Download the Presentation

Survey
yes no Was this document useful for you?
   Thank you for your participation!

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project

Document related concepts

Business intelligence wikipedia , lookup

Information security wikipedia , lookup

Information privacy law wikipedia , lookup

Object storage wikipedia , lookup

Computer security wikipedia , lookup

Transcript
Don’t let backups be the
backdoor to your security policy
Brad Farabaugh
Senior Systems Engineer
Reality Check….
Wish List
Important?
High performance
YES!
High security?
YES!
High capacity?
YES!
Data protection needs clear?
NO! ?
YES! ?
Data Protection and Security
Surface Areas
Restore Activity Surfaces
Redirected restores may lead to unauthorized access or
data integrity violations. Even if incomplete.
Restore Activity Insight
Not having this process identified until after an incident
occurred.
Restore Activity Insight
Data Protection Surfaces
Not knowing all of the surfaces
The Restore
Redirected restores as a snooping technique
Additional Surface Areas
Don’t ignore your backup solutions
Roles, Encryption and Passwords
Have encryption passwords managed by security teams,
admin accounts don’t always need to be for all backup staff.
Disk-Based Backups
Unauthorized access to disk systems
Frameworks
Virtual
Physical
Storage snapshots
Storage snapshots
Agents
Agents
Virtualization: VADP & VSS
Replication
Replication
Virtualization backups & Storage
VMware
Hyper-V
VMFS: No out-of-vCenter security
CSV & SMB3: In-OS security
VMFS Security is in vSphere Client
NTFS Security-Generally unchanged
Web Services, MOB, VADP
SCVMM: Active Directory Access
NFS primary storage
band” backups
VMware & Hyper-V: Certain permissions can permit “out-of-
Storage protocol decisions
Restore protocol reliance
Dedicated backup storage
Moving media
Store backups in proper places
Windows Server 2012 Deduplication
VHD/VHDX
Portability and role-based important
VHD/VHDX Departure
Too much of a good thing?
Thank you!
Open Q&A
Stop by the Veeam booth or visit Veeam.com