I use my blog for lots of things and for once here is something from my day job.
I was asked to investigate how Microsoft had implemented PKI within SQL 2005. Much to my surprise the SQL implementation does not integrate with an external certificate service. SQL has no mechanism to check a CRL within SQL. Certificates have been implemented as a convenient way to distribute keys within SQL not as a means of none repudiation/authentication, perhaps in the next version. . .
No comments:
Post a Comment