Spectra T50e - Restoring Encrypted Data

To Next Page

To Previous Page

Chapter 10—Encryption and Key Management BlueScale Key Management

August 2017 User Guide—Spectra T50e Library

316

 Trackeverycopyofeachkey.Thistrackingiscriticalinordertomeet

requirementsthatmaygoverndataretentionanddatadestruction.

Destroyingallexportedcopiesofkeysassociatedwithencrypteddata

ANDdeletingthekeysfromthelibraryissufficienttosatisfydata

destructionrequirements,sinceencrypteddatacannotbeaccessed

withoutthekeyusedtoencryptit.

SpectraLogicrecommendstrackingtheinformationlistedinthe

followingtableforeverykeythatyoucreate.Foraddedsecurity,

encryptthefilecontainingthetrackinginformation.

Restoring Encrypted Data

Overview Restoringencrypteddatafromacartridgefollowsthestandard

datarestoreprocessesthatyouusewithyourstorage management

software.Theonlydifferenceisthatthekeyusedtoencryptthedatabeing

restoredneedstobestoredinthelibraryandassignedtothepartitionin

whichtheencryptedcartridgeisloaded.Ifthekeyisalreadystoredonthe

library,thedataisautomaticallydecryptedasitisreadfromtape;ifthe

encryptionkeyisnotcurrentlystoredonthelibrary,itmustbeimported

beforethedatacanbedecrypted.Oncetherequiredencryptionkeyis

assigned

tothepartition,standardrestoreproceduresareunchanged.

Three Passwords to Access Import Key Functions IfyouhaveBlueScale

ProfessionalEditionandyouenabledMulti‐Usermode,twoofthethree

encryptionpasswordsarerequiredtoaccesstheimportkeyfunction.See

ConfiguretheUserMode(BlueScaleProfessionalOnly)onpage285)and

ConfiguretheSecureInitializationMode(BlueScaleOnly)onpage286for

informationaboutenablingMulti‐Usermodeandconfiguringthelibrary

tosupportmultipleencryptionpasswords.

Key moniker:

Number of shares (if any):

Number of key copies:

Location of each copy:

Password(s) associated with exported copy of

the moniker:

Location of cartridges containing data that

are encrypted using this moniker:

Moniker creation date:

Planned expiration date:

Other manuals for Spectra T50e