Posted: 7/27/2011
Hi,
I have come accross a situation where i want to know the ways of deploying a .net application depending on sql database and ensure
data protection after it has been deployed to the clients.what are the possible ways of carrying this out?
Any help will be appreciated
Can you please clarify a bit more on what you're asking for? Are you talking about security for databases? If so, check out K. Brian Kelley's posts at SQL University about security: http://sqluniversity.org
Posted: 7/28/2011
Yes, I am looking out for ways to secure my database after its deployed.
I do not want the database objects to be accessible to the clients. They
should not be able to see the schema, tables or SP or any other such info.
That's an extremely large topic and solutions can be done in numerous ways. You could segregate items by schema and apply permissions against schema, you could use database roles, application roles, (if you're using Active Directory authentication) use AD groups to help organize users, etc. Just remember that explicit deny permissions override other permissions so if you're playing in that realm be careful.
EDIT: I recommend you check out this book to help your design choices -
Pro SQL Server 2008 Relational Database Design and Implementation (Expert's Voice in SQL Server)
And this book for securing SQL Server -
Securing SQL Server: Protecting Your Database from Attackers
Posted: 8/8/2011
Thank you very much. Will Go through it