 |
 | Home | Contact Us | FAQ | Search & Site Map | Link to Us |
 | Sign In | Join | Other 45 Sites in Network |
SQL Server Forum / General / Security / November 2008What does CONTROL permissions give on asymmetric key?
I am trying to determine if granting CONTROL permission on an asymmetric key is a good or bad thing? What does CONTROL mean in the context of the key? I want to assign it to a database role that is used by typical users. I need to do this to use the DecryptByKeyAutoAsymKey function in table functions, etc. Thanks for any insight. MDC > I am trying to determine if granting CONTROL permission on an asymmetric > key is a good or bad thing? > > What does CONTROL mean in the context of the key? I want to assign it > to a database role that is used by typical users. I need to do this to > use the DecryptByKeyAutoAsymKey function in table functions, etc. CONTROL means that you can do everything with the object that sysadmin cxan do. Thus, with this permission, the users can drop the key and to all sorts of things to it. An alternative may be to sign the modules where you need to use DecryptByKey with a certificate, and the grant a user created from the certificate CONTROL permission on the key. I have an article on my web site that describes this in detail: http://www.sommarskog.se/grantperm.html.  SignatureErland Sommarskog, SQL Server MVP, esquel@sommarskog.se Links for SQL Server Books Online: SQL 2008: http://msdn.microsoft.com/en-us/sqlserver/cc514207.aspx SQL 2005: http://msdn.microsoft.com/en-us/sqlserver/bb895970.aspx SQL 2000: http://www.microsoft.com/sql/prodinfo/previousversions/books.mspx |
Reply to this Message |
 Sign In
 Join
 My Latest Posts My Monitored Threads My Blog My Photo Gallery My Profile My Homepage Start New Thread Enable EMail Alerts Rate this Thread
|
©2010 Advenet LLC Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.