How to Integrate Third Party Cryptographic Service Provider (CSP) within SQL Server 2008
Hi,
I have come to know from the SQL Server 2008 documentation that the Hardware Security Modules (HSM) can be used for Cryptographic Key storage within SQL Server to increase the level of protection of data at rest. We provide a HSM Solution which protects cryptographic keys and performs cryptographic operations onboard. The aforesaid fact about SQL Server and HSMs motivates us to test our HSM product with the SQL Server. Our HSM solution provides SDK for applications/servers to communicate with the HSM hardware. The SDK basically consists of two libraries:
-MS CAPI Interface (CSP Library)
-PKCS#11 Interface (cryptoki Library)
I have found this forum best for such kind of discussion. So could you guys on the list let me know:
- How the CSP or PKCS#11 library can be integrated with the SQL Server for HSM box to protect the cryptographic keys?
- Would I need to write a new Interface/Wrapper for this integration, If yes please help?
Hope to have ideas/suggestion from the Techies on the list!!!
Thanks in advance.
Harsh.
