Data Storage

Encrypted Data

Database

Unencrypted Data

OS, Applications

Swap, Scratch

Storage

Encrypted block storage array

Encrypted block storage array

NAS^

Encrypted block storage array

Encrypted block storage array

Backups

Cohesity

NAS^ in SH

N/A

Cohesity

NO

Backups: Encrypt-in-transit

Encrypted

In SH ecosystem, no encryption

N/A

Encrypted

N/A

Backups: Encrypt data at rest

Encrypted

In SH ecosystem, no encryption

N/A

Encrypted

N/A

Snapshots

NO

Yes - 1 Week

Yes - 6 weeks, both at origin and replicated location

NO

NO

Replication

N/A

Yes

Yes

N/A

N/A

Replication: Encrypt-in-transit

N/A

Via encrypted SSH tunnel

Via encrypted SSH tunnel

N/A

N/A

Replication: Encrypt data at rest

N/A

NO; within SH Ecosystem^

NO; within SH Ecosystem^

N/A

N/A

^ Storage (NAS/Block) in 'SH ecosystem' follow NIST 800-88 Media Sanitization techniques. Stronghold abides by the "clear method" when data is deleted. Additionally, Stronghold abides by the "destroy" method, when an entire disk needs to be replaced.

Last updated

Was this helpful?