Section 14.128 Data Backups Flashcards
Objective 3.4 Explain the importance of resilience and recovery in security architecture
Data Backup
Creating duplicate copies of digital information to protect against data loss, corruption, or unavailability
■ Safeguards data from accidental deletion or system failures
1 Onsite Backup
Storing data copies in the same location as the original data
2 Offsite Backup
Storing data copies in a geographically separate location
Protect against physical disaters
Onsite and Offsite Backups Importance
● Onsite backups are convenient but vulnerable to disasters
● Offsite backups protect against physical disasters
Backup Frequency
Determining factor of backup frequency is the organisations RPO
● Recovery Point Objective (RPO):
○ Ensures that the backup plan will maintain the amount of data required to keep any data loss under the organisation’s RPO threshold
Backup Frequency Considerations
● Data change rate
● Resource allocation
● Organisational needs
Consider the RPO organisation to confirm that the backup plan preserves the necessary data amount
3 Encryption
Fundamental safeguard that protects the backup data from unauthorised access
and potential breaches
● Data-at-rest Encryption
○ Encrypting data as it is written to storage
● Data-in-transit Encryption
○ Protecting data during transmission
Importance: Safeguarding backup data from unauthorised access and breaches
4 Snapshots
Point-in-time copies capturing a consistent state
■ Records only changes since the previous snapshot, reducing storage requirements
Use cases: Valuable for systems where data consistency is critical, like databases and
file servers
5 Data Recovery
Several key steps in the data recovery process
● Selection of the right backup
● Initiating the recovery process
● Data validation
● Testing and validation
● Documentation and reporting
● Notification
Importance: Regaining access to data in case of loss or system failure; a well-defined and tested recovery plan is essential
6 Replication
Real-time or near-real-time data copying to maintain data continuity
Benefits:
● Ensures seamless data continuity
● Suitable for high-availability environments
7 Journaling
Maintaining a detailed record of data changes over time
Benefits:
● Enables granular data recovery
● Maintains an audit trail
● Ensures data integrity and compliance
Considerations: Data tracking granularity, size, retention policies, and security