Technical advantages of media-based Encryption

Technical advantages of media-based Encryption

Many requirements clearly require media encryption technology as the preferred method. In stark contrast to media encryption, both host-based and device-based encryption methods are difficult to achieve the purpose of tape media encryption. The host-based method requires important management expenses and may occupy valuable resources of the host.

The device-based encryption method may make the system unable to read the tape format.KeyThe large-scale update package after expiration is even worse. The device-based solution is to convert multiple storage layer encryption into a multi-element set, but this method will make Backup management more complex. This is a device-based approach. You may also need to pay attention to all data channels, because many large companies are used to writing data into tape. In addition, it is easy to manage a single host based on host encryption, but it is difficult to manage a large Host group.

For these reasons, media-based encryption seems to be an obvious choice. However, after media encryption technology is selected, you still need to pay attention to some things. Backup media servers are generally not the best place for encryption. First, streaming media servers may face huge pressure because they may not have enough resources to effectively encrypt tapes.

In addition, there is a component in the tape encryption Management Server, including a key management server, which is particularly important for the allocation, protection, and management of key tape media devices. For many backup products on the market, integrated key management is not highly automated and cannot process thousands of tapes at the same time.

Although streaming media encryption technology is just a common recommendation, remember that any company has its own unique needs. Encryption is a typical licensing function that requires an additional key management system. The cost may mean that in-band encryption devices sometimes have more cost advantages. This means that a VTL system integrated with an encrypted device or a third-party encryptor provides a more convenient route for tape encryption.

Key management system importance

The key management system must encrypt the product as one of the most important foundations of any encryption method, but this is often ignored. Currently, key management systems and encryption products of different vendors have little interoperability. Key management systems are provided by tape systems or equipment vendors. With this in mind, Key Management Based on Streaming Media encryption should be considered as an independent system, even if the enterprise has other encryption methods.

In the future, standards such as Oasis key management Interoperability Protocol (KMIP) may one day provide a single key management system for enterprise systems. Due to the importance and inevitability of tape encryption, a best practice is that enterprises should assess the investment in tape systems when tape manufacturers provide key management systems at any time.

The foundation of data encryption depends on tapes, but this does not mean that every enterprise needs to solve the problem. Of course, it does not rule out the possibility of using more technologies. The wide range of options on the market means that enterprises can easily build a more extensive method to encrypt more critical data while correctly encrypting tape backups. With proper key management, you can not only minimize management overhead, but also greatly reduce business risks.