Sensitive business data at rest in the cloud is more vulnerable than ever before. Ensuring that this critical corporate data is secure against unauthorized access and meets any organizational policies, industry or government regulations, is of critical importance to many CIOs.
What is data at rest?
Data at rest is data that is not actively moving from device to device or network to network such as data stored on cloud severs. Encrypting this sensitive data stored in the cloud — data-at-rest — prevents unauthorized physical access to the data. Many compliance standards, such as the Health Insurance Portability and Accountability Act (HIPAA), require this security control to be in place to tightly-guard patient information.
Whether you are storing data at rest in a private or public cloud, DARE is a critical component of the overall security posture for sensitive data. It’s increasingly more important in cloud environments that are inherently multi-tenant architectures.
How DARE Works
DARE secures your critical data even when the media is removed from the array. Many DARE Solutions, utilize a high performance inline encryption technique to ensure that all data stored on the array is unusable if the SSD media is removed. This prevents unauthorized access in the event of theft or loss during transport, and makes it possible to return/replace failed components containing sensitive data.
In addition, XtremIO SEDs use the hardware-based Advanced Encryption Standard (AES) 256 encryption algorithm. AES is a widely-used block encryption standard, and is acceptable by the most rigorous regulations and federal governments’ standards.
When OneNeck was rigorously testing various All-Flash technologies, we ultimately found that for our customers, the ability to provide DARE with ZERO impact to application performance was a win-win for us and our customers.
That alone was worth it, but this unique solution provides one more huge benefit. With this technology, we are able to add one more layer of security, specifically this technology provides DARE without OneNeck having to manage encryption keys in any way, this is critical as some technologies require external encryption keys, which can be lost or stolen, resulting in data unavailability or providing malicious users with access to what was supposed to be protected data.
This means the best of both worlds for our customers, incredible application performance, along with powerful Data At Rest Encryption.
Does your Cloud Provider DARE?
A recent study of 12,000 cloud providers conducted by Skyhigh, a leading cloud access security broker, found that only 9.4% of cloud providers are encrypting data at rest. That’s pretty unnerving when you consider that the cloud is now home to a significant amount of sensitive corporate data.
Trust is especially important when discussing data security. At OneNeck IT Solutions, we understand that data is the lifeblood of your organization and protecting it is paramount. Leveraging data encryption at rest technology and ReliaCloud®, our enterprise- class hosted private cloud solution, OneNeck encrypts our customer’s data stored at rest by default, with no additional action required from you and no impact on the performance you expect to achieve on our Cloud platform
If you’re serious keeping your at rest data secure in the cloud, then give us a call today.