EncryptionKit_a4_f.pdf

(181 KB) Pobierz

Data Encryption for HP StorageWorks

MSL Tape Libraries and 1/8 G2 Tape Autoloaders

Securing your data from unauthorized access

The threat to the security of personal information

caused by data getting into the wrong hands is very

real, with each incident potentially costing the

responsible organization millions of dollars to repair

the damage caused not to mention lost credibility

with their customers. However, by encrypting ‘data-at-

rest’ on tape, sensitive information can be secured

from unauthorized access either in the data center or

in off-site transit.

HP StorageWorks 1/8 G2 & MSL Tape Library LTO-4

Encryption Kit

One Encryption Kit is required for each MSL LTO-4

based Tape Library or 1/8 G2 LTO-4 Tape Autoloader

requiring encryption suport. The kit itself contains

a pair of secure USB key server tokens, and HP

recommends using one as a primary key server and

the second as a backup to be stored in a secure place.

The USB key server token will generate, store and

maintain up to 100 tape encryption keys used for

writing or restoring data on LTO-4 Ultrium tape drives.

The LTO-4 Ultrium Tape format brought with it a

revolutionary hardware-based data encryption

standard, where data is encrypted while writing to

tape, and deciphered using the approrpiate

encryption key during reading. This hardware data

encryption can be used with or without data

compression while maintaining the full speed and

capacity of the LTO-4 Ultrium Tape Drives and media.

Encrypting data using MSL Tape Libraries or 1/8 G2

Tape Autoloaders

To take advantage of the encryption capabilities of

the LTO-4 Ultrium tape drives configured in the HP

StorageWorks MSL Tape Libraries or 1/8 G2 Tape

Autoloaders, customers have a choice of solution.

1. Using an appropriate backup software

application that includes encryption support

(see www.hp.com/go/ebs and review the

EBS Compatibility Matrix for more information

on the latest software support).

2. Using the self-contained MSL Tape Library or

1/8 G2 Tape Autoloader LTO-4 Encryption Kit.

917635304.042.png

917635304.043.png

917635304.044.png

Encryption – how it works

Originating Site

1

Key provided to tape

Administrator

4

Media transported

to off-site storage or

directly to

destination site

Backup

Host

LTO-4 tape drive

in MSL Libary

Tape Media

5

Key sent to

remote site

2

3

Data sent to drive

from backup host

Drive encrypts data

to media

Destination or Recovery Site

6

Key provided to new tape

Recovery

Host

LTO-4 tape drive

in MSL Libary

Tape Media

8

7

Data sent to recovery

host from drive

Drive decrypts data

from media

Administrator

Self-contained solution

The Encryption Kit does not require any additional

software, PCs or servers; simply install it directly into

the USB port on the MSL Tape Library or 1/8 G2

Tape Autoloader.

The Encryption Kit supports your manual security

policies and procedures by providing secure storage

for encyrption keys. Access to the key server tokens

and their backup files is protected with user-specified

passwords. New processes may be required to protect

the key tokens and maintain password security.

Easy to use

Configuring and managing the Encryption Kit is

done through the Tape Library or Tape Autoloader’s

remote management interface (RMI), with easy to

follow instructions. The encryption set up is

completely independent of the backup software

application used.

Note that the Encryption Kit is not a key management

appliance. Administrators must manage association

between tape cartridges and the USB token that contains

the key used to encrypt them. To benefit from key

management and other more sophisticated encryption

capabilities requires the use of software applications.

Highly secure

The USB key server token uses hardware random

number generator, strong password authentication,

and digital envelopes for strong key and security

operations. The keys may be transferred token-to-

token or token-to-PC for backup or export with no

exposure to insecure PCs, servers or networks.

Ordering information

AM495A

HP StorageWorks 1/8 G2 and

MSL Tape Library LTO-4 Encryption Kit

For more information

To read more about the Encryption Kit and the use of

software applications go to www.hp.com/go/ebs

© 2008 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change

without notice. The only warranties for HP products and services are set forth in the express warranty

statements accompanying such products and services. Nothing herein should be construed as constituting

an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein.

To learn more, visit www.hp.com

4AA2-2655EEE, November 2008

917635304.045.png

917635304.001.png

917635304.002.png

917635304.003.png

917635304.004.png

917635304.005.png

917635304.006.png

917635304.007.png

917635304.008.png

917635304.009.png

917635304.010.png

917635304.011.png

917635304.012.png

917635304.013.png

917635304.014.png

917635304.015.png

917635304.016.png

917635304.017.png

917635304.018.png

917635304.019.png

917635304.020.png

917635304.021.png

917635304.022.png

917635304.023.png

917635304.024.png

917635304.025.png

917635304.026.png

917635304.027.png

917635304.028.png

917635304.029.png

917635304.030.png

917635304.031.png

917635304.032.png

917635304.033.png

917635304.034.png

917635304.035.png

917635304.036.png

917635304.037.png

917635304.038.png

917635304.039.png

917635304.040.png

917635304.041.png

Plik z chomika:

Inne pliki z tego folderu:

4AA0-6887EEW_Reference_guide.pdf (21541 KB)
4AA0-9088EEW_DP_solutionsguide.pdf (6005 KB)
4AA0-6554EEW_Solutions_guide.pdf (3126 KB)
MSL_Comparison_brief_A4.pdf (3752 KB)
4AA0-6890EEE_DP_salesguide.pdf (2016 KB)

Inne foldery tego chomika:

Zgłoś jeśli naruszono regulamin