One way to satisfy the auditors and still be able to recover at the hotsite when ALL of your peoduction volumes have been backed up with encryption is to use the vendor's floor system or your own customized recovery-only system. Build yourself a small system with only those utilities that you need to recover, set ALL the passwords the same and then dump that system to UN-encrypted tapes. Show the auditors that there is NO corporate data on that recovery system, no production userids, password, etc. Finally erase it from your corporate DASD so the security people will not worry about another unsecure system on their network.
A single pack VM system (with IPLable DDR as the first file on the tape) has saved us from long outages before and was the original basis of a very successful Disaster Recovery program. Now with encrypted tape drives, how many DR vendors will have them before our next disaster or should we bring our own spare drives with us? /Tom Kern /301-903-2211 --- Tom Schmidt <[EMAIL PROTECTED]> wrote: > ...snipped.. > I can't wait to hear about a site being required (by auditors, et al) to > encrypt all backup copies - especially sensitive system volumes - and then > not be able to restore under dire circumstances. > > Surely that's an issue raised and cured before now... ??? > __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
