Link to home
Start Free TrialLog in
Avatar of loosain
loosain

asked on

Hyper V Replication over WAN/VPN and then encrypted to not taken any data

Hi,

is there any chance to protect a replicated hyper-v-machine so that nobody without a key/password/certificate... is able to start the replication-vm nor to open the virtual disc ?
We are thinking about to replicate our virtual server (host and vm are 2012 R2)  to another  location over WAN/VPN. But we are afraid that someone could take the data from the vortual disc stored at the destination or that some could start the vm at the destination. Is it possible to encrypt the whole vm so that only the owner of the key could make something with the replication-vm ?

Thanks for you ideas or hints

loosain
SOLUTION
Avatar of David Johnson, CD
David Johnson, CD
Flag of Canada image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Not really. If you don't trust the location and access of the replicated server, you probably shouldn't be replicating to it. This really boils down to the 10 immutable laws of security, and laws 3 and 10 apply here.
10 Immutable Laws of Security For those that don't know them
Avatar of loosain
loosain

ASKER

It´s not that i don´t trust the location. It´s about having an idea to rise the security. Having a high wall is good. having a higher wall is better...
Thus my reference to law 10. That logic is rarely sound.
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
But therein is the inherent contradiction. If there is someone who can start the server to perform this theoretical "once a day" replication, that fundamentally means they still have access to the underlying virtual disk and could start the VM and thus no longer meets the requested goal. The two are diametrically opposed.
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Cliff, if I got him right, the danger is at the target location, not at the source as well. So it's no problem what happens/is possible at the source.
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
ASKER CERTIFIED SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of loosain

ASKER

I close this discussion.