Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
DaveHackett
Starting Member
1 Post |
 Posted - 2012-05-14 : 14:20:29
|
| I'm looking for strategies or techniques that would allow cascading levels of encryption within a single table.For example, if I flagged each record with an Access Control Level (ACL) field with a rating say from 1-5, I want to be able to restrict users from viewing the encrypted portion of the record based on their ACL level. That's pretty straight forward. I then however also want the encryption to be cascading such that level 1 can only see level 1 records but level 2 can see level 1&2, level 3 = 1,2&3 and so and so on...Given that there is only a 1-1 relationship between encrypting and decrypting, has anyone designed a srategy to deliver this type of functionality?ThanksDaveH |
|
|
AndrewMurphy
Master Smack Fu Yak Hacker
2916 Posts |
Posted - 2012-05-16 : 10:54:57
|
| Experiment with privilige levels for users 1, 2, 4, 8, 16, 32, 2^n, etcA data record with a score of 11 can be viewed by people with any of 1, 2 & 8 priviliges.A data record with a score of 20 can be viewed by people with any of 4 & 16 priviliges.This sort of technique lends itself to "bitmasking" which may saave a couple of bytes (& execution cycles) if required. |
 |
|
|
|
|
|
|
|
Levels of encryption