Data Storage
Encrypted Data | Database | Unencrypted Data | OS, Applications | Swap, Scratch | |
Storage | Encrypted block storage array | Encrypted block storage array | NAS^ | Encrypted block storage array | Encrypted block storage array |
Backups | Cohesity | NAS^ in SH | N/A | Cohesity | NO |
Backups: Encrypt-in-transit | Encrypted | In SH ecosystem, no encryption | N/A | Encrypted | N/A |
Backups: Encrypt data at rest | Encrypted | In SH ecosystem, no encryption | N/A | Encrypted | N/A |
Snapshots | NO | Yes - 1 Week | Yes - 6 weeks, both at origin and replicated location | NO | NO |
Replication | N/A | Yes | Yes | N/A | N/A |
Replication: Encrypt-in-transit | N/A | Via encrypted SSH tunnel | Via encrypted SSH tunnel | N/A | N/A |
Replication: Encrypt data at rest | N/A | NO; within SH Ecosystem^ | NO; within SH Ecosystem^ | N/A | N/A |
^ Storage (NAS/Block) in 'SH ecosystem' follow NIST 800-88 Media Sanitization techniques. Stronghold abides by the "clear method" when data is deleted. Additionally, Stronghold abides by the "destroy" method, when an entire disk needs to be replaced.
Last updated