Available as an additional feature on top of the base SvSAN license, SvSAN’s data encryption feature is the most cost-effective encryption solution for storing data in edge computing environments. The 100% software approach eliminates the need for operating system or hypervisor-level encryption and does not require any special hardware. You get a simple and inexpensive way to protect sensitive data at the edge, where servers aren’t typically located in secure datacenters.
Any data handled by SvSAN’s data encryption feature is encrypted before it is written to disk, using a FIPS 140-2 compliant encryption algorithm (XTS-AES-256). The solution meets HIPAA, PCI DSS & SOX requirements and uses CPU AES-NI encryption instructions that provide hardware acceleration.
Flexibility is underlined through SvSAN’s compatibility with any KMIP-compliant Key Management Server (KMS) and the user has the option to encrypt all data, or just selected volumes as well as secure erasure and rekey. Additionally, all data is encrypted on the drives and in-flight between storage caching tiers and high availability clustered servers.
Another big benefit is that data destruction (disk scrubbing or degaussing) is not required on failed drives before discarding.