1、建库:Test
USE Test;
2、建master Key:
CREATE MASTER KEY ENCRYPTION BY PASSWORD = 'p@ssw0rd';
3、建表:Person
CREATE TABLE Person
(
ContactID INT PRIMARY KEY,
FirstName NVARCHAR(200),
MiddleName NVARCHAR(200),
LastName NVARCHAR(200),
eFirstName VARBINARY(200),
eMiddleName VARBINARY(200),
eLastName VARBINARY(200),
);
4、建证书:
CREATE CERTIFICATE TestCertificate
WITH SUBJECT = 'Adventureworks Test Certificate',EXPIRY_DATE = '10/10/2009';
5、建对称key:
CREATE SYMMETRIC KEY TestSymmetricKey
WITH ALGORITHM = TRIPLE_DES
ENCRYPTION BY CERTIFICATE TestCertificate;
OPEN SYMMETRIC KEY TestSymmetricKey
DECRYPTION BY CERTIFICATE TestCertificate;
6、向表Person中插入加密的数据
INSERT
INTO Person (ContactID,eFirstName,eMiddleName,eLastName)
values(1,
EncryptByKey(Key_GUID('TestSymmetricKey'),'eFirstName'),
EncryptByKey(Key_GUID('TestSymmetricKey'),'eMiddleName'),'eLastName')
)
7、解密6中的数据
UPDATE Person
SET FirstName = CONVERT(varchar,DecryptByKey(eFirstName)),
MiddleName = CONVERT(varchar,DecryptByKey(eMiddleName)),
LastName = CONVERT(varchar,DecryptByKey(eLastName));
8、查看解密后的结果
select Cast(DecryptByKey(eFirstName) as Varchar) FROM Person
9、删除以上的结构
DROP TABLE Person;
CLOSE SYMMETRIC KEY TestSymmetricKey;
DROP SYMMETRIC KEY TestSymmetricKey;
DROP CERTIFICATE TestCertificate;
DROP MASTER KEY;
PS:EXPIRY_DATE是有效时间,要大于当前时间
解密时的数据类型要和DB中对应字段的类型相同,要不就是乱码哦(千辛万苦找出来的)
Ø 如何在保护调用者利益的情况下开打密钥:如果可能,尽量用DecryptByKeyAuto语句代替DecryptByKey语句,使用DecryptByKeyAuto不需要显示地将密钥打开,该语句会自动打开密钥(并在解密后关闭密钥,译者注)
版权声明:本文内容由互联网用户自发贡献,该文观点与技术仅代表作者本人。本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌侵权/违法违规的内容, 请发送邮件至 [email protected] 举报,一经查实,本站将立刻删除。
