Greetings,
* Ron (ronljohnsonjr@gmail.com) wrote:
> TDE, though, protects against hackers who break in and try to slurp out as
> much data as possible. Still pretty unlikely, but within the realm of
> reason.
That's an unfortunate misconception- TDE won't help with that as the key
will be in the server's memory and therefore accessible to the attacker.
Certainly, if the server is doing the decryption and is compromised in
an online fashion, then the attacker is going to have access to that
data.
Thanks,
Stephen