7

I'm using SharePoint 2013 with SQL Server 2012 as persistence layer. I need to encrypt the data stored in the database. I stumbled upon the SQL Server feature Transparent Data Encryption (TDE).

What will happen to the files (Office Documents) from the document libraries, when TDE is used? Are the files encrypted also or will only tables be encrypted?

Michael Green
25.3k13 gold badges54 silver badges100 bronze badges
asked Jun 23, 2015 at 8:57

2 Answers 2

3

The files are stored in a blob in the sharepoint database and as TDE encrypts all the pages in the database all the files will be encrypted there within.

It's important to notice that while the database is mounted on the server the database server will serve the files unencrypted to the Sharepoint application server and it's clients.

The Sharepoint binary cache will store them unencrypted as well as all the clients. You are only encrypting the data at rest on the SQL Server when using TDE.

You can add to the security by using encrypted connections to the database server and HTTPS to connect to the Sharepoint application but after the files leave the database storage they will be unencrypted.

answered Jun 23, 2015 at 10:10
3

Even if you configured RBS to use FILESTREAM, TDE does not apply to FILESTREAM:

Transparent Data Encryption and FILESTREAM DATA
FILESTREAM data is not encrypted even when TDE is enabled.

Michael Green
25.3k13 gold badges54 silver badges100 bronze badges
answered Jun 23, 2015 at 10:11

Your Answer

Draft saved
Draft discarded

Sign up or log in

Sign up using Google
Sign up using Email and Password

Post as a guest

Required, but never shown

Post as a guest

Required, but never shown

By clicking "Post Your Answer", you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.