SQL Server Compact Database File Security

 

SQL Server Compact (SQL CE) supports password protecting the database file. 

1)      Password is a must to encrypt SQL CE database

2)      When you create a SQL CE database with a password, it automatically gets encrypted

 

Now there have been many questions around on about the strength of the security.  The strength of the database file security lies in the encryption and authentication algorithms used to protect it.  Please keep your question of why authentication algorithm is required and why not just encryption algorithm sufficient enough in your mind only and I hope you agree with me on the fact that some details better be not open for the sake of better securityJ.

Now coming to what exactly are the algorithms used in what version is outlined in a table below:

 

Version

Encryption Mode

Encryption Algorithm

Authentication Algorithm

Provider

3.0

Not Applicable

RC4

MD5

PROV_RSA_FULL MS_ENHANCED_PROV

3.1

Not Applicable

RC4

MD5

PROV_RSA_FULL MS_ENHANCED_PROV

3.5

PPC2003 Compatibility

3DES

SHA1

PROV_RSA_FULL MS_ENHANCED_PROV

3.5

Engine Default

AES128

SHA1

PROV_RSA_AES MS_ENH_RSA_AES_PROV

3.5

Platform Default

If possible use Engine Default else fall back to PPC2003 Compatibility.

4.0

What do you want?

Tell my team