Volume encryption for OCI — NetBackup 11.1 | Cohesity Documentation

Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist

Volume encryption for OCI — NetBackup 11.1 | Cohesity Documentation

Volume encryption for OCI

You can encrypt disks in OCI using the following methods:

Default encryption, using Platform Managed Key (PMK).
Customer Managed Encryption Key (CMK), using OCI Master Encryption Key
For more information about OCI encryption, see Oracle Documentation.

Table: Encryption for creating snapshots

Disk encryption	Snapshot encryption
PMK	Same PMK is used as the source disk.
CMK	Same CMK is used as the source disk.

Table: Encryption for restoring snapshots

Snapshot encryption	Restored disk encryption
PMK	Same PMK is used as the snapshot.
CMK	Same CMK is used as the snapshot.

Table: Encryption for restoring from backup

Snapshot encryption	Restored disk encryption
PMK	Same PMK is used as the source disk.
CMK	Same CMK is used as the source disk.

Table: Encryption during VM restore from snapshot or backup

Snapshot encryption	Restored disk encryption
PMK	Encryption on disk can be PMK/CMK as per user selection during restore.
CMK	Encryption on disk can be PMK/CMK as per user selection during restore.

Feedback

Was this page helpful?

Feedback

Was this page helpful?