Hello all-

I am wondering about encrypting data in a database. Basically, I am wondering if data in MS-SQL, Sybase, and Oracle should be encrypted within and if it should be encrypted there or when going across the network. Or both? When questioning our db people - they say it can be - but they take a performance hit with all the requests the systems get and having to decrypt/encrypt. So basically - they don't encrypt - anything. *Big breath*

Also - who in your opinion(s) should have access to the various DB utilities? I am thinkin the DBAs only - but our DB people also have some applications people that have access to various utilities - don't know which ones yet, as I am still investigating - and our front line help desk. That does not sound good to me - so thoughts on this as well.

I am going off to google and ask some more people here, but I just thought to stop here quick to ask the experts before I have a conniption about the encryption issues me'ah.

TIA.