Hi,
I have come to know from the SQL Server documentation that the Hardware Security Modules (HSM) can be used for Cryptographic Key storage within SQL Server to increase the level of protection of data at rest. We provide a HSM Solution which protects cryptographic keys and performs cryptographic operations onboard. The aforesaid fact about SQL Server and HSMs motivates us to test our HSM product with the SQL Server. Our HSM solution provides SDK for applications/servers to communicate with the HSM hardware. The SDK basically consists of two libraries:
-MS CAPI Interface (CSP Library)
-PKCS#11 Interface (cryptoki Library)
I have found this forum best for such kind of discussion. So could you guys on the list let me know:
- How the CSP or PKCS#11 library can be integrated with the SQL Server for HSM box to protect the cryptographic keys?
- Would I need to write a new Interface/Wrapper for this integration, If yes please help?
Thanks in advance.
Harsh.
hi harsh,
We cant do it in SQL Server 2005 as it dosn't support third party CSP. Infact i also want to store my Private key in HSM. I tried but there is no help available from SQL Server 2008 Documents regarding integration of SQL Server with HSM. I would also appraciate if there is some form of document available for Integration. Can anyone from Microsoft SQL Server team help ?
Regards,
Bansal.
|||Wanni is correct: you cannot do this in SQL Server 2005. For discussions and suggestions for future SQL Server versions, you can visit the SQL Server Katmai Security forum.
Thanks
Laurentiu
No comments:
Post a Comment