All SQL Server backups are made using transparent data encry

All SQL Server backups are made using transparent data encryption (TDE). The backup process involves first performing a backup to disk storage then copying the disk backup files to tape and storing the tapes at an offsite facility. A courier service picks up each night\'s backup tapes every morning. This morning, shortly after the courier picked up the tapes at your facility, the courier\'s van was stolen. Upper management is concerned that the thief who now has your backup tapes can read highly confidential information from these tapes. What should you tell upper management?

a. yes, the thief can probably figure out a way to read the database data.

b. The thief might be able to read the files on the tapes but transparent data encryption will prevent the thief from making any sense out of the data.

c. Transparent data encryption is transparent to any user of SQL Server. Thus the thief only has to create a SQL Server instance in order to read the data.

d. the data on the tapes is readable because the copy from disk to tape operation removed the transparent data encryption.

Solution

Answer:(b)

Explanation :

I should tell upper management that Transparent Data Encryption(TDE) mechanism encrypts back up data stored in physical storage and gives protection to the keys used for encryption by means of a certificate. This certificate prevents the undesired user i.e the thief to make malicious attacks because the thief will be unable to know the encryption key from the certificate. The certificate is stored in the main data base of the server in case of symmetric key cryptosystem or protected by an asymmetric key in case of asymmetric key cryptosystem.