Fall World 2014

Conference & Exhibit

Attend The #1 BC/DR Event!

Summer Journal

Volume 27, Issue 3

Full Contents Now Available!

From the 'Darkside' of storage

@Darthtivoli is not just a tag but a badge of honor. I strive to have an objective point of view and listen to all arguments. Then I pull out the lightsaber and trim the BS to leave just the facts. REMEMBER, it is the age of the geek

Sep 17
2013

6 ways to secure your backup and archive data

Posted by: Jarrett F Potts in DRJ Blogs

Tagged in: Security , Encryption

Jarrett F Potts

Data protection is important in today’s world, but at times people forget the simple steps that need to be taken to secure access to that data. As an afterthought, securing your data should be taken seriously. Below you will find six ways to secure your data and data protection solution.

Restrict access to clients

It may seem elementary, but securing the clients with a username and password is the first line of defense against hackers or people accessing your data who should not be. Adding a password to each laptop, server and workstation is not only important, but is also paramount when trying to secure your environment. There are different levels of passwords, and now systems even let you use patterns to secure access to clients.

Restrict access to the backup/archive client

In most data protection solutions there are also different levels of access. A client usually only has access to its own data. When installed, the data protection solution needs to be accessible only to the correct users with the correct credentials. In other words, if you sign-in to the system with different credentials, then the data protection application should not be available (or limited).

Restrict to the network

Make sure that only the systems that are required are accessing your network. If they do not belong, they should not be able to access the wired or wireless network. While this may seem simple, most small and home businesses leave their networks unsecured and do not require a password to attach to it.

32Security

Encrypt data on your clients

Encryption is available for free on most operating systems and is very easy to use, however most people do not use it. I’m not saying that all data needs to encrypted. I’m saying that any confidential data needs to be locked up. Payroll, employee records and other confidential information needs to have a lock and key associated with it. That way, if the data is stolen or accessed by someone who shouldn’t be opening it, they cannot read it without the “key.”

Encrypt your data in transit

When data is backed up or archived, it can be encrypted and protected from anyone who is snooping on your network. It is simple to set up, and with most data protection solutions

 

it is a no-charge option. Easy to set up and manage, it is a “win-win” for everyone. What you’re looking for is 128 bit and 256 bit encryption.

Encrypt data on disk or tape

There are many different types of technologies that allow you to encrypt data on the back-end of the data protection solution. A great example is the self-encrypting tape drive. If someone steals your tapes and attempts to recover your data, they will not be able to do it. They have to have the encryption key, which the data protection solution on your site (or your key manager) will have. Without that key they cannot recover the data.

All of these suggestions may seem simple, but most companies only do one or two of them, and therefore, are more vulnerable to attacks or data theft. In today’s world the security of your data is important because with one theft of data your entire business could fail.