HP offers new encryption features for data storage

Oct. 13, 2008
Features improve management for tape libraries

DALLAS, Oct 13, 2008 -- HP today announced new disk encryption features and improvements to key management for tape libraries, enhancing the security of business-critical data and simplifying the management of compliance-related operations for midsize to enterprise customers.

Introduced at Storage Networking World, the new hardware encryption features, added to the HP StorageWorks XP24000 and XP20000 Disk Arrays, reduce the risk of security breaches by protecting the data stored on each disk drive in the array. This is done without degrading the XP array's high performance -- a problem for competing solutions.

The encryption enhancement for disk arrays, combined with effective key management, strengthens the HP Secure Advantage portfolio of hardware, software and services designed to protect data and resources, from the desktopto the printerand thedata center.

By encrypting data on both disk and tape, customers can be confident that "data at rest" -- information not traversing the network -- is secure and easily accessible. If disks are removed or stolen, the encrypted data is inaccessible and, therefore, protected. This encryption safeguards against loss of intellectual property and private information, and helps to protect corporate revenue and reputation.

The XP array's redundant hardware platform with data replication capabilities ensures business continuity in case of disaster. The XP array also includes storage virtualization and thin provisioning capabilities that let customers improve the utilization of their storage capacity, the accessibility of their data, and the scalability of their storage environment.

The emphasis on storage security is largely a response to increased demands for decades-long access to archives. Tightening regulations and the increased use of content-rich applications are causing the volume of stored data to grow at an exponential rate. This makes securing archived data much more challenging.

"As regulatory compliance and privacy requirements become more stringent, efficiently protecting stored data across an entire organization requires the combination of encryption and easy-to-use key management," said Jon Oltsik, senior analyst, Enterprise Strategy Group. "HP understands that security solutions need to evolve with growing business demands. The company's easy-to-use encryption and central key management solutions safeguard data for extensive periods of time so security and compliance demands are always met."

Secure key management with a single control point

HP has enhanced its Secure Key Manager (SKM) hardware solution, which automates encryption key management for HP LTO-4 enterprise tape libraries. SKM 1.1 now supports up to 2 million keys to ensure that multiple tape library installations and future encryption devices are protected.

The SKM also provides high-availability features to reduce bottlenecks during periods of high transaction volume, as well as failover capabilities to safeguard keys in case of an outage. SKM aids in meeting regulatory compliance by providing identity-based access, administration and logging; lifetime key archival; and automatic multisite key replication. The new solution has been submitted for rigorous U.S. government FIPS 140-2 security revalidation.

"Automating data security functions allows customers to fully capitalize on the critical information they need to grow their businesses," said Bob Wilson, vice president, Storage Platforms Division, HP. "To further protect that critical information, HP has significantly increased the complexity of storage security available to mitigate risk by encrypting XP arrays and expanding key capacity on the SKM."

More information about HP storage security is available at www.hp.com/go/encryption.