[dba-SQLServer] Security & encryption (cross posted to access d &dba-sql)

Roz Clarke roz.clarke at donnslaw.co.uk
Tue May 10 11:21:53 CDT 2005


They don't. But I would imagine that if we can demonstrate to them that we
can only see encrypted gobbldegook they will accept the need for us to be
able to see the structure.

-----Original Message-----
From: Charlotte Foust [mailto:cfoust at infostatsystems.com] 
Sent: 10 May 2005 17:10
To: dba-sqlserver at databaseadvisors.com
Subject: RE: [dba-SQLServer] Security & encryption (cross posted to accessd
&dba-sql)


Encryption makes sense, but the idea of trying to locak a dba out of a
database *structure* doesn't.  Someone has to administer the blasted thing.
Do they have anyone in HR qualified to do so and acceptable to the IT
deparment?

Charlotte Foust


-----Original Message-----
From: Roz Clarke [mailto:roz.clarke at donnslaw.co.uk] 
Sent: Tuesday, May 10, 2005 8:47 AM
To: 'dba-sqlserver at databaseadvisors.com'
Subject: RE: [dba-SQLServer] Security & encryption (cross posted to accessd
&dba-sql)


Well if you've got any evidence as to why it's a bad idea I'd appreciate it
- it may help us to see the pitfalls coming even if we can't avoid them!

thanks

-----Original Message-----
From: Charlotte Foust [mailto:cfoust at infostatsystems.com] 
Sent: 10 May 2005 16:14
To: dba-sqlserver at databaseadvisors.com
Subject: RE: [dba-SQLServer] Security & encryption (cross posted to accessd
&dba-sql)


It doesn't really make sense to build a database that the dba is locked out
of.  I've seen discussions of this HR wish before, but I've never seen a
good answer for it.

Charlotte Foust


-----Original Message-----
From: Roz Clarke [mailto:roz.clarke at donnslaw.co.uk] 
Sent: Tuesday, May 10, 2005 2:05 AM
To: 'Access Developers discussion and problem solving';
'dba-sqlserver at databaseadvisors.com'
Subject: [dba-SQLServer] Security & encryption (cross posted to accessd
&dba-sql)


Hi all

This may or may not be slightly OT... We have been asked by our HR
department whether it's possible for us to build a storage facility for
confidential data (such as salary information), that is encrypted and that
neither we nor the network administrators could get into once it's gone
live. Ideally it would be integrated with their current application which is
Access 2002 FE / SQL Server 7.0 BE.

How do I build an encrypted database that I can then lock myself out of
completely?! Without locking everyone else out too (that I've done before). 

Management are willing to spend some money if necessary.

TIA

Roz
_______________________________________________
dba-SQLServer mailing list
dba-SQLServer at databaseadvisors.com
http://databaseadvisors.com/mailman/listinfo/dba-sqlserver
http://www.databaseadvisors.com
_______________________________________________
dba-SQLServer mailing list
dba-SQLServer at databaseadvisors.com
http://databaseadvisors.com/mailman/listinfo/dba-sqlserver
http://www.databaseadvisors.com
-------------- next part --------------

The contents of this message and any attachments are the property of Donns Solicitors 
and are intended for the confidential use of the named recipient only.  They may be legally
 privileged and should not be communicated to, or relied upon, by any other party without 
our written consent.  If you are not the addressee, please notify us immediately so that we 
can make arrangements for its return.  You should not show this e-mail to any person or
 take copies as you may be committing a criminal or civil offence for which you may be
 liable.  The statement and opinions expressed in this e-mail message are those of the 
writer, and do not necessarily represent that of Donns Solicitors.  Although any files attached
 to this e-mail will have been checked with virus protection software prior to transmission, 
you should carry out your own virus check before opening any attachment.  
Donns Solicitors does not accept any liability for any damage or loss which may be caused 
by software viruses...


More information about the dba-SQLServer mailing list