The Arkeia Network Backup encryption option makes it possible to encrypt data while backing it up. The encryption (decryption) of data is done on the client side. As a consequence it is protected while transiting through the network to the backup server. Furthermore, data is not decrypted before it is written to tape, so it is in fact secured to tape even if the backup tape is stolen or lost.
Arkeia allows DES or Blowfish encryption algorithms.
To make an encrypted backup of a directory, you must:
The backups for directories you select to be encrypted will only be encrypted if they are associated with an encryption key, otherwise the backup files will be unencrypted.
Use the Encryption configuration
screens to create and
associate encryption keys for your filesystem.
For example, if you want to encrypt the directory
/home/mydir
, you have to define a specific encryption rule.
Click on the Add encryption rule
menu and fill in
appropriate information:
/home/mydir
/home/mydir
). Encryption rules for other directories,
will have to be stored in another file.0123456789
or
aAb6J/,cO
for example.Please note that Arkeia does not provide a way to generate encryption keys. You must provide your own keys. This must not be an issue as there are lots of ways to generate strong encryption keys.