SQL Transparent Data Encryption (TDE)

SQL Transparent Data Encryption (TDE) Feature is a native feature of SQL Enterprise edition. Transparent Data Encryption is designed to protect data by encrypting the physical files of the database, rather than the data itself. Its main purpose is to prevent unauthorized access to the data by restoring the files to another server. With Transparent... » read more

Generate PFX (Private Certificates) from Key file and Certificate file using Open SSL

Obtain private key from SSL site.  Download directly from browser. mydomain_com_key.txt Company will send you the cert files in email. mydomain_com.crt Download OpenSSL for Windows https://slproweb.com/products/Win32OpenSSL.htmlC:\Program Files\OpenSSL-Win64\bin\openssl.exe Generate PFX (Private Certificates) from Key file and Certificate file. Provide a password https://www.ssl.com/how-to/create-a-pfx-p12-certificate-file-using-openssl/ Private Key (from download) + Certificate (from email) = PFX file (via OpenSSL) Source:... » read more

Pageant Key List

When you run Pageant, it will put an icon of a computer wearing a hat into the System tray. It will then sit and do nothing, until you load a private key into it. If you click the Pageant icon with the right mouse button, you will see a menu. Select ‘View Keys’ from this menu.... » read more

WinSCP C# Example

Note: If ppk is required by destination FTP site, make sure the ppk is loaded into Pageant first. Else authentication will fail when the .NET app tries to connect to the FTP site, even if “GiveUpSecurityAndAcceptAnySshHostKey = true” is set. Sources: https://winscp.net/eng/docs/library_examples


PuTTY is an SSH and telnet client, developed originally by Simon Tatham for the Windows platform. PuTTY is open source software that is available with source code and is developed and supported by a group of volunteers. You can download PuTTY here. Sources: https://www.putty.org/ https://www.chiark.greenend.org.uk/~sgtatham/putty/latest.html https://www.ssh.com/ssh/putty/download https://winscp.net/eng/downloads.php#putty_additional https://www.ssh.com/ssh/putty/putty-manuals/0.68/Chapter8.html#pubkey

TSQL Encrypt By Pass Phrase

Encrypt data with a passphrase using the TRIPLE DES algorithm with a 128 key bit length. Sources: https://docs.microsoft.com/en-us/sql/t-sql/functions/encryptbypassphrase-transact-sql?view=sql-server-2017

Database Backup Encryption

Restoring encrypted database on another server (using Backup Encryption). Only works with SQL Server 2014 and later. Backup If a certificate is not backed up prior to backing up a database in T-SQL the following warning will be displayed in the results: Warning: The certificate used for encrypting the database encryption key has not been... » read more

FTPS (FTP over SSL) vs. SFTP (SSH File Transfer Protocol)

Security in FTP is provided by employing the SSL/TLS protocol for channel encryption as defined in RFC 2228. The secured version of FTP is called FTPS. The SFTP abbreviation is often mistakenly used to specify some kind of Secure FTP, by which people most often mean FTPS. Another (similar) mistake is that SFTP is thought... » read more