The System Security Officer and key owners can drop keys. A key can be dropped only if there are no encrypted columns in any database that use the key. You cannot check suspect and offline databases for columns encrypted by the key. The command issues a warning message naming the unavailable database but the command does not fail. When the database is brought online, any tables whose columns were encrypted with the dropped key will not be usable. To restore the key, the System Administrator must load a dump of the dropped key’s database from a time that precedes when the key was dropped.
Drop an encryption key using:
drop encryption key [database.[owner].]keyname
For example:
drop encryption key cust.dbo.cc_key
| Copyright © 2005. Sybase Inc. All rights reserved. |
|
|
