https://andreas-wolter.com/wp-content/uploads/2025/09/Auditing-bug.jpg3421028Andreas Wolterhttps://andreas-wolter.com/wp-content/uploads/2025/02/Andreas-Wolter-Data_Security_Architect-6.pngAndreas Wolter2025-09-09 06:30:062025-09-09 12:42:34Bug in Auditing allows for undetected Data Exfiltration by low privileged user
https://andreas-wolter.com/wp-content/uploads/2025/02/2502-SQL-Audit-bug-permissions-1.jpg189576Andreas Wolterhttps://andreas-wolter.com/wp-content/uploads/2025/02/Andreas-Wolter-Data_Security_Architect-6.pngAndreas Wolter2025-02-10 19:53:042025-08-06 22:01:06SQL Server security admins, attention: Auditing is missing attempts to change permissions, leading to repudiation and miss elevation attempts
https://andreas-wolter.com/wp-content/uploads/2025/02/2025-02_sysadmin_required.jpg811042Andreas Wolterhttps://andreas-wolter.com/wp-content/uploads/2025/02/Andreas-Wolter-Data_Security_Architect-6.pngAndreas Wolter2025-02-06 18:55:132025-02-07 03:03:21The challenges for least privilege: When sysadmin is still required in Microsoft SQL Server
https://andreas-wolter.com/wp-content/uploads/2025/01/202501-Comparison-Protection-TDE-BackupEncryption-AlwaysEncrypted-4.jpg7771200Andreas Wolterhttps://andreas-wolter.com/wp-content/uploads/2025/02/Andreas-Wolter-Data_Security_Architect-6.pngAndreas Wolter2025-01-16 06:28:142025-01-16 19:35:48Protecting database data at rest: Transparent Data Encryption, Backup Encryption or Always Encrypted
https://andreas-wolter.com/wp-content/uploads/2024/11/2411_LinkedInPost_MichaelHoward_TLS.jpg571576Andreas Wolterhttps://andreas-wolter.com/wp-content/uploads/2025/02/Andreas-Wolter-Data_Security_Architect-6.pngAndreas Wolter2024-11-25 19:26:192024-11-25 22:14:39Use TLS 1.2 and trusted certificates to encrypt data in transit for all SQL Servers, including development environments
https://andreas-wolter.com/wp-content/uploads/2024/09/2024-09_XEvent_Permissions_Server.jpg458766Andreas Wolterhttps://andreas-wolter.com/wp-content/uploads/2025/02/Andreas-Wolter-Data_Security_Architect-6.pngAndreas Wolter2024-09-24 19:48:302024-09-25 07:03:38Using Extended Events for Tracing SQL Server and Azure SQL DB in compliance with Principle of Least Privilege – Example role separation
https://andreas-wolter.com/wp-content/uploads/2024/08/202408_Ownership_Chaining_Explicit_Permission_proposal.jpg361954Andreas Wolterhttps://andreas-wolter.com/wp-content/uploads/2025/02/Andreas-Wolter-Data_Security_Architect-6.pngAndreas Wolter2024-08-27 22:20:122024-09-07 21:25:16My 7 wishes for access control in SQL Server and Azure SQL security
https://andreas-wolter.com/wp-content/uploads/2021/01/POLP_1_Select_on_Schema.png9752397Andreas Wolterhttps://andreas-wolter.com/wp-content/uploads/2025/02/Andreas-Wolter-Data_Security_Architect-6.pngAndreas Wolter2021-02-01 17:10:012025-07-28 17:17:45Principle of Least Privilege (POLP)
https://andreas-wolter.com/wp-content/uploads/2021/01/Security_wide.png7451800Andreas Wolterhttps://andreas-wolter.com/wp-content/uploads/2025/02/Andreas-Wolter-Data_Security_Architect-6.pngAndreas Wolter2021-01-16 17:00:092025-07-28 19:36:23Introduction into security principles in the context of database systems
