Category : Security - SentryOne Team Blog

Category: Security

Dynamic Data Masking : My Thoughts

Recently I have been exploring Dynamic Data Masking, looking at ways that it can be used and I thought I would share my thoughts with you.

Paul White : The Internals of WITH ENCRYPTION

Paul White (@SQL_Kiwi) discusses the internals of SQL Server's WITH ENCRYPTION clause, and explains why it is not as safe as you might think.

Security Nuggets : Encrypting SQL Server Connections

John Martin starts his security nuggets series, explaining why you should use encrypted connections for SQL Server if you take system security seriously.

SQL Server support for TLS 1.2 – Read This First!

Updated March 2, 2016 – Microsoft has announced support for TLS 1.2 in SQL Server 2008, 2008 R2, 2012, and 2014. However, there are a few issues right now.

T-SQL Tuesday #69 : Always Encrypted Limitations

For this month's T-SQL Tuesday, Aaron Bertrand (@AaronBertrand) talks about a few of the limitations of a new SQL Server 2016 feature, Always Encrypted.

New Vulnerability Affecting SQL Server 2008, 2008 R2, 2012, and 2014

There is a fix to address a remote code execution vulnerability for all supported SQL Server versions. @AaronBertrand shows which build you should install.

Please help me fix a big security loophole

Aaron Bertrand (@AaronBertrand) tries to raise awareness of a significant security issue when creating or altering logins using a password hash. Please vote!

Bad habits : Giving out the sa password

Contributing to T-SQL Tuesday #58, Aaron Bertrand (@AaronBertrand) discusses a few of the reasons people give out the sa password, and what you should do in those cases instead.