Articles tagged

25 February 2019
25 February 2019

Introduction to SQL Server Security — Part 3

SQL Server supports partially contained databases. This gives you the option of adding database users with a password inside the database. This makes the database easier to move to another instance or participate in an Always On Availability Group. In this article, Robert Sheldon explains how to work with users in contained databases.… Read more
07 January 2019
07 January 2019

Protecting SQL Server Data Using Static Data Masking

In order to protect data and comply with regulations such as the GDPR and HIPAA, databases used by developers and testers must not contain private and sensitive data from production databases. To help DBAs protect data, Microsoft have released a new feature as part of SSMS called Static Data Masking. In this article, Greg Larsen demonstrates how to use this new feature.… Read more
31 December 2018
31 December 2018

Introduction to SQL Server Security — Part 1

Security is often considered the most important of a database administrator's responsibilities. SQL Server has many powerful features for security and protecting data, but planning and effort are required to properly implement them. In this article, the first of a series, Robert Sheldon reviews the many components available to secure and protect SQL Server databases. … Read more
01 November 2018
01 November 2018

Data Security: Nowhere to Hide

In my view, data security is an abstract concept, just as abstract as money, religion and fascination – all devised by humans. And anything that is human-made can be human-destroyed. When it comes to IT and data security, history has proven that pretty much anything can be cracked, taken, reshuffled, altered, refurbished, reheated and re-served. … Read more
19 September 2018
19 September 2018

Fifty Different Ways to Enact Data Privacy Laws?

Now that the GDPR has gone into effect, many are wondering what will happen in the United States. California is the first state to enact similar legislation, called the California Consumer Privacy Act of 2018 (CCPA). In this article, William Brewer explains the history of the law, what it means for companies doing business with California residents, and how it compares to the GDPR.… Read more
30 August 2018
30 August 2018

Security, Compliance, Data Ethics, and Breaking the “Not My Job” Mindset

Security, compliance, and data ethics are related concepts that everyone who works with software should know about, from the help desk to the C-level office… but almost everyone thinks that worrying about these things is someone else’s problem. As data breaches become increasingly common and data privacy regulations pass in more regions, there are increasing … Read more
08 August 2018
08 August 2018

Spoofing Data Convincingly: Credit Cards

0
6
I haven’t seen a SQL Server table with real unencrypted credit card numbers for several years, and I don’t know of any good reasons to have them stored that way. However, I’ve needed them in the past for testing a web application that had to take credit card details. Generating credit cards in a way … Read more