This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 85%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
Hello,
The Backup Encryption page mentions AES 256 can be used for encrypting backups. However, it does not go into IV generation, Cipher block mode, or Authentication of backups. https://learn.microsoft.com/en-us/sql/relational-databases/backup-restore/backup-encryption?view=sql-server-ver15
If AES 256 is selected, is the algorithm AEAD_AES_256_CBC_HMAC_SHA_256 used?
Thanks
A Microsoft extension to the ANSI SQL language that includes procedural programming, local variables, and various support functions.
Hi @ justin-7809,
> If AES 256 select, is the algorithm AEAD_AES_256_CBC_HMAC_SHA_256 used?
No. AES 256 is one Encryption Algorithm for backup encryption. Always Encrypted uses the AEAD_AES_256_CBC_HMAC_SHA_256 algorithm to encrypt data in the database. Refer to Data Encryption Algorithm.
Best regards,
Cathy
Thanks Cathy,
Can you go into a bit more detail about encrypted backups?
In cryptography, "AES 128", "AES 256", etc. alone would only allow a single block of data to be encrypted. A block cipher mode (CBC,CTR, GCM, etc.) would be needed to encrypt multiple blocks of data. Additionally, AES 256 alone doesn't provide authentication checks, meaning the ciphertext can be tampered with. For non-authenticated block cipher modes (CBC, CTR, etc.), it's common to see HMAC being used to verify ciphertext is not modified. These details are not mentioned on the encryption backup page, and are necessary to understand how secure backups are.
This information, as you mentioned, is clearly stated on the "Data Encryption Algorithm" section for the "always encrypted" feature. It's unclear if encrypted backups provide the same level of cryptographic security, as only the ciphers ("AES 128"," AES 256", etc) are stated.
Hi @justin ,
To encrypt a backup we need to configure an encryption algorithm (supported encryption algorithms are: AES 128, AES 192, AES 256, and Triple DES) and an encryptor (a certificate or asymmetric key). It seem security for this backup. I do not know more about encryption algorithm. Please check if below blogs could help you.
Understanding AES 256 Encryption
Advanced Encryption Standard (AES)
Best regards,
Cathy
===============================================
If the response helped, do "Accept Answer" and upvote it.
Thanks Cathy,
I apologize if my question is not clear, but I am not asking about the details of the underlying cipher (AES 128, AES 192, AES 256, etc.). My question is related to which cipher block mode is being used, how IV are generated , and if backups are verified to not be modified through authenticated encryption.
As these questions are pretty technical, can you please consult with the SQL Server engineering/cryptography team for a detailed response?
Thank you.
Hi @justin ,
Maybe you can ask professional engineer for help, https://support.microsoft.com/en-us/assistedsupportproducts