Client side encryption security
Client side encryption security is used to ensure data confidentiality across the wire as well as on tape. This encryption helps to mitigate the risk of passive wire tapping within the organization. The risk of data exposure is reduced as the tapes are moved off site. The encryption key is located on the client. Data communication is encrypted over the wire between the client and the media server. Data encryption by the client can be CPU intensive.
The following backup policy types support the use of the client encryption option.
AFS
DB2
DataStore
DataTools-SQL-BackTrack
Informix-On-BAR
LOTUS_NOTES
MS-Exchange
MS-SharePoint
MS-SQL-Server
MS-Windows
Oracle
PureDisk-Export
SAP
Split-Mirror
Standard
Sybase
The following backup policy types do not support the Client Encryption Option. You cannot select the encryption check box in the policy attributes interface for these policy types.
FlashBackup
FlashBackup-Windows
NDMP
NetWare
OS/2
Vault
Note that VMS and OpenVMS clients do not support the client encryption option. These clients use the Standard policy type.
The following figure shows an example of the client side encryption configuration.
