Securing data inside Azure SQL? Any good libraries or DIY?
- by Sid
Azure SQL doesn't support many of the encryption features found in SQL Server (Table and Column encryption). We need to store some sensitive information that needs to be encrypted and we've rolled our own using AesCryptoServiceProvider to encrypt/decrypt data to/from the database. This solves the immediate issue (no cleartext in db) but poses other problems like
Key rotation (we have to roll our own code for this, walking through the db converting old cipher text into new cipher text)
metadata mapping of which tables and which columns are encrypted. This is simple with it's a few but quickly gets out of hand ...
So are there any libraries out there that do this well? Any other resources or design patterns I can be pointed to?