Tagged in

end-to-end encryption

Rubrik -  - Encrypting Your Data in the Cloud: Rubrik CloudOut with Amazon S3

Architecture

Encrypting Your Data in the Cloud: Rubrik CloudOut with Amazon S3

In a previous post, I discussed the role of data encryption as a critical component of any company’s security posture and the potential pitfalls of not using encryption properly. This is magnified when you are talking about storing data outside of customer data centers in public cloud storage repositories such as Amazon S3, Azure Blob Storage, and Google Cloud Storage. Security is one of the key pillars of Rubrik’s Cloud Data Management platform, and we design security into every aspect of the platform. This includes end-to-end encryption, both in transit and at rest, which extends to our integration with public cloud providers. The majority of Rubrik customers take advantage of our CloudOut capability to store their backup data in one of the big three public cloud providers, often as a replacement for tape. This approach is typically more cost effective, more reliable, and offers better response times in the event that data restoration is required. To secure data uploaded via CloudOut, Rubrik enables encryption in transit using TLS and encryption at rest using various methodologies. No matter the cloud provider, Rubrik applies the same three key principles to how we encrypt customer data: Use the strongest encryption cipher available and…
Rubrik -  - Top 4 Features to Look for in a GDPR Solution

General Tech

Top 4 Features to Look for in a GDPR Solution

Changes to Europe’s General Data Protection Regulation (GDPR) comes into force on May 25, 2018. For those unfamiliar, the law grants European citizens comprehensive rights over personal data that organizations store and process. GDPR places additional burden on the companies, and those that fail to comply face hefty fines. The deadline is fast approaching, yet many companies have not started preparing. While no single solution can ensure compliance, here are four key components to keep in mind as you evaluate solutions: 1. Unified Management Companies often hold personal data on customers, employees, vendors, contractors, and other entities. This data can be spread across a variety of sources like VMs, databases, files, and Exchange Mailboxes. Unfortunately, this fragmented infrastructure makes managing and protecting workloads a major challenge. In addition to being tedious, a patchwork of point solutions can complicate GDPR compliance. Using a single comprehensive solution enables users to define and enforce a data management policy across their entire infrastructure. With Rubrik, one platform supports all common data management scenarios (backup, disaster recovery, archival, etc.) and protects a wide variety of workloads like VMs, physical servers, databases, NAS Shares, and public cloud. This broad and fast-growing support matrix helps organizations enforce their…
Rubrik -  - Accelerating Your Cloud Data Management Strategy

Product

Accelerating Your Cloud Data Management Strategy

In my previous blog post, I responded to a Gestalt IT article by Tim Carr that reviewed the typical stages of public cloud adoption in an enterprise. In particular, I focused on Rubrik solutions such as CloudOut, CloudOn, and Cloud Cluster, which provide customers with advanced data management capabilities for each phase of their cloud adoption journey. Tim has followed up his article with a deeper look at how enterprises are approaching phase 2 and the important role that cloud data management plays in their journey. Three areas of emphasis that Tim highlights are security, management tool sprawl, and cloud lock-in. These are areas that Rubrik has thought hard and long about as part of its “clean sheet” approach to data protection and cloud data management. Security While security should always be top of mind, it’s frequently an afterthought addressed in phase 2 or beyond in the cloud journey.  But any time you consider sending data off-premises over the internet, there should be questions about securing data in transit and at rest. Rubrik provides an end-to-end solution beginning with data encrypted as it is being backed up to our Rubrik nodes. Each file is encrypted using client-side encryption prior to data…
Rubrik -  - Rubrik Cloud Data Management: Security by Design

General Tech

Rubrik Cloud Data Management: Security by Design

Since the beginning, Rubrik’s Cloud Data Management platform has been designed with security as one of its core principles. Our goal is to ensure that data is managed in a secure and responsible manner, independent of its location. This capability is growing more important with the changes to the General Data Protection Regulation (GDPR), which goes into effect on May 25, 2018, for any organisation that processes or stores data from individuals in the EU. For companies that must comply with GDPR, security by design is imperative in data management. The regulation requires companies to use solutions in which data protection is designed into the development rather than added on at a later point. Requirements apply to on-prem and cloud environments, as well as to measurements that prevent employee-caused breaches. Data Management Designed for Protection Rubrik delivers end-to-end encryption across all environments while maintaining performance. It starts at the point of ingesting the data from your production systems. For both virtual and physical environments, we encrypt data in-flight to protect it from eavesdropping. Once the data arrives to the Rubrik cluster, customers can choose the method for encryption at-rest, either using software-based encryption or FIPS 140-2 Level 2 Certified hardware-based encryption. Rubrik also…
Rubrik -  - Designed for Security: Introducing Software Encryption at Rest

Product

Designed for Security: Introducing Software Encryption at Rest

There’s been a lot of buzz around the recent launch of version 3.1 of Rubrik Cloud Data Management. As our 7th product release, this version introduces a variety of rich new features to our platform that help make data management even more comprehensive. In previous posts, we discussed Rubrik Envision, which delivers visual data for platform analytics, and support for physical Windows servers. Version 3.1 also bolsters our security capabilities by adding software encryption for data at rest. The update is available on the r300 appliances, which ship with a built-in Trusted Platform Module (TPM) chip. Rubrik already supports hardware-based encryption on r528 appliances. So, now customers can enable data-at-rest encryption across Rubrik appliances, as well as role-based access control, to protect their data. Here are some of the key benefits our software encryption feature delivers: Comprehensive Protection We use AES 256-bit encryption to protect all of the data associated with your Rubrik cluster. We encrypt all files in Atlas, Rubrik’s cloud-scale file system. In addition, metadata, logs, and generated stats are encrypted. Simplicity Software encryption for data at rest is supported for the r300 appliance series. It is easily enabled at bootstrap and requires no user intervention thereafter. It…