Data Storage
Encrypted Data
Database
Unencrypted Data
OS, Applications
Swap, Scratch
Storage
Encrypted block storage array
Encrypted block storage array
NAS^
Encrypted block storage array
Encrypted block storage array
Backups
Cohesity
NAS^ in SH
N/A
Cohesity
NO
Backups: Encrypt-in-transit
Encrypted
In SH ecosystem, no encryption
N/A
Encrypted
N/A
Backups: Encrypt data at rest
Encrypted
In SH ecosystem, no encryption
N/A
Encrypted
N/A
Snapshots
NO
Yes - 1 Week
Yes - 6 weeks, both at origin and replicated location
NO
NO
Replication
N/A
Yes
Yes
N/A
N/A
Replication: Encrypt-in-transit
N/A
Via encrypted SSH tunnel
Via encrypted SSH tunnel
N/A
N/A
Replication: Encrypt data at rest
N/A
NO; within SH Ecosystem^
NO; within SH Ecosystem^
N/A
N/A
^ Storage (NAS/Block) in 'SH ecosystem' follow NIST 800-88 Media Sanitization techniques. Stronghold abides by the "clear method" when data is deleted. Additionally, Stronghold abides by the "destroy" method, when an entire disk needs to be replaced.
Last updated