Archive for category: Security

Why you should use SQL Server contained availability groups to save time – and why consultants may not tell you about them

29. April 2025/0 Comments/in HADR, AlwaysOn, Security

SQL Server security admins, attention: Auditing is missing attempts to change permissions, leading to repudiation and miss elevation attempts

10. February 2025/0 Comments/in Security

The challenges for least privilege: When sysadmin is still required in Microsoft SQL Server

6. February 2025/0 Comments/in Security

Protecting database data at rest: Transparent Data Encryption, Backup Encryption or Always Encrypted

16. January 2025/4 Comments/in Encryption, Security

Use TLS 1.2 and trusted certificates to encrypt data in transit for all SQL Servers, including development environments

25. November 2024/0 Comments/in Security

Using Extended Events for Tracing SQL Server and Azure SQL DB in compliance with Principle of Least Privilege – Example role separation

24. September 2024/0 Comments/in Extended Events, Security, Tracing & Monitoring

My 7 wishes for access control in SQL Server and Azure SQL security

27. August 2024/1 Comment/in Miscellaneous, Security

On resigning from my role as a Program Manager for Security in Microsoft Azure Data

15. May 2024/0 Comments/in Life, Security

The Need-to-know security principle

3. February 2021/0 Comments/in Encryption, Security

Principle of Least Privilege (POLP)

1. February 2021/0 Comments/in Schemas, Security