restore security doubts
Hello folks.
My organization is under ISO auditing and I'm reviewing my procedures documents and I have a security issue here that I'm not sure about:
Is BE Encryption key responsible for preventing to restore backup data on a different server than the original one?
If it is not, how can I prevent it from hapenning? For example, if I have my tapes stolen, how can I be sure that these files won't be accessed?
Encryption is never enabled as a default. You have to enable it by creating encryption keys using passphrases. This is done under Settings --> Network.
You then use these keys when you enable encryption in your jobs. If you need to retore the tapes on another system or installation, you need to know the encryption passphrase. Otherwise, they cannot be accessed. If you loose the encryption keys, then even Veritas is unable to recover them for you and your tapes cannot be accessed.