Eric –

 

To be quite honest I don’t care for virtual appliances where mission critical infrastructure is needed.   What happens if the appliance(s) go down or become corrupted and they are located on the NSE drives?  It could even be a mistake where a junior admin moves something where it shouldn’t be and then you are in serious trouble.  There are just too many variables in my opinion with a VM, so my preference is definitely towards a hardware based implementation.   The worst thing that can happen in that case is that you need to replace the physical appliance and move your encryption key card over and your problem is solved.   Worst case scenario with a virtualized appliance is complete loss of data and bricked disks.

 

With regards to the appliance license model, everything is included.  The SafeNet appliance is just a line item on an NSE shelf quote.

 

Hope this helps.

 

Thanks,

 

 

Hi Anthony,

 

I’m a part of Ray’s team.  Am curious whether your customers’ licensing of SafeNet involves just the appliances or also involves CAL licenses for the drives as well?  Have you found the physical implementations to work out better than the virtual appliances, or not much difference between the two?

 

Thanks,

 

Eric Peng | Systems Administrator
Esri | 380 New York St. | Redlands, CA 92373 | USA
T 909 793 2853 x3567

epeng@esri.com | esri.com

 

 

 

 

Hi all -- for those of you doing encryption (on NetApp or another
platform):

What are you using for Key Management?  SafeNet?  IBM's KMS?  Something
else?

Do you find yourselves purchasing self-encrypting drives *only* for
datasets you're sure need it vs. creating a catch-all location where
mixed data lives but at lesat you can say that it's "all encrypted at
rest"?  The approach here can obviously impact costs...

Thanks,
Ray
_______________________________________________
Toasters mailing list
Toasters@teaparty.net
http://www.teaparty.net/mailman/listinfo/toasters