You are creating a database that will store usernames and passwords for an application.
You need to recommend a solution to store the passwords in the database.
What should you recommend?
More than one answer choice may achieve the goal. Select the BEST answer.
A.
One-way encryption
B.
Encrypting File System (EFS)
C.
Transparent Data Encryption (TDE)
D.
Reversible encryption
Explanation:
* Transparent Data Encryption (TDE) is a special case of encryption using a symmetric key.
TDE encrypts an entire database using that symmetric key called the database encryption
key. The database encryption key is protected by other keys or certificates which are
protected either by the database master key or by an asymmetric key stored in an EKM
module.
* SQL Server provides the following mechanisms for encryption:
Transact-SQL functions
Asymmetric keys
Symmetric keys
Certificates
Transparent Data Encryption
Answer A: One way encryption seems to be the correct answer. TDE do not encrypt passwords, it encrypts database files.
Passwords are always to be one-way. It’s unethical and often illegal to store passwords in any format that can be reversed. It is A. In the exam, it might be C, though. The exam does often have errors.
Exam doesn’t have error, people answering these questions have errors.
It is answer A
http://www.sswug.org/articles/viewarticle.aspx?id=18250
Option A is right
It’s A
See https://www.mssqltips.com/sqlservertip/4037/storing-passwords-in-a-secure-way-in-a-sql-server-database/
Agree. Answer is A and by One-way “encryption” they mean hash. Don’t forget the salt 🙂
I consider that A is correct