Re: is WITH ENCRYPTION now safe in SQL2005?
- From: Erland Sommarskog <esquel@xxxxxxxxxxxxx>
- Date: Sun, 6 Nov 2005 10:20:12 +0000 (UTC)
helmut woess (hw@xxxxxx) writes:
> And it is a shame that microsoft knows about their weak encryption and is
> nothing doing against it. I put a lot of brainpower into my stored procs
> and cannot protect it. So i have to use extended stored procs further on.
There are very dissenting opinions on that in the SQL Server community.
While you and I as software vendors would like to make our procedures
uncrackable, many of my MVP colleagues work as consultants and are
called into sites where they run some third-party package where they
for one reason or another do not get good support from the vendor. When
you are in this situation you are quite happy that you can decrypt the
procedures so you can fix bad code.
There are also a few things to keep in mind about enscryption of stored
procedures. How would a safe encryption method be implemented? SQL Server
must be able to decrypt the encrypted code, so it can parse the code
and build a query plan from it. So even if you use a method with a
private key, SQL Server must have access to that private key. And strong
encryption and decryption with private keys of good length takes
CPU resources. It is not acceptable if takes 30 seconds to compile a
stored procedure - keep in mind that compilation takes place at run-time.
As for using extended stored procedures, this is entirely poor idea. The
overhead for extended stored procedures is considerable, and puts the
stability of SQL Server at risk, as an execution error in an XP brings
down SQL Server. And, anyway, an XP can be disassembled as well.
In SQL 2005 you can write stored proecdures in .Net languages. With CLR
procedures you don't face the stability problems of XP:s, nor the overhead
of context switches and that. But the assemblies can still be disassembled.
And in the Profiler you can see what SQL statements you submit.
And that brings us to the most critical point. Even if the code itself
is encrypted, you have table definitions etc that are visible. And even
in the theoretical case that the code can not be reconstructed, there is so
much information that can be deducted by looking at query plans, that
you can get quite a good idea of what is going on anyway.
So if your aim is to protect your intellectual property, license agreements
is the way to go. WITH ENCRYPTION is not a bad idea, because as I said
in another post, it tells people that they are not supposed to enter here.
I should also add that SQL 2005 does add a whole lot in the encryption
area with certificates, symmetric and asymmetric keys, so if you want to
encrypt data with strong encryption, SQL 2005 has a good support for this.
--
Erland Sommarskog, SQL Server MVP, esquel@xxxxxxxxxxxxx
Books Online for SQL Server SP3 at
http://www.microsoft.com/sql/techinfo/productdoc/2000/books.asp
.
- Follow-Ups:
- Re: is WITH ENCRYPTION now safe in SQL2005?
- From: helmut woess
- Re: is WITH ENCRYPTION now safe in SQL2005?
- References:
- is WITH ENCRYPTION now safe in SQL2005?
- From: helmut woess
- Re: is WITH ENCRYPTION now safe in SQL2005?
- From: Mike Epprecht \(SQL MVP\)
- Re: is WITH ENCRYPTION now safe in SQL2005?
- From: Erland Sommarskog
- Re: is WITH ENCRYPTION now safe in SQL2005?
- From: helmut woess
- is WITH ENCRYPTION now safe in SQL2005?
- Prev by Date: Re: is WITH ENCRYPTION now safe in SQL2005?
- Next by Date: tree structure select problem
- Previous by thread: Re: is WITH ENCRYPTION now safe in SQL2005?
- Next by thread: Re: is WITH ENCRYPTION now safe in SQL2005?
- Index(es):
Relevant Pages
|
