Transparent Data Encryption (TDE) - Encryptionizer vs. SQL Server
SQL Serverís Transparent Data Encryption (TDE) might be an acceptable solution for some users. However NetLib® Encryptionizer® TDE offers some important advantages:
- Provides Transparent Data Encryption and Column Encryption for all versions of SQL Server from 2000 through 2012, and for all editions SQL Server from Express through Enterprise. SQL Server's TDE is available only at the Enterprise edition of SQL Server 2008 and later.
- FIPS 140-2 Validated.
- Easy setup and configuration using point-and-click interface. No programming required.
- Allows split knowledge of keys (PCI DSS)
- Possible to encrypt System databases including the Master database and the Temp database
- Database keys are stored outside of SQL Server, including alternate locations such as network, removable media, etc.
- Encryptionizer's Transparent Data Encryption has virtually no impact on database performance (<1%) on a properly sized server. Some benchmark reports show SQL Server TDE to have greater impact on performance between 5-10%
- Clients have found significant cost savings using SQL Standard and layering Encryptionizer versus purchasing SQL Server 2008 Enterprise Edition or SQL Server 2012 Enterprise Edition.
- Support for FILESTREAMS (SQL Server 2008 and SQL Server 2012).
- Possible to dynamically encrypt non-database objects on the server, such as documents, spreadsheets, PDFs, Multimedia, Access databases, etc.
- Greater flexibility in Key Management, including a rich plug-in capability for integration with specialized hardware, such as HSMs, Hasps, etc. Plugins can be developed by customer or by NetLib. Sample projects provided in C/C++ and C#.Net.
- Can integrate with Encryptionizer Desktop Edition to dynamically encrypt documents, spreadsheets and other result sets brought down to the desktop/laptop.
- Separate from and outside of SQL Server Security