Network Trace
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

34) Does your organisation encrypt the backups to prevent unauthorised access to the backup data?

August 30, 2022
IT Operations
Backup Encryption

Answer yes if your organisation encrypts the backups to prevent unauthorised access to the data. Please state the encryption algorithm used in the notes section.

Backups are copies of your production data, which means that they need to be at least as secure as your main production site. Backups should be encrypted to prevent unauthorised access and to protect their confidentiality. If a malicious actor can get hold of your backups, that is as good as breaking into your systems.

Many tools used to take backups of systems include a feature that encrypts the backups for you. If your IT team take backups manually, they can also implement encryption tools to protect them.

Encryption algorithms vary in strength, and many older algorithms that used to be secure have now been broken. It is important to ensure you utilise a strong encryption algorithm such as AES (Advanced Encryption Standard), with a suitable long encryption key (e.g. AES-256).

How to implement the control

You must ensure that backups are encrypted to protect them from unauthorised access. The encryption algorithm used should be a recognised standard, for example, AES-256.

If you would like to contribute to this article or provide feedback, please email Contributors will be recognised on our contributors page.

Pattern Trapezoid Mesh

Defend against supply chain attacks with Defend-As-One.

No organisation is an island.