Backup file security

Ensure that you do not accidentally corrupt a backup file or misplace its encryption password.

To provide security for the backup files, use the following guidelines:

  • Retain a copy of backup files in a location that is not on the IBM® Security Guardium® Key Lifecycle Manager computer, and not in the IBM Security Guardium Key Lifecycle Manager directory path. The separate location ensures that other processes cannot remove audit logs and backup files if IBM Security Guardium Key Lifecycle Manager is removed.
  • Do not edit the files in a backup archive. The files become unreadable.
  • Ensure that you retain the password that was used to encrypt a backup file. The same password is required to decrypt and restore the backup file.