Comment on page
Data Storage
| Encrypted Data | Database | Unencrypted Data | OS, Applications | Swap, Scratch |
Storage | Encrypted block storage array | Encrypted block storage array | NAS^ | Encrypted block storage array | Encrypted block storage array |
Backups | Cohesity | NAS^ in SH | N/A | Cohesity | NO |
Backups: Encrypt-in-transit | Encrypted | In SH ecosystem, no encryption | N/A | Encrypted | N/A |
Backups: Encrypt data at rest | Encrypted | In SH ecosystem, no encryption | N/A | Encrypted | N/A |
Snapshots | NO | Yes - 1 Week | Yes - 6 weeks, both at origin and replicated location | NO | NO |
Replication | N/A | Yes | Yes | N/A | N/A |
Replication: Encrypt-in-transit | N/A | Via encrypted SSH tunnel | Via encrypted SSH tunnel | N/A | N/A |
Replication: Encrypt data at rest | N/A | NO; within SH Ecosystem^ | NO; within SH Ecosystem^ | N/A | N/A |
^ Storage (NAS/Block) in 'SH ecosystem' follow NIST 800-88 Media Sanitization techniques. Stronghold abides by the "clear method" when data is deleted. Additionally, Stronghold abides by the "destroy" method, when an entire disk needs to be replaced.
Last modified 2yr ago