To use TDE, follow these steps.
1 Create a master key
2 Create or obtain a certificate protected by the master key
3 Create a database encryption key and protect it by the certificate
4 Set the database to use encryption
The following example illustrates encrypting and decrypting the AdventureWorks database using a certificate installed on the server named MyServerCert.
USE master;
GO
CREATE MASTER KEY ENCRYPTION BY PASSWORD = '
go
CREATE CERTIFICATE MyServerCert WITH SUBJECT = 'My DEK Certificate'
go
USE AdventureWorks
GO
CREATE DATABASE ENCRYPTION KEY
WITH ALGORITHM = AES_128
ENCRYPTION BY SERVER CERTIFICATE MyServerCert
GO
ALTER DATABASE AdventureWorks
SET ENCRYPTION ON
GO
No comments:
Post a Comment