Content deleted Content added
Smcauliffenz (talk | contribs) m →Microsoft SQL Server TDE: Added date to reference. |
Smcauliffenz (talk | contribs) m →Microsoft SQL Server TDE: Date correction |
||
Line 20:
During database backups, [[Data_compression|compression]] occurs after encryption. Due to the fact that strongly encrypted data cannot be significantly compressed, backups of TDE encrypted databases require additional resources.
To enable automatic booting, SQL Server stores the lowest level encryption keys in persistent storage (using the [[Data_Protection_API|DPAPI]] store). This presents a potential security issue because the stored keys can be directly recovered from a live system or from backups and used to decrypt the databases <ref>Simon McAuliffe, [http://simonmcauliffe.com/technology/tde/ "The Anatomy and (In)Security of Microsoft SQL Server Transparent Data Encryption (TDE)"],
== See also ==
| |||