SQL Audit Buffering and Error Handling

I’ve had several questions about how exactly the buffering and error handling works in SQL Audit and thought it would help to give some more detail. For starters, let’s break down the event firing workflow into the following stages: 1. Permission Check/Audit Check 2. Filling out the event 3. Distribute event to Audit Extended Event… Read more

SQL Server 2008 Security Whitepapers

I just wanted to call attention to a few SQL Server 2008 related security papers written or reviewed by our team: Engine Separation of Duties for the Application Developer – discusses how to build applications that support role separation. Database Encryption in SQL Server 2008 Enterprise Edition – in depth treatise on Transparent Database Encryption. Cryptography in… Read more