I'm currently running SQL 2005 Standard and have a have a rich client
application that communicates with SQL using ODBC connections.
For PCI compliance, I need to begin encrypting the session (at least
authentication information) and was wondering what the best options are.
Since most of my clients are customers, I'm hoping there is a way I can turn
on some default encryption (and enforce it) instead of having to use SSL or
some other certificate.
Any help, blog posts, or guidance would be appreciated.