Adaptive Server version 15.0.2 allows the key owner to create key copies, and this enables users to access encrypted columns using their copy of a single key. Key copies provide accountability for data because:
A key copy is designated for an individual user with a private password known only to the user
Adaptive Server does not save the passwords on disk.
Without knowledge of the passwords protecting the key and its copies, not even the SA can access the data.
The use of keys with explicit passwords requires that Adaptive Server can access the password. To preserve application transparency, you may encrypt key copies with your login password, avoiding application changes to supply the key copy’s password.
