Have you failed a job interview?
Send us your job interview questions and get correct answers.
What is a difference between deterministic and randomized encryption when you use Always Encrypted feature of Azure SQL Database?
Experience Level: Senior
Tags: Azure CloudAzure SQL Database
Answer
When deterministic encryption is used, when you encrypt specific value, its encrypted form looks always the same. So if you encrypt the value 10 times in 10 different items, you will always get the same encrypted string. Thanks to this, you can use deterministic encryption even for columns that you need to group by and filter by, because the database engine can do the grouping/filtering operation by the encrypted value. The column can also be encrypted.
Randomized encryption on the other hand adds salt and thus produces different encrypted values for each time you encrypt the same input value. This is nice security enhancement, but it also prevents equality searches, grouping, indexing and joining on encrypted columns.
Related Azure Cloud job interview questions
What is Azure SQL Database vCore purchase model?
Azure CloudAzure SQL Database SeniorYou use Azure CosmosDB with Table API. You need to make sure that the database will be available even if the whole region fails. How will you solve the requirements?
Azure CloudAzure Cosmos DB SeniorYou use Always Encrypted feature of Azure SQL Database. When the encryption keys are used, are they revealed to the database engine?
Azure CloudAzure SQL Database SeniorWhat is a weakness of Transparent Data Encryption (TDE) in Azure SQL Database?
Azure CloudAzure SQL Database SeniorHow can you remediate non-compliant resources with Azure Policy?
Azure CloudAzure Policy Senior