The System Security Officer sets the system encryption password using sp_encryption. The system password is specific to the database where sp_encryption is executed, and its encrypted value is stored in the sysattributes system table in that database.
sp_encryption system_encr_passwd, ‘password’
The password specified using sp_encryption can be 64 bytes in length, and is used by Adaptive Server to encrypt all keys in that database. You need not specify this password to access keys or data.
The system encryption password must be set in every database where encryption keys are created.
The System Security Officer can change the system password by using sp_encryption and supplying the old password.
sp_encryption system_encr_passwd, ‘password’ [ , ‘old_password’]
When the system password is changed, Adaptive Server automatically reencrypts all keys in the database with the new password.
sp_encryption help displays the key’s name, owner, size, and encryption algorithm. It also indicates whether the key has been designated as the database default key, and whether encryption with this key uses random padding or an initialization vector.
sp_encryption help [, keyname [, display_cols]]
When sp_encryption help is run by a user with sso_role, the key properties of all keys in the database are displayed. When run by a user without sso_role, the key properties are displayed for only those keys for which the user has select permission in that database.
sp_encryption help, keyname displays the properties of keyname. If the command is run by a user without sso_role, the user must have select permission on the key.
sp_encryption help, keyname, display_cols may be run only by a user with sso_role. It lists the columns encrypted by keyname.
