HP-UX 11i encrypted volume and file system (EVFS) is an operating system service that fills the compliance need to store files in a way that they cannot be read by unauthorised parties who obtain physical access to storage.
EVFS prevents the unauthorised use of data in storage obtained through theft, fraud, or unauthorised access.
Compliance with regulations on data retention and data protection.
Simple implementation and data protection. No application changes required. Works with most storage techniques such as direct attach, network attached, storage area network.
Strong data protection without sacrificing enterprise high availability and failover.
Storage device independent, no need to change or upgrade storage.
EVFS protects archived data with strong AES encryption.
EVFS archives and encrypts data with HP StorageWorks RIM.
Encryption is transparent to any application. It is easy to manage encryption keys.
EVFS has been tested to work in ServiceGuard clusters.
EVFS works with most popular storage devices supported by HP-UX 11i.
How it works
Encryption of data in volumes is the protection method. Files and data bases from current applications can be encrypted without changes to the application. The storage media including tape and disk supported by the HP-UX 11i operating environment can be used without modification to store the encrypted files and databases. Use of EVFS is simple and reduces the threat of data compromise.
Effective encryption with low TCO
When coupled with HP Integrity servers, EVFS offers highly efficient crypto processing by taking advantage of the server multiprocessing and pipelining features. HP-UX 11i EVFS provides for integrated and strong data protection. EVFS is included in the charges for the HP-UX 11i operating environment and their support agreements. All system components are designed to work together and are supported by HP.
Sensitive business transactions can be stored in a HP-UX 11i EVFS, encrypted volume that uses the Advanced Encryption Standard (AES). AES is a block cipher adopted as an encryption standard by the US government.
Flexible key management
EVFS uses a robust and flexible key management model. By utilising a public cryptography-based scheme, administrators of EVFS can share access to protected data without having to reveal the actual underlying symmetric encryption keys.
Use in a cluster fail-over environment
Customers in high availability environments can use EVFS since it has been designed to work in ServiceGuard clusters, thus ensuring in-depth protection for both fail-over and volume encryption of data.