Manage keys for Always Encrypted with secure enclaves
Applies to: SQL Server 2019 (15.x) and later - Windows only Azure SQL Database
Always Encrypted with secure enclaves extends key management for Always Encrypted by introducing enclave-enabled keys:
- Enclave-enabled column master key - a column master key that is created with the
ENCLAVE_COMPUTATIONS
property specified in the column master key metadata object inside the database. - Enclave-enabled column encryption key - a column encryption key that is encrypted with an enclave-enabled column master key. Only enclave-enabled column encryption keys can be used for computations inside a server-side secure enclave.
The general guidelines and processes for managing Always Encrypted keys apply to managing enclave-enabled keys.
Managing keys
The following articles discuss the aspects specific to managing enclave-enabled keys.
Next steps
See also
Feedback
https://aka.ms/ContentUserFeedback.
Kommer snart: I hele 2024 udfaser vi GitHub-problemer som feedbackmekanisme for indhold og erstatter det med et nyt feedbacksystem. Du kan få flere oplysninger under:Indsend og få vist feedback om