SQL server backup encryption Process

in #sql7 years ago

SQL server backup encryption Process

over the weekend I learned SQL server backup encryption Process. I though that
I share my experience with community. I had many questions while
I was going through the process. It may help others

This #encryption process apply for both User and System databases.

SQL Server has a hierarchical encryption each layer in the hierarchy encrypts the layer below.

1st layer is the Service Master Key (SMK). Service Master Key is generated automatically during the SQL Server install .

2nd layer is a Database Master Key (DMK) of the master database. Database Master Key is unique to each system master database for each SQL Server instance. Database Master Key is encrypted using the Service Master Key.

3rd level in the hierarchy is a certificate that can contain a private key that is protected by the Database Master Key for encrypting the backup of the database.

Part 2 will soon be posted