Encryption configuration

The Arkeia Network Backup encryption option makes it possible to encrypt data while backing it up. The encryption (decryption) of data is done on the client side. As a consequence it is protected while transiting through the network to the backup server. Furthermore, data is not decrypted before it is written to tape, so it is in fact secured to tape even if the backup tape is stolen or lost.

Arkeia allows DES or Blowfish encryption algorithms.
To make an encrypted backup of a directory, you must:


Note

The backups for directories you select to be encrypted will only be encrypted if they are associated with an encryption key, otherwise the backup files will be unencrypted.


Use the Encryption configuration screens to create and associate encryption keys for your filesystem.

For example, if you want to encrypt the directory /home/mydir, you have to define a specific encryption rule. Click on the Add encryption rule menu and fill in appropriate information:

Please note that Arkeia does not provide a way to generate encryption keys. You must provide your own keys. This must not be an issue as there are lots of ways to generate strong encryption keys.