ADSM-L
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ADSM-L] A Challenge?

2009-06-20 19:59:30
Subject: Re: [ADSM-L] A Challenge?
From: Joerg Pohlmann <jpohlman AT CA.IBM DOT COM>
To: ADSM-L AT VM.MARIST DOT EDU
Date: Sat, 20 Jun 2009 16:57:03 -0700 
Hi Guenther. Delete the filespaces for the node in question, then remove
the node - the completion of these processes/commands showing in the
activity log is what you can provide to your customer. The assurance that
the data is gone can be given in the form of the DRMDBBACKUPEXPIREDAYS
having elapsed and/or the volume history for database backups showing that
the database backups go back only to a date after the filespace deletion/
node removal. Assuming that the tapes returned from offsite have been
reused, there is now no "normal" way of getting the data back with TSM or
other OS-based utility. The only thing left over is the residual data issue
- the customer's data could have remnant traces of bytes of their data on
any tape volume or disk drive where, in the case where the disk drives and
tape volumes fell into the wrong hands, the customer's data could be
identified, given huge amounts of time, money, and computing resources. The
only realistic way to remove the residual data issue is to go with drive
level encryption on a DS8000 and tape encryption on LTO4 or TS1120/1130.

Hope this helps.

Joerg Pohlmann
250-245-9863


"ADSM: Dist Stor Manager" <ADSM-L AT VM.MARIST DOT EDU> wrote on 2009-06-20
01:32:20:

> Hi *TSMlers,
>
> given the following scenario:
> - one TSM Server
> - a lot of filesystem clients (mostly AIX/RH EL)
> - daily backup goes to a disk pool (some kind of cache) then to
sequential
> access file volumes
> - copy pool is on LTO2-tapes, residing in IBM 3583 libraries
>
> This ist working pretty will till now.
>
> Now the challenge:
> One special customer requests us to provide detailed information
(logfiles or
> something similar) about shredding all his backup data. I thought of
using
> the shred-feature introduced with TSM 5.4.
> But that does not work for sequential access volumes, nor does it for the
> copy_pool.
> And on the ramdom access disk pool it works only if i switch off
thecache=yes
> parameter.
> So i am some kind of stuck .. am I missing something?
> Any hints on this?
>
> regards Guenther
>
> --
> Guenther Bergmann, Am Kreuzacker 10, 63150 Heusenstamm, Germany
> Guenther_Bergmann at gbergmann dot de
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [ADSM-L] A Challenge?, Guenther Bergmann
Next by Date:  Re: [ADSM-L] Disaster Recovery, madunix
Previous by Thread:  [ADSM-L] A Challenge?, Guenther Bergmann
Next by Thread:  Re: [ADSM-L] A Challenge?, Huebner,Andy,FORT WORTH,IT
Indexes:  [Date] [Thread] [Top] [All Lists]