SQL Server 2016 TDE ( Transparent Data Encryption)
- Transparent Data Encryption is designed to protect data by encrypting the physical files of the database, rather than the data itself
- These physical files include the database file (.mdf), the transaction log file (.ldf) and the backup files (.bak).
- Its main purpose is to prevent unauthorized access to the data by restoring the files to another server.
- With Transparent Data Encryption in place, this requires the original encryption certificate and master key.
- The protection of the database files is accomplished through an encryption key hierarchy that exists externally from the database in which TDE has been enabled.
- The service master key exists at the instance level. The database master key and certificate at the Master database are used to protect the database encryption key that is located at the user database
- The dependency upon the encryption key hierarchy in the Master database, as well as the instance, prevents the database files from being restored to an instance of SQL Server that does not contain the referenced keys.
- This level of protection is a great comfort if a backup tape that contains your database backup files were to fall into the wrong hands.
- Encryption of the backup files prevents the plain text values that are contained within the database being disclosed by opening the backup files using a text editor and scanning its contents.
Benefits
- Implementation of TDE does not require any schema modifications
- Since the physical data files and not the data itself are encrypted, the primary keys and indexes on the data are unaffected, and so optimal query execution can be maintained
- The performance impact on the database is minimal
- Performance degradation for TDE to be 3-5%, while cell-level encryption is estimated to be 20-28%
- The decryption process is invisible to the end user
- SQL Server engine handles all of the encryption and decryption work
- TDE uses the AES and 3DES encryption algorithms, and the encryption and decryption operations are run on background threads by SQL Server
Disadvantages
- TDE does not provide the same granular control, specific to a user or database role, as is offered by cell-level encryption
- TempDB database is also encrypted even single database in enabled as TDE
Comments
Prancer is a pre-deployment and post-deployment multi-cloud validation framework for your Infrastructure as Code (IaC) pipeline and continuous compliance in the cloud.