Implementing Transparent Data Encryption

Like many encryption scenarios, TDE is dependent on an encryption key. The TDE database encryption key is a symmetric key that secures the encrypted database. The DEK is protected using a certificate stored in the master database of the SQL Server instance where the encrypted database is installed.

Implementing TDE for a specific database is accomplished by following these steps:

Image Create a master key.

Image Create or obtain a certificate protected by the master key.

Create a database encryption key and protect ...

Get Microsoft SQL Server 2014 Unleashed now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.