Control HostEncryption
URI: HostEncryption
Package: Network
Description: Data storage devices on the host that are used to store application data are encrypted. This does not protect data when the host is running as decrypion keys ust be available to running processes. However, it does prevent access to data by removing storage devices from a host, e.g. after it has been stolen.
A physical host device, that could therefore be physically as well as electronically attacked (unlike a VirtualHost). |
Data stored on physical device PhysicalHost are encrypted, so data cannot be accessed by physically extracting and reading storage devices from PhysicalHost, as an alternative to logging into the device. |