NetLib Encryptionizer for SQL Server
Securing sensitive data or meeting the new compliance standards (HIPPA Omnibus, PCI, FIPS 140-2), NetLib's leading data protection solution, Encryptionizer, is an easy-to-use and deploy, flexible architecture securing data in physical, virtual and cloud infrastructures. It requires no administrative overhead while increasing ROI through enhanced protection of customer data and your own IP.
Encryptionizer delivers server-side data encryption for Microsoft SQL Server databases and columns. It provides an additional layer of security on top of Windows security and SQL Server security, in case perimeter defenses are breached. It secures data on servers as well as on backup media. Combined with Encryptionizer for SQL Express, Encryptionizer secures distributed databases all the way down to the workstation or laptop. It supports SQL Server (2000-2014), Enterprise, Standard, Web, Workgroup and Express Editions. It is also a cost effective alternative to SQL TDE. See our FAQ's for more information.
Encryptionizer delivers two types of security for SQL Server: automatic transparent database encryption and column-level encryption. These two types of encryption are available separately or can be seamlessly combined to provide the benefits of both.
Automatic Transparent Database Encryption
Transparent database encryption has one simple purpose: to make databases and backups unusable if they are stolen, copied, downloaded, lost, or otherwise compromised. It provides transparent, on-the-fly encryption for an entire database. Data is never decrypted on disk, only in memory as requested by SQL Server. In addition, data is automatically encrypted when written back to disk. And all of this happens without requiring changes to existing applications that connect to SQL Server. If you have encrypted backups, no one will be able to restore the encrypted backups anywhere else.
Encryptionizer with Transparent Database Encryption is transparent, easy to use, maintenance- free, requires no user intervention, developer friendly and can usually be deployed in a couple of hours. There are programming APIs available for encrypting/decrypting data-bases and non- database files. More detailed information on API's. These are useful if you are planning to distribute encrypted databases, files, or other digital content to workstations, laptops, or other servers (e.g., connected by LAN, over the internet, or via CD).
Column Level Encryption
Column encryption (Col-E) can be deployed in combination with (or depending on your requirements, instead of) transparent database encryption. Encryptionizer with Col-E protects specific columns from users/groups who normally need access to the underlying table.
It supports repeating values protection (RVP) -- the ability to mask the occurrence of frequently repeating values such as salaries, PIN's, and test scores and can be implemented one of two ways, or a combination of both:
Col-E Manager - utilizes a point-and-click interface that allows you to quickly set up column encryption that in most cases can be transparent to existing applications. The Col-E Manager allows you to encrypt a column and specify the groups of users that are allowed to view the encrypted data through the use of database roles.
Col-E APIs - allows you to incorporate encryption functions into your applications directly and are extremely easy to use in SQL 2000-2014. They can be utilized anywhere built in SQL functions are used, including views, triggers, procedures, user-defined functions, jobs, and in- line SQL commands.