Hide this message
Looking to compare latest NPM features with previous versions of NPM?
The NPM new feature summary offers a comparison of new features and improvements offered with this release.
This article describes Transparent Data Encryption (TDE) for NPM.
PHYSICAL DATABASE ENCRYPTION
Transparent Data Encryption (TDE) is designed to protect data at rest by encrypting database files at the page level rather than the individual data items themselves. TDE does not increase the size of an encrypted database. This level of protection prevents the data and backup files from compromise by raw file inspection. The transparency occurs when an authorized user attempts to access the data and the system decrypts the contents of the data with no explicit action on the user’s part to actually perform the decryption. One key to this feature is that Enterprise Edition of SQL Server is required starting from SQL Server 2008. Backups of databases that have TDE enabled are also encrypted by using the database encryption key. As a result, these backups are restored, the certificate protecting the database encryption key must be available. Ensure that backups of the server certificates are readily available otherwise data loss will occur.