Data Storage

Encrypted Data

Database

Unencrypted Data

OS, Applications

Swap, Scratch

Storage

Encrypted block storage array

Encrypted block storage array

NAS^

Encrypted block storage array

Encrypted block storage array

Backups

Cohesity

NAS^ in SH

N/A

Cohesity

NO

Backups: Encrypt-in-transit

Encrypted

In SH ecosystem, no encryption

N/A

Encrypted

N/A

Backups: Encrypt data at rest

Encrypted

In SH ecosystem, no encryption

N/A

Encrypted

N/A

Snapshots

NO

Yes - 1 Week

Yes - 6 weeks, both at origin and replicated location

NO

NO

Replication

N/A

Yes

Yes

N/A

N/A

Replication: Encrypt-in-transit

N/A

Via encrypted SSH tunnel

Via encrypted SSH tunnel

N/A

N/A

Replication: Encrypt data at rest

N/A

NO; within SH Ecosystem^

NO; within SH Ecosystem^

N/A

N/A

^ Storage (NAS/Block) in 'SH ecosystem' follow NIST 800-88 Media Sanitization techniques. Stronghold abides by the "clear method" when data is deleted. Additionally, Stronghold abides by the "destroy" method, when an entire disk needs to be replaced.

Last updated