-
Notifications
You must be signed in to change notification settings - Fork 430
Always Encrypted with secure enclaves
Always Encrypted with secure enclaves is a SQL Server 2019 (15.x) feature that extends the existing Always Encrypted feature to enable richer functionality on sensitive data while keeping the data confidential. As of the 8.1.0 release, the Microsoft JDBC Driver for SQL Server adds support for Always Encrypted with secure enclaves.
To use Always Encrypted with secure enclaves, specify the connection string properties:
- enclaveAttestationUrl - the URL for attesting the server-side enclave
- enclaveAttestionProtocol - the enclave attestation protocol (currently only "HGS" is supported)
Note the SQL Server instance must support and be configured to enable Always Encrypted with secure enclaves, otherwise an error will be thrown with the error message:
"The SQL Server instance does not support enclave based computations."
Please see Configure Always Encrypted with secure enclaves for description on how to configure Always Encrypted with secure enclaves.
In addition, please see Tutorial: Getting started with Always Encrypted with secure enclaves using SSMS for a tutorial to get started with secure enclaves using SSMS.