 |
|
|
“As we got into the implementation details, it became clear that for usability and support, NeoScale was really the only option.”
- Derek Olson, UNIX Systems Administrator, Qsent |
|
|
|
|
|
|
 |
|
|
CryptoStor® Tape 700 Family
Enterprise-Class Tape Encryption Appliance SCSI LVD 320 or Fibre Channel 1/2 Gbps
NeoScale CryptoStor Tape 700 is a family of enterprise-class data protection and privacy appliances for tape media and virtual tape. CryptoStor Tape enables companies to readily achieve strong, policy-based encryption and authentication for networked, remote, direct attached and virtual tape systems.
CryptoStor Tape family members support either Fibre Channel (FC) or SCSI interfaces giving unparalleled flexibility. CryptoStor Tape interoperates fully with CryptoStor KeyVault™ - industry's first automated, open and secure Enterprise Key Manager.
Tape at Risk
Tape media is considered the most reliable and common source for enterprise data recovery. While enterprises have implemented access controls and tighter infrastructure management provisions, such safeguards do not encompass the tape media itself. Most data stored on removable media can be lost, stolen or compromised. Unauthorized users can readily read tape data, analyze confidential information, and even rebuild entire systems - without a trace.
Security Built for Secondary Storage
CryptoStor Tape is a high-speed tape security appliance that compresses, encrypts and cryptographically authenticates data as it goes to tape media or virtual tape - without disrupting backup processes. CryptoStor Tape dynamically intercepts backup/restore communications between hosts and tape libraries - centrally managing and fully off-loading tape media security and encryption functions.
Global Key Management
NeoScale's Global Key Management delivers a tiered strategy for complete key security while ensuring recovery of encrypted tape information from any authorized location.
- Tape Media – Key-per-tape security for maximum granularity
- Appliance – FIPS operation mode ensures that unencrypted keys never leave the appliance. CryptoStor Tape further supports M of N (shared secret) backup and recovery of system keys and configuration data for secure appliance recovery.
- Data Center – CryptoStor Tape clustering automatically shares tape keys and policy data to ensure automated tape recovery via any clustered tape security appliance. If an appliance fails, a replacement appliance can be quickly authenticated and synchronized with the remaining cluster members.
- Enterprise-wide – Using CryptoStor KeyVault, CryptoStor Tape appliances can now support worldwide tape recovery through any authorized CryptoStor Tape appliance or CryptoStor Tape Retrieval Software application. This allows automated and secure sharing of media and keys between datacenters, one-step disaster recovery of keys, and secure sharing of encrypted media with business partners.
Complete Media Protection
Non-Intrusive – Intuitive Web interface incorporates user-defined policies with rules specifying application, WWN, SID, tape label and backup application. System generated or user-entered encryption keys enable unique, pooled or provisioned media protection eliminating the burden of software drivers, agents or hard coded internal keys.
Reliable – Connect Fibre Channel or LVD SCSI ports to readily achieve uninterruptible strong tape encryption and compression at high-speed, sustained tape data-transfer rates. The system manages all key and media cataloging. CryptoStor Tape secure key media transport technology ensures remote or vaulted tape recovery even without hardware.
Secure – On the fly, block-level AES 128 or 256 standards-based encryption/decryption of tape media data. The appliance completely supports role-based secure remote management, true non-deterministic number key generation, encrypt key protection, key/media cataloging and escrow, and media authentication.
Tape 700 Family Models
- Model #Ports Interface
- FC702 2-port 1/2 Gbps FC and FCAL
- FC704 4-port 1/2 Gbps FC and FCAL
- SC702 2-port LVD SCSI 320
Key Applications
- Eliminate in transit and off-site media theft and liability risks
- Compliance with eCommerce, Healthcare, FDA, EU and other privacy legislation
Highlight Specifications
- Tamper proof FIPS 140-2 Level 3 appliance
- Industry-proven cryptographic processing engine
- Dynamic AES-128/AES-256 encryption
- SmartCard authenticated access and auto key escrow
- M of N key recovery (Shamir’s shared secret)
- Integration with CryptoStor KeyVault™ for enterprise-wide secure, automated key archival
- Available kill switch
- Reliable, sustained high-speed data transfer rates
- Backup transparent: Symantec/Veritas, EMC/Legato, CommVault, HP, IBM, SyncSort, and CA (amongst others)
- Authenticated media integrity option
- Per-tape encryption key granularity
- Integrated data compression
- Web GUI, CLI, jumpstart wizard and LCD display
- Authenticated user level, SSL/SSH remote access
- Centralized key protection, catalogue and provisioning
- Appliance and software-only data recovery options
- Filtered logging, cryptographically secure audit and complete alerting
- Role-based users: administrator, security officer, recovery officer
- 2U, 30 lb, 19" rack mountable (17"x30"x3.5")
- Hot swappable, redundant fans and universal power supplies
- 100/240 VAC, 50/60Hz, 460W
|
