Comments on: SQL SERVER – Stored Procedure WITH ENCRYPTION and Execution Plan

By: Bala

Bala — Tue, 09 Mar 2010 06:03:53 +0000

Hi All,
There are decrypters available in Net to decrypt all our Encrypted SPs..So how to make our logic protected from those decrypters..we have to use our own encription algo (:’( ) or any loop holes are there ?? any idea?

By: Gajanan

Gajanan — Mon, 03 Nov 2008 11:15:59 +0000

Hi Pinal,

I would like to know the performance impact of using temp tables in stored procedures. I believe temp table cause SP recompilation.

I would like to why and when this causes the stored procudre to recompile? I would also like to know the improvement in SQL 2005.

Thank you.

By: Imran Mohammed

Imran Mohammed — Sun, 02 Nov 2008 16:53:13 +0000

Pinal,
Thanks for this Tip.

Worth noting is, this concept works only with SQL Server 2005. I tried doing this in SQL Server 2000. Even if you include With encryption in your stored proc, in SQL Server 2000 you will be able to see the execution plan. Since you did not mention this in your article I thought it will work in both.

@mdma

Main Idea behind using with encryption is to hide the SQL Code, not the execution plan. Like Pinal mentioned in his article, many business logics are written in stored procedures which companies do not want others to know. This is the case especially with COTS products.

In SQL Server 2005 SSMS ( Object explorer ), you can see a Lock symbol on stored procedure name indicating this stored procedure is encrypted.

Thanks,
Imran.

By: mdma

mdma — Sun, 02 Nov 2008 07:13:22 +0000

thanks for the info and for keeping your blog interesting for long time.

now what reason do i have to encrypt sp’s or better to say hide an execution plan?