With SQL Server 2008, it is easy to set up Secure Sockets Layer (SSL) encrypted client/server communication over all protocols. The SNAC net-library handles the tasks of encryption and decryption on both the server and client ends. (Note that this process does cause a slight decrease in performance.) Setting it up requires both server-side and client-side configuration changes; this section covers only the client-side changes in detail.
SQL Server 2008 enables encryption using two types of certificates:
• Certificates generated by and obtained from an external certification authority such as VeriSign
• Certificates generated by SQL Server 2008 (known as self-signed certificates)
The bit strength of the encryption (40-bit ...