How to protect data in transit
We have different tools to consider for protecting the different types of data in transit.
- The connection by a user or application connecting to SQL Server. Are credentials supplied and are they encrypted to prevent being captured?
- Data sent between applications on internal servers and SQL Server
- Data sent by browser applications and other devices to web erver applications, most typically data sent from web browsers to web servers.
- Traffic sent over HTTP should be encrypted using HTTPS, also knows as TLS.