
www.BOBcloud.net BOBcloud Data Encryption | 13
How To Manage Encryption Keys?
To meet both the needs of your clients and to satisfy any contractual, legal, or
regulatory requirements related to data confidentiality and security, BOBcloud
allows partners flexibility on how they choose to manage their clients’ encryption
key:
Allow their clients manage their own encryption keys.
The client encryption key is not uploaded and stored on the BOBcloud backup
Server. Clients managing their own encryption keys provides the highest level of
protection. The downside is, if a client loses or forgets their encryption key they will
not be able to access their backup sets or recover data from their backup sets.
Manage their client encryption keys.
A copy of the encryption key is uploaded and stored on the BOBcloud backup server
in a special file (EncryptionKeys-YYYY-MM-DD.json.rgz) for each backup set. This is
encrypted using an AES 256 bit algorithm to maintain the confidentiality and security
of the client data. Even the partner or the BOBcloud server administrator cannot
access the encryption keys in this file.
The EncryptionKeys-YYYY-MM-DD.json.rgz file located in BOBcloud user home
path: %_USERHOME%\{%username%}\%backupset_id%\settings folder.