I just wanted to share a new find for us in the area of developing small apps where encryption is needed with our SQL databases. In our case, we have leveraged the recent addition of .Net web services within Alpha to pull information from a third party vendor. Since we are using their data within our application, our need for an SQL back-end is very limited, and purchasing SQL Server Enterprise Edition just to get the Transparent Data Encryption (TDE) would be like purchasing a Greyhound bus for a family of four. While it would work great, it sure would be expensive to operate. For me, price is only an issue in the absence of value. However, I struggled with the value-to-price ratio for SQL Enterprise within this application. While it may be true that the 1GB of memory may limit SQL Express, we can still upgrade to SQL Standard for less than half of Enterprise and use one of the following add-on encryption modules.
I have found two reliable TDE options that I believe are worth consideration. First, with a simple change to any connection string, you could enjoy very cost effective 128bit AES encryption using DBDefence from ActiveCrypt. It is free up to a 77MG database. It is $369 for databases up to 2GB and $598 unlimited database size. To use this simply add
"A5InitialCommand='OPEN SYMMETRIC KEY DBDX DECRYPTION BY PASSWORD='yourpassword'" to your connection string. I did not know about this undocumented connection string property. Thanks go to Kurt Rayner for informing me of this.
The above is a simple install and literally took me 5 minutes to learn how to use and place in a productive test model. This includes the one change in my Alpha DAO connection string. So far all of my tests have passed with all of my stored procedures and queries. I do not know how this will work with Triggers, and I will not be testing this functionality at this time. If anyone has Triggers to test under this configuration please let me know.
Secondly, I have found Encryptionizer from NetLib. This is a completely transparent encryption option and is another very easy installation. It requires absolutely no application modification. Proper configuration from our server is a total cost of $7400, which is still almost half of the cost of most competitive SQL Server Enterprise quotes I have received. My initial quote for the SQL Server Enterprise edition was $27,840. At $7400 this encryption option is still a great value in my opinion.
I hope one or both of these options can help some of you needing encryption for your data without the huge cost.
I have found two reliable TDE options that I believe are worth consideration. First, with a simple change to any connection string, you could enjoy very cost effective 128bit AES encryption using DBDefence from ActiveCrypt. It is free up to a 77MG database. It is $369 for databases up to 2GB and $598 unlimited database size. To use this simply add
"A5InitialCommand='OPEN SYMMETRIC KEY DBDX DECRYPTION BY PASSWORD='yourpassword'" to your connection string. I did not know about this undocumented connection string property. Thanks go to Kurt Rayner for informing me of this.
The above is a simple install and literally took me 5 minutes to learn how to use and place in a productive test model. This includes the one change in my Alpha DAO connection string. So far all of my tests have passed with all of my stored procedures and queries. I do not know how this will work with Triggers, and I will not be testing this functionality at this time. If anyone has Triggers to test under this configuration please let me know.
Secondly, I have found Encryptionizer from NetLib. This is a completely transparent encryption option and is another very easy installation. It requires absolutely no application modification. Proper configuration from our server is a total cost of $7400, which is still almost half of the cost of most competitive SQL Server Enterprise quotes I have received. My initial quote for the SQL Server Enterprise edition was $27,840. At $7400 this encryption option is still a great value in my opinion.
I hope one or both of these options can help some of you needing encryption for your data without the huge cost.
Comment