ADSM-L
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Tivoli Encryption Questions

2006-06-29 23:43:51
Subject: Re: Tivoli Encryption Questions
From: Wira Chinwong <wira AT SCSI.CO DOT TH>
To: ADSM-L AT VM.MARIST DOT EDU
Date: Fri, 30 Jun 2006 10:39:55 +0700 
Hi,
   I have another question? I know TSM can protect data by encryption
algorithm for BA client.
What's about the TDP (for oracle,informix...)? Do we can encrypt them by the
same BA client algorithm.


Thanks you,

Wira

-----Original Message-----
From: ADSM: Dist Stor Manager [mailto:ADSM-L AT VM.MARIST DOT EDU] On Behalf Of
Andrew Raibeck
Sent: Wednesday, June 28, 2006 9:11 PM
To: ADSM-L AT VM.MARIST DOT EDU
Subject: Re: [ADSM-L] Tivoli Encryption Questions

> 1) What type of encryption is used for Tivoli passwords stored in the
> Windows Registry?

Currently DES-56 is used.

> 2) If a password is set for the Tivoli Encryption on a node, can that
> password ever be changed or does the same password always have to be
> used for the life of the data backed up.  For example, you backup and
> encrypt your files with password xxxxxx stored in the windows
> registry.  Can you change that password at some point to yyyyyy and be
> able to restore that data

Yes and no. Yes with the xxxxxx key, no with the yyyyyy key.

> or is xxxxxx forever linked
> to that encrypted data?

Correct. If you back up a file with encryption key xxxxxx, subsequently
change the key at a later date, then when you try to restore the file, you
will be prompted to enter the correct encryption key (xxxxxx). If you do not
know the correct key, then you will not be able to restore or retrieve the
data. THERE IS NO "BACK DOOR". So be careful about changing encryption keys,
as it is up to you to manage and track them.

Regards,

Andy

Andy Raibeck
IBM Software Group
Tivoli Storage Manager Client Development Internal Notes e-mail: Andrew
Raibeck/Tucson/IBM@IBMUS Internet e-mail: storman AT us.ibm DOT com

IBM Tivoli Storage Manager support web page:
http://www-306.ibm.com/software/sysmgmt/products/support/IBMTivoliStorageMan
ager.html

The only dumb question is the one that goes unasked.
The command line is your friend.
"Good enough" is the enemy of excellence.

"ADSM: Dist Stor Manager" <ADSM-L AT VM.MARIST DOT EDU> wrote on 06/21/2006
10:16:38 AM:

> I have a couple of questions regarding encryption from TSM.
>
> 1) What type of encryption is used for Tivoli passwords stored in the
> Windows Registry?
>
> 2) If a password is set for the Tivoli Encryption on a node, can that
> password ever be changed or does the same password always have to be
> used for the life of the data backed up.  For example, you backup and
> encrypt your files with password xxxxxx stored in the windows
> registry.  Can you change that password at some point to yyyyyy and be
> able to restore that data or is xxxxxx forever linked to that
> encrypted data?
>
> Thanks,
>
> Jeremy Curtis
> Backup Administator
> Vail Resorts, Inc.
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Deleting a tape that doesn't exist, William Boyer
Next by Date:  HSM with compressed JFS, Michael Garnebode
Previous by Thread:  Re: Tivoli Encryption Questions, Andrew Raibeck
Next by Thread:  Fw: Tivoli Encryption Questions, Nicholas Cassimatis
Indexes:  [Date] [Thread] [Top] [All Lists]