|
|
Posted by Erland Sommarskog on 11/05/05 22:45
Mike Epprecht (SQL MVP) (mike@epprecht.net) writes:
> If I get an application that encrypts it's SP, I will generally be more
> inquisitive as to why it was done, and in the name of ensuring that the
> procedure does not execute any code that could harm the system or the
> corporate security, I will decrypt it and see what it is doing. Business
> logic belongs in the middle tier, not the DB.
On that we have radically different opinions. Business logic that
concerns data should be in the database. Period.
And, yes, we usually encrypt our stored procedures when we install our
system at customer sites. Just like people usually put up a fence around
their house, so that no one trespasses by mistake.
--
Erland Sommarskog, SQL Server MVP, esquel@sommarskog.se
Books Online for SQL Server SP3 at
http://www.microsoft.com/sql/techinfo/productdoc/2000/books.asp
Navigation:
[Reply to this message]
|