Page 1 of 1
Data at rest encryption
Posted: Wed Dec 11, 2013 9:12 pm
by chrisvlach
I see the ability to setup an encrypted virtual hard disk in Starwind. Is it possible to do this with an HA device? If not, is there any effort for this being a feature of a future release?
Thank you!
Re: Data at rest encryption
Posted: Thu Dec 12, 2013 8:52 pm
by anton (staff)
We're overwrapping Windws built-in NTFS encryption and it's by far the worst encryption layer available
You can use it with HA no probs!
P.S. Upcoming post-V8 release will have strong encryption however.
chrisvlach wrote:I see the ability to setup an encrypted virtual hard disk in Starwind. Is it possible to do this with an HA device? If not, is there any effort for this being a feature of a future release?
Thank you!
Re: Data at rest encryption
Posted: Fri Dec 13, 2013 10:08 pm
by chrisvlach
This is great news!!! I will look forward with much anticipation.
Re: Data at rest encryption
Posted: Sat Dec 14, 2013 1:21 pm
by anton (staff)
I've dropped you an e-mail asking some questions about your project. Please check your Inbox. Thank you!
chrisvlach wrote:This is great news!!! I will look forward with much anticipation.
Re: Data at rest encryption
Posted: Mon Dec 23, 2013 12:19 pm
by jeddyatcc
Just a curiosity, but as I understand it. StarWind functions in user space, so why aren't you able to just use Bitlocker from Microsoft?
Re: Data at rest encryption
Posted: Mon Dec 23, 2013 1:03 pm
by anton (staff)
Guess because StarWind targets moved away from the BitLocker-controlled volume would be unencrypted (unprotected).
+ async replicated content should be encrypted as well. BitLocker does not do this and messing with VPNs is a PITA.
jeddyatcc wrote:Just a curiosity, but as I understand it. StarWind functions in user space, so why aren't you able to just use Bitlocker from Microsoft?
Re: Data at rest encryption
Posted: Mon Dec 23, 2013 2:28 pm
by jeddyatcc
Agree on both counts, but he was only talking at rest only. Bitlocker isn't too horrible for overhead. So my question is, do you support writing and reading from a bitlocker volume? Also, I didn't think you supported moving the targets.
Re: Data at rest encryption
Posted: Mon Dec 23, 2013 11:06 pm
by anton (staff)
1) BitLocker is supported (as it's a transparent block-layer driver).
2) We fully support content movements between hosts. One of the big reasons I'm personally not a big fan of a "raw" disk access.
jeddyatcc wrote:Agree on both counts, but he was only talking at rest only. Bitlocker isn't too horrible for overhead. So my question is, do you support writing and reading from a bitlocker volume? Also, I didn't think you supported moving the targets.