Does Veritas NETbackup 6.5 encrypt data in backup tape?

5 pts.
Tags:
Backup and Recovery
Veritas
Dear All, During a risk assessment exercise, I realized that my backup admin does not encrypt data in backup tapes. He argues, it is not required as an adversary cannot recover/read data from the backup tape, assuming its stolen, if he does not have the corresponding catalog. He further adds that catalog is kept secure. We are using Veritas netbackup 6.5. I am unfamiliar with the technology, hence would want to know the following: a) If catalogs are secure, why should the software have a feature for encrypting data in the backup tape? b) If the argument is invalid, how can an adversary read/recover the data from the stolen backup tapes, even if he does not have the catalog. Please help in articulating the risk. Any help in this regard is appreciated. Thanks in anticipation

Software/Hardware used:
veritas 6.5

Answer Wiki

Thanks. We'll let you know when a new response is added.

Here is a link that can help…..

Veritas NetBackup ™ 6.5 Security and Encryption Guide: Provides security configuration and administration information for NetBackup 6.5 administrators, including: – Security Deployment Models – Access control security – Firewall Configuration – Firewall ports used for communication – How to back up data through a firewall.

Discuss This Question: 4  Replies

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • AlaaSamarji
    i think you need to look at this from a different perspective. nowadays encryption software are up for grabs be it Symantec or any other vendor and all claiming they can do the job. my best advise in this regard is to look at the data encryption from SAN where your data leave your SAN in a higly encrypted and secured manner and does not require a 3rd party encryption tool that simply adds up in your overhead. if you would accomplished that, you will never have to worrya bout the well being of the symantec server or stolen data/tapes. i would advise using an Oracle ZFS storage system that have the best compression/encryption capabilities in the market with a very tangible and good price not to mention performance( its a unix box at the end of it ) you may want to contact your oracle dealer to examine that option. if you are using any of the oracle software you might find yourself with a very excellent offering in that regard that can bring you values you didn't see before.
    325 pointsBadges:
    report
  • Denny Cherry
    If the tapes are doing to leave your facility they should be encrypted. Just because I don't have the catalog for your tapes doesn't mean I can't read the tapes and get all sorts of useful information off of them. Send me a backup of your customer database and I'm willing to bet that I can get all sorts of need information off of it. Besides, I'd bet that the tape catalog is also sent to the same offsite storage facility that the tapes are. If it isn't, what happens when your building that houses the catalog is destroyed in a natural disaster and you need to restore from tape and you no longer have the catalog?
    66,365 pointsBadges:
    report
  • Novice123
    [...] A member stumbles upon a security risk: Their tape backups aren’t encrypted. The community debates whether it’s necessary or not. [...]
    0 pointsBadges:
    report
  • Genderhayes
    provides unparalleled data protection for enterprise backup and recovery Environments. Minimize cost and complexity by implementing a unified data protection solution that provides desktop, remote office, and data center protection across the entire enterprise. NetBackup delivers centralized and simplified real-time management to help organizations manage all aspects of backup and recovery including disk- and tape-based data protection. It unlocks the power of disk to help make backup and recovery faster, more reliable, and more secure than ever
    7,950 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following