encrpting backup

Sure!

Veritas NetBackup (tm) 6.5 Security and Encryption Guide

 http://support.veritas.com/docs/290226

You have two options with NetBackup 6.5.

1. There is a free version that comes with NetBackup (Client-based encryption) that you can enable.  This is usefull when you want to only encrypt a few clients as encryption keys etc are managed on a client by client basis - these keys are also stored on the client.  Encryption is done at the client so data is encrypted before being sent over the network.  There will obviously be a CPU impact on the client.

2. You can purchase and licence NetBackup Encryption Option.  This is usefull for larger implementations as key management is centrally managed.  Data is encrypted on the media servers after the data has been sent across the wire.  This has the benefit that the process of encryption is done on the media servers taking away the impact on the client.

You could choose either one of these depending on what you want to accomplish or you can implement both if you need (e.g. client encryption of DMZ servers and NEO on internal servers)

Keep in mind that encryption requires extra CPU cycles from your systems and will increase you backup times.

The last option you have, which is external to NetBackup is if you are running with LTO4 you have the option of doing encryption at the drive level.  The brand of LTO will determine the implementation and key management.  This has the benefit that encryption is done at the drive so the extra processing will be moved off the servers.

All options have their positives and negatives.

Cheers