of encrypted data? Could there ever be an instance where the encrypted field (encrypted by Blowfish) in one table would be different from the field in another table given the same initial string, which upon executing the join would cause the join to fail?

To be clearer, here is a quick example:

Table A has an encrypted account number column. Table B also has an encrypted account number column (same data). If we have a SQL statement that performs a join on the account number columns in the two tables, is there any possibility that the join will fail because the Blowfish encryption somehow yielded a different value?

To continue reading for free, register below or login

Requires Membership to View

To gain access to this and all member only content, please provide the following information (all fields required):

Email Address:
Create Password:
Confirm Password:

First Name:
Last Name:
Company Name:
Phone:
Country:
Zip/Postal Code:

Job Title:
IT Budget:
Employees at Company:
Role in Purchasing:
Industry:

By joining SearchSQLServer.com you agree to receive email updates from the TechTarget network of sites, including updates on new content, magazine or event notifications, new site launches and market research surveys. Please verify all information and selections above. You may unsubscribe at any time from one or more of the services you have selected by editing your profile or unsubscribing via email.

TechTarget cares about your privacy. Read our Privacy Policy

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	SQL Server security
	Implementing security audit in SQL Server 2008
	Tutorial: Learn SQL Server basics from A-Z
	New security features in SQL Server 2008 leave some work for you
	Can I encrypt and restore a database backup in SQL Server 2005?
	FAQ: How to troubleshoot and grant SQL Server permissions
	Secure SQL Server from SQL injection attacks
	How insiders hack SQL databases with free tools and a little luck
	Sarbanes-Oxley compliance checklist: IT security and SQL audits
	SQL Server source code analysis and management adds database security
	Ten common SQL Server security vulnerabilities you may be overlooking

Steven Andres - Security

Creating a SQL Server user authentication schema

SQL Server connection lost when SA password is changed

Code to connect SQL Server 7.0 to Visual Basic 6.0

How to set SQL Server password for SA login

Creating a login in SQL Server 2000 Enterprise Manager

Set SQL Server password on database in version 7.0

Solve SQL Server permissions and authentication problems

Create username and password for new SQL Server database

Recover password in SQL Server 2000

Protect against SQL Injection by whitelisting

RELATED GLOSSARY TERMS

Terms from Whatis.com − the technology online dictionary

data corruption (SearchSQLServer.com)

data hiding (SearchSQLServer.com)

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.

Browse our Expert Advice
Operating Systems IT Management Networking Database	Security Servers and Storage Applications and Development Career Center

SQL Solutions - SQL Database Design

SEARCH

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2005 - 2009, TechTarget \| Read our Privacy Policy