web
You’re offline. This is a read only version of the page.
close
Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Microsoft Dynamics GP (Archived) / Encryption of data at ...
Microsoft Dynamics GP (Archived)

Encryption of data at rest, i.e. Social Security #'s and bank info in GP

(0) ShareShare
ReportReport
Posted on by PaulaP

What are other organizations doing to encrypt sensitive data stored in GP such as social secuirty numbers, bank account numbers, etc.  I can't believe that GP (we are running GP10) doesn't have built in capabilities to do this, and it doesn't appear that the latest (GP 2010) does either.  I know SQL 2008 R2 can provide help on this, but I'd much rather have it handled by GP itself.  Any feedback?  Thanks!

*This post is locked for comments

I have the same question (0)
  • Suggested answer
    Randal Mayer Profile Picture
    Randal Mayer 155 on at

    Paula,

    With the encryption capabilities SQL Server offers, it is SQL Server which most having data protection concerns are going towards.  Encrypting at the database level using SQL Server can provide protection for the entire database, not specific types of data or fields within Dynamics GP.  If you desire differently, I encourage submitting a Product Suggestion via CustomerSource and to voice your interest in GP application encryption at events like Convergence.  

    The following is taken from the Database Encryption in SQL Server 2008 Enterprise Edition web page on MSDN:

    "Transparent data encryption (TDE) is a new encryption feature introduced in Microsoft® SQL Server™ 2008. It is designed to provide protection for the entire database at rest without affecting existing applications. Implementing encryption in a database traditionally involves complicated application changes such as modifying table schemas, removing functionality, and significant performance degradations. For example, to use encryption in Microsoft SQL Server 2005, the column data type must be changed to varbinary; ranged and equality searches are not allowed; and the application must call built-ins (or stored procedures or views that automatically use these built-ins) to handle encryption and decryption, all of which slow query performance. These issues are not unique to SQL Server; other database management systems face similar limitations. Custom schemes are often used to resolve equality searches and ranged searches often cannot be used at all. Even basic database elements such as creating an index or using foreign keys often do not work with cell-level or column-level encryption schemes because the use of these features inherently leak information. TDE solves these problems by simply encrypting everything. Thus, all data types, keys, indexes, and so on can be used to their full potential without sacrificing security or leaking information on the disk. While cell-level encryption cannot offer these benefits, two Windows® features, Encrypting File System (EFS) and BitLocker™ Drive Encryption, are often used for the same reasons as TDE—they provide protection on a similar scale and are transparent to the user."

    The link to this web page is below

    msdn.microsoft.com/.../cc278098.aspx

  • Community Member Profile Picture
    Community Member on at

    Old thread I know, but its still a valid question.

    application layer encryption protects the data from data loss from users, intentionally or accidently.

    Even a DBA should not have plain text access to customer PII or HR or Employee data.

    Encryption of the data at the app layer is must.

  • Lori J Profile Picture
    Lori J 202 on at

    Note Microsoft Dynamics GP does not encrypt credit card information. If you have to encrypt the credit card information, you must use a third-party solution. To find an independent software vendor (ISV) solution to meet this requirement, visit one of the following Microsoft Web sites, depending on whether you are a partner or a customer.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Neeraj Kumar – Community Spotlight

We are honored to recognize Neeraj Kumar as our Community Spotlight honoree for…

Congratulations to the November Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > 🔒一 Microsoft Dynamics GP (Archived)

#1
Community Member Profile Picture

Community Member 2

#2
mtabor Profile Picture

mtabor 1

#2
Victoria Yudin Profile Picture

Victoria Yudin 1

Last 30 days Overall leaderboard

Featured topics

Product updates

Dynamics 365 release plans