Toad World® Forums

Create symetric Key - too secure


#1

Hi,

  1. Dots instead of password are not very useful for admin ;(

  2. When I open / append script in editor - result is useless for me, because
    there is no password passed to.
    I got something like that:

CREATE SYMMETRIC KEY [test1] AUTHORIZATION [dbo] WITH ALGORITHM = AES_256
ENCRYPTION BY PASSWORD =
Unfortunately, no value is passed to variable


Butter

int_1.jpeg
int_1.jpeg


#2

Hi Motyl,

Suppose you created symmetric key. Will you be able to get its password from
metadata by querying some system view or by any other way?

Igor.
int_1.jpeg


#3

[…]
Suppose you created symmetric key. Will you be able to get its password from
metadata by querying some system view or by any other way?

I do not know. I have not performed such tests.
But the main issue is, that I input password manually to corresponding edit, so
application knows it

But what is tool for creating sql code if I can not use that code - at least
without additional work?

[…]

  1. When I open / append script in editor - result is useless for me, because
    there is no password passed to.
    I got something like that:

CREATE SYMMETRIC KEY [test1] AUTHORIZATION [dbo] WITH ALGORITHM = AES_256
ENCRYPTION BY PASSWORD =
Unfortunately, no value is passed to variable
[…]


Butter


#4

I don’t know either. Even more, I think there is no way to read this
password at all (OK, let’s say at least under normal circumstances). It
means we cannot submit this password for editing in either Alter dialog or in
Send To > Editor as Script action. What’s left? Only Create dialog
where you blindly submit password when creating a key. But isn’t it a
common practice when working with passwords?

That said I don’t quite understand what you mean by “ But what is
tool for creating sql code if I can not use that code - at least without
additional work? ”. Can you please clarify?

Thanks,

Igor.


#5

Witam!

W liście datowanym 3 lutego 2011 (17:46:09) napisano:

I don’t know either. Even more, I think there is no way to read this
password at all (OK, let’s say at least under normal circumstances). It
means we cannot submit this password for editing in either Alter dialog or in
Send To > Editor as Script action. What’s left? Only Create dialog
where you blindly submit password when creating a key. But isn’t it a
common practice when working with passwords?

That said I don’t quite understand what you mean by “ But what is
tool for creating sql code if I can not use that code - at least without
additional work? ”. Can you please clarify?

Ok. step by step:

a. opening ‘create symmetric key’ dialog

b. adding name

c. add encrypting mechanism

c.1. source for encryption: password

c.2. entering and confirming password

d. pressing ok - key is created [using password from c.1]

If instead of d. go to ‘sql script’ and then press 'open [or append] script in
editor

I get a script I can’t use - there is no password set

By additional work I mean I have to add [type again] password in editor

about blinding password - ok, but sometimes it is possible to view hidden text
to check if it is correct.

Butter


#6

Hmm…

I’m just curious, do you want to say that you can do something in Editor
that you cannot do with Create dialog? Otherwise, this whole step of going to
Editor seems a bit excessive.

About hiding password while typing - that is why you submit it twice.

Thanks,

Igor.


#7

Hmm…

I’m just curious, do you want to say that you can do something in Editor
that you cannot do with Create dialog? Otherwise, this whole step of going to
Editor seems a bit excessive.

About hiding password while typing - that is why you submit it twice.

[…]

no, I just say: I’m trying to script [using functionality you provide] TO editor
something I’m doing with Create Dialog. And Script does not work.

I do not expect I will be able to retrieve security information for existing
keys.

I’m just trying to use this facility to generate script for key creation without

looking for command syntax.

But EOT [at least for me] :wink:

Butter