white papers

Transparent Data Encryption (TDE) – Encryptionizer vs. SQL Server

NetLib® Encryptionizer® TDE offers some important advantages over MS SQL Server’s Transparent Data Encryption (TDE):

  • Provides Transparent Data Encryption and Column Encryption for all versions of SQL Server from 2000 through 2016, and for all editions SQL Server from Express through Enterprise. SQL Server’s TDE is available only at the Enterprise edition of SQL Server 2008 and later.

  • FIPS 140-2 Validated.
  • Easy setup and configuration using point-and-click interface. No programming required.
  • Allows split knowledge of keys (PCI DSS)
  • Possible to encrypt System databases including the Master database and the Temp database
  • Database keys are stored outside of SQL Server, including alternate locations such as network, removable media, etc.
  • Encryptionizer’s Transparent Data Encryption has virtually no impact on database performance (<1%) on a properly sized server. Some benchmark reports show SQL Server TDE to have greater impact on performance between 5-10%
  • Clients have found significant cost savings using SQL Standard and layering Encryptionizer versus purchasing SQL Server 2008 Enterprise Edition or SQL Server 2014 Enterprise Edition.
  • Support for FILESTREAMS (SQL Server 2008 and SQL Server 2014).
  • Supports SQL Server Compressed Backups (WITH COMPRESSION).
  • Possible to dynamically encrypt non-database files and folders on the server, such as documents, spreadsheets, PDFs, Multimedia, Access databases, etc.
  • Greater flexibility in Key Management, including a rich plug-in capability for integration with specialized hardware, such as HSMs, Hasps, etc. Plugins can be developed by customer or by NetLib.
  • Can integrate with Encryptionizer Desktop Edition to dynamically encrypt documents, spreadsheets and other result sets brought down to the desktop/laptop.
  • Separate from and outside of SQL Server Security