1.3 Security and Privacy

PlateSpin Protect provides several features to help you safeguard your data and increase security.

1.3.1 Security of Workload Data in Transmission

To make the transfer of your workload data more secure, you can configure the workload protection to encrypt the data. When encryption is enabled, data replicated over the network is encrypted by using AES (Advanced Encryption Standard).

If necessary, you can configure your PlateSpin Server to use a data encryption algorithm that is compliant with FIPS (Federal Information Processing Standards, Publication 140-2). See Enabling Support for FIPS-Compliant Data Encryption Algorithms (Optional) in your Installation Guide.

You can enable or disable encryption individually for each workload. See Workload Protection Details.

1.3.2 Security of Client/Server Communications

Because the PlateSpin Server installation enables SSL on the PlateSpin Server host, secure data transmission between your Web browser and the PlateSpin Server is already configured to HTTPS (Hypertext Transfer Protocol Secure). The installation also adds a self signed certificate if no valid certificates are found.

1.3.3 Security of Credentials

Credentials that you use to access various systems (such as workloads and failback targets) are stored in the PlateSpin Protect database and are therefore covered by the same security safeguards that you have in place for your PlateSpin Server host.

In addition, credentials are included within diagnostics, which are accessible to accredited users. You should ensure that workload protection projects are handled by authorized staff.

1.3.4 User Authorization and Authentication

PlateSpin Protect provides a comprehensive and secure user authorization and authentication mechanism based on user roles, and controls application access and operations that users can perform. See Section 2.2, Setting Up User Authorization and Authentication.