John is the owner of Sagevane, LLC and a former Microsoft MVP (2009-2010). He authored the book "Protecting SQL Server Data" and contributed to "SQL Server MVP Deep Dives 2". John was co-founder and past president of IndyPASS and co-founder of IndyTechFest.
In this blog series titled “Crossing the Line,” I will explore the various aspects, concerns, and successes associated with the transition from coder to manager. Reader participation is highly encouraged. I am interested in your stories of experience, challenges, and successes in this regard. Please share in the comment section of the post. Developing a … Read more
Transparent Data Encryption is designed to protect data by encrypting the physical files of the database, rather than the data itself. Its main purpose is to prevent unauthorized access to the data by restoring the files to another server. With Transparent Data Encryption in place, this requires the original encryption certificate and master key. It was introduced in the Enterprise edition of SQL Server 2008. John Magnabosco explains fully, and guides you through the process of setting it up.… Read more
If you are required to use real production data to test applications, any sensitive data should be "disguised" before loading it into the development environment. Although there are tools to generate convincing test data, it occasionally happens that the variances and frequencies within data cannot easily be simulated. In such cases, the DBA should apply one or more of the obfuscation techniques described in this article, extracted from John Magnabosco's excellent new book, Protecting SQL Server Data.… Read more
In this article, taken from Chapter 9 of his new book, Protecting SQL Server Data, John describes how to set a "honey trap" for would-be data thieves, allowing the DBA to identify the precursors of an attack and respond quickly and also to better understand the techniques being used to breach existing security measures.… Read more
“Privacy is not something that I’m merely entitled to, it’s an absolute prerequisite”. – Marlon Brando The battle to secure sensitive personal and business data is a tough one, and the consequences of mishandling sensitive data can be severe. Even more damaging than the lawsuits and fines that can result from regulatory non-compliance is the … Read more