Suppose I want to search for the word "book" in the sentence "There is a book on the table." and I need to store the sentence in encrypted form. On a standalone SQL Server, you can use symmetric key encryption where SQL Server holds the key and it can search for phrase matches within encrypted columns and return only the rows that match. But I want to use SQL Azure, which doesn't support symmetric keys. How can I do this? What workarounds can I use to find a phrase within a longer encrypted varchar string?
If I wanted to search for the entire sentence, instead of just a word, I could easily do the encrytion/decryption at the application level in C#. I could encrypt the whole sentence in C#, which might return "1234567890" and ask SQL Server to find a perfect match of the encrypted string. That works for finding the whole value in the column. The problem for me is that I need to search on just a part of the whole string (the word "book"). If I encrypt "book" in C#, suppose the encryption algorithm returns "asdf". If I encrypt the entire sentence, and the algorithm returns "1234567890" then my substring "asdf" won't be found. If I ask SQL to find strings LIKE "asdf" it won't find that in the full-sentence encrypted string, unless I can find an algorithm where substrings are always found within the larger encrypted sentences (where "book" encrypted becomes "3456" within the whole sentence which becomes "1234567890").
I really want to use SQL Azure but I need a way to search for string LIKE matches within an encrypted larger string. I'm even open to using CLR stored procedures if that helps, but I'm not sure that it will. Any suggestions?
