SqlColumnEncryptionEnclaveProvider 類別


定義 Always Encrypted enclave 提供者介面的基底類別。The base class that defines the interface for enclave providers for Always Encrypted.

public ref class SqlColumnEncryptionEnclaveProvider abstract
public abstract class SqlColumnEncryptionEnclaveProvider
type SqlColumnEncryptionEnclaveProvider = class
Public MustInherit Class SqlColumnEncryptionEnclaveProvider


記憶體保護區是 SQL Server 內受保護的記憶體區域,用於加密資料行上的計算。An enclave is a protected region of memory inside SQL Server, used for computations on encrypted columns. 記憶體保護區提供者會封裝記憶體保護區證明通訊協定的用戶端執行詳細資料,以及建立和快取記憶體保護區會話的邏輯。An enclave provider encapsulates the client-side implementation details of the enclave attestation protocol as well as the logic for creating and caching enclave sessions.



初始化 SqlColumnEncryptionEnclaveProvider 類別的新執行個體。Initializes a new instance of the SqlColumnEncryptionEnclaveProvider class.


CreateEnclaveSession(Byte[], ECDiffieHellmanCng, String, String, SqlEnclaveSession, Int64)

當在衍生類別中覆寫時,執行 enclave 證明、產生工作階段的對稱金鑰、建立 enclave 工作階段,並將工作階段資訊儲存在快取中。When overridden in a derived class, performs enclave attestation, generates a symmetric key for the session, creates a an enclave session and stores the session information in the cache.


取得 SqlClient 後續用於將證明 enclave 之程序初始化,並以 enclave 建立安全工作階段的資訊。Gets the information that SqlClient subsequently uses to initiate the process of attesting the enclave and to establish a secure session with the enclave.

GetEnclaveSession(String, String, SqlEnclaveSession, Int64)

當在衍生類別中覆寫時,查詢 enclave 工作階段快取中的現有 enclave 工作階段資訊。When overridden in a derived class, looks up an existing enclave session information in the enclave session cache. 如果 enclave 提供者不實作 enclave 工作階段快取,則此方法應在 sqlEnclaveSession 參數中傳回 nullIf the enclave provider doesn't implement enclave session caching, this method is expected to return null in the sqlEnclaveSession parameter.


InvalidateEnclaveSession(String, String, SqlEnclaveSession)

當在衍生類別中覆寫時,如果提供者實作工作階段快取,則從 enclave 工作階段快取查詢 enclave 工作階段並將其從中撤回。When overridden in a derived class, looks up and evicts an enclave session from the enclave session cache, if the provider implements session caching.


