http://blogs.msdn.com/raulga/archive/2007/05/09/dynamic-sql-and-digital-signatures-in-sql-server-2005.aspxAs I already mentioned, dynamic SQL is a quite powerful, but also quite dangerous. In SQL Server 2005 we introduced a new feature that is also quite powerful and when used properly can be quite useful; but it is important to learn and understand any suchen-USCommunityServer 2.1 SP1 (Build: 61025.2)http://blogs.msdn.com/raulga/archive/2007/05/09/dynamic-sql-and-digital-signatures-in-sql-server-2005.aspx#2525744Thu, 10 May 2007 19:29:39 GMT91d46819-8472-40ad-a661-2c78acb4018c:2525744Adam Machanic<P>Great timing on this post -- I'm doing a webcast on this topic tomorrow for MSDN:</P> <P><A href="http://msevents.microsoft.com/CUI/WebCastEventDetails.aspx?EventID=1032334738" target=_new rel=nofollow>http://msevents.microsoft.com/CUI/WebCastEventDetails.aspx?EventID=1032334738</A></P>http://blogs.msdn.com/raulga/archive/2007/05/09/dynamic-sql-and-digital-signatures-in-sql-server-2005.aspx#2549660Fri, 11 May 2007 19:52:59 GMT91d46819-8472-40ad-a661-2c78acb4018c:2549660Pythian Group Blog » Log Buffer #44: a Carnival of the Vanities for DBAs<p>PingBack from <a rel="nofollow" target="_new" href="http://www.pythian.com/blogs/477/log-buffer-44-a-carnival-of-the-vanities-for-dbas">http://www.pythian.com/blogs/477/log-buffer-44-a-carnival-of-the-vanities-for-dbas</a></p> http://blogs.msdn.com/raulga/archive/2007/05/09/dynamic-sql-and-digital-signatures-in-sql-server-2005.aspx#2698935Thu, 17 May 2007 20:18:00 GMT91d46819-8472-40ad-a661-2c78acb4018c:2698935creif<P>Using your excellent samples I have pretty much worked out everything that I need to encrypt one column, including maintaining both the </P> <P>encrpyted data and a one way hash for searches. &nbsp;I have a view which decrypts the data properly when the symmetric key has been opened (and obviously returns null when the key is not open).</P> <P>I want the view to return the decrypted data only when the user is accessing the database from a single application. &nbsp;This application maintains a single database connection per session. &nbsp;My thought was to open the key when the database connection is established by the application and close it when the application exits, thereby granting access only through the application. &nbsp;Is that an acceptable practice?</P> <P>If I do that, should I protect the key with a password that is then compiled in the application so that I can open the key? &nbsp;This means that every installation will have a key protected by the same password. &nbsp;Or is there a better way to do that? &nbsp;Does this post on digital signing have any relevance to my situation?</P>http://blogs.msdn.com/raulga/archive/2007/05/09/dynamic-sql-and-digital-signatures-in-sql-server-2005.aspx#2705695Fri, 18 May 2007 07:48:27 GMT91d46819-8472-40ad-a661-2c78acb4018c:2705695raulga<p> &nbsp; Thanks a lot for your comments. I am glad I am able to help.</p> <p> &nbsp; &nbsp;We have discussed this particular topic (security based on application identity) in great detail in the forum. Below is a link to that particular thread. <a rel="nofollow" target="_new" href="http://forums.microsoft.com/MSDN/ShowPost.aspx?PostID=793129&amp;SiteID=1">http://forums.microsoft.com/MSDN/ShowPost.aspx?PostID=793129&amp;SiteID=1</a></p> <p> &nbsp; I invite you to continue the discussion in the forum so more people have a chance to read and benefit from it.</p> <p> &nbsp;Thanks a lot,</p> <p>-Raul</p>http://blogs.msdn.com/raulga/archive/2007/05/09/dynamic-sql-and-digital-signatures-in-sql-server-2005.aspx#7293197Tue, 29 Jan 2008 01:06:31 GMT91d46819-8472-40ad-a661-2c78acb4018c:7293197web<p>web website domain website <a rel="nofollow" target="_new" href="http://manieboddy.oceansfree.com/">http://manieboddy.oceansfree.com/</a> web</p>