DMX-3 security features
187
Data Integrity, Availability, and Protection
If the customer has purchased the EMC Certified Data Erasure for
Symmetrix Disks Service, the following services will be provided by
the EMC CE:
◆ A certificate of completion for all disks successfully erased.
◆ Those nonerasable drives will be left with the customer for
disposition at no additional charge.
EMC Certified Data Erasure will have the ability to restart
(continuing where it left off on the physical disk) without script
intervention after DA failover, IML, or power down. Enginuity will
log an event indicating that disk erasure has completed. This status
should be of high enough severity to cause the Symmetrix to call
home. Enginuity will also provide data detailing the results of the
completed Disk Erasure process so that a log file of the process can be
created.
Data Erasure
guidelines
The following guidelines must be adhered to during the Data Erasure
process:
◆ Data Erasure requires permanent sparing. Disk Erasure is
invoked only upon successful completion of permanent sparing.
◆ Data Erasure will only be able to run on an uninvoked “Not
Ready” spare. This prevents a drive that is visible to the host from
being exposed to Data Erasure.
Note: See “Permanent sparing” on page 213 for additional information.
IPsec security
features
The GigE IPv4/v6 (IPsec capable) channel directors provide support
for the latest Internet Protocol standards, including IPv6 and IP
Security (IPsec). These new directors contain an embedded line-grade
encryption co-processor to enable strong encryption for
SDRF-over-IP connections without degrading performance. IPsec is
enabled through a separately purchased software license. IPsec
capabilities will be configured using SMC or by EMC using the
Service Processor. The new IPsec capable channel directors can
support any combination of IPv4/v6 and IPsec or no IPsec on either
DMX-3 or DMX-4 systems.
To Next Page
Loading...
Need help?
General
