Understanding How TDE Works
There are several key things to note about TDE, as follows:
• When enabled on a database, TDE encrypts the database, its associated log file, snapshots, backups, and mirrored database instances associated with that database, if applicable.
• The tempdb for the SQL instance is also encrypted. This can affect other databases on the same instance. It is subsequently recommended to create a dedicated instance for encrypted databases so that they can have their own dedicated tempdb.
• Backup cannot be restored to other servers if those servers do not have a copy of the private key used to encrypt. Stolen database files are subsequently worthless to the thief.
• The overhead associated with enabling TDE is only a 3 percent ...
Get Microsoft SharePoint 2010 Unleashed now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
