site_logo

Previous Next


  1. Security+ Practice Tests
  2. Security+ Cram Notes
  3. Network+ Practice Tests

Systems and Security : Architecture and Design

1.5 Implement cybersecurity resilience

Backup types

Backup types are an important aspect of cybersecurity resilience and disaster recovery. Given below is a summary of some of the most commonly used backup types:

1. Full backup: A full backup creates a complete copy of the data being backed up, including all files, folders, and system-specific data.

2. Incremental backup: An incremental backup only backs up changes made to data since the last backup, making it faster and more efficient than a full backup.

3. Snapshot: A snapshot is a real-time copy of the data being backed up, providing an up-to-date view of the data in case of disaster.

4. Differential backup: A differential backup backs up only the changes made to data since the last full backup, making it faster than a full backup but slower than an incremental backup.

5. Tape backup: Tape backup refers to backing up data to magnetic tape, which can be an affordable and reliable option for long-term storage.

6. Disk backup: Disk backup refers to backing up data to a hard disk drive or solid-state drive, which can be faster and more convenient than tape backup.

7. Copy backup: A copy backup is a full backup of the data being backed up that is not intended to replace the original data.

A copy backup is different from a full backup in several ways:

1. Purpose: The main purpose of a copy backup is to create a duplicate of the original data, while the main purpose of a full backup is to create a complete and recoverable backup of the data.

2. Data preservation: A copy backup preserves the original data and does not modify it, while a full backup creates a complete and separate backup of the data that can be used for recovery.

3. Backup frequency: Copy backups are typically performed less frequently than full backups, as they are not intended to be used for disaster recovery.

4. Backup size: Copy backups are usually smaller than full backups, as they only duplicate the original data and do not include backup-specific information such as backup metadata and incremental changes.

5. Backup management: Copy backups are typically managed separately from full backups and are not integrated into backup and recovery processes.

Overall, copy backups can provide a convenient way to create a duplicate of data for specific purposes, such as data distribution or testing, but they are not typically used as the main backup solution for disaster recovery. Full backups, on the other hand, are an essential part of any backup and disaster recovery strategy, providing a complete and recoverable backup of the data being protected.

8. Network-attached storage (NAS) backup: NAS backup refers to backing up data to a network-attached storage device, which can provide central storage and easy access for multiple users.

9. Storage area network (SAN) backup: SAN backup refers to backing up data to a storage area network, which can provide high-speed data transfer and improved data availability.

10. Cloud backup: Cloud backup refers to backing up data to a cloud-based storage provider, which can provide scalable and accessible storage with improved security and disaster recovery capabilities.

11. Image backup: An image backup creates a complete copy of the data being backed up, including all system-specific data and applications, providing a complete and easily recoverable backup.

Regarding online vs. offline backups, online backups are performed in real-time, while offline backups are performed when the data being backed up is not in use.

Offsite storage - Distance considerations

Offsite storage is the storage of backup data at a different location from the original data, providing protection against disasters such as fires, floods, and earthquakes that could damage both the original data and the backup. Distance considerations include the speed of data transfer, the cost of data transfer, and the risk of data loss or theft during transportation.

Overall, backup types and storage options can greatly impact the effectiveness of disaster recovery and cybersecurity resilience, and organizations should carefully consider their specific needs and risks when choosing backup types and storage solutions.

1. Non-persistence

i. Revert to known state ii. Last known-good configuration iii. Live boot media

2. High availability

i. Scalability

3. Restoration order

i. Non-persistence: Non-persistence is a concept in computing that refers to the temporary nature of data and configuration changes. Non-persistence helps to revert the system to a known state or last known-good configuration by discarding any changes made since the last reboot. This helps to ensure that the system remains in a stable and secure state, even after unexpected incidents such as crashes or malware infections. Non-persistence can be achieved by using live boot media, which boots the system from a read-only media, such as a CD or USB drive, and does not persist any changes to the system.

ii. High availability: High availability refers to the availability of a system, service, or application to perform its intended function without interruption. High availability can be achieved through various methods, such as scalability, which involves adding resources to the system to increase its capacity and resilience. This helps to ensure that the system can continue to operate even in the event of failures or failures.

iii. Restoration order: Restoration order refers to the order in which data, configurations, and systems are restored in the event of a disaster. This is an important consideration for disaster recovery planning, as it affects the time it takes to restore systems and the impact of the disaster on the business. Restoration order is typically based on factors such as criticality of the systems, dependencies between systems, and data recovery requirements. It is important to carefully consider the restoration order in order to minimize downtime and ensure that critical systems and data are restored as quickly as possible.

Diversity

Diversity: Diversity in technology, vendors, cryptography, and controls can play a critical role in improving the resilience and security of a system. By using diverse technologies and vendors, organizations can reduce the risk of widespread failures and attacks, as well as reduce their dependence on a single vendor.

Technologies: Using a diverse set of technologies, such as different operating systems, databases, and network devices, can help to reduce the risk of single-point failures and increase the overall resilience of the system.

Vendors: Using multiple vendors for different components of a system can help to reduce the risk of vendor lock-in and dependence on a single vendor. This can also increase the resilience of the system, as the failure of one vendor does not necessarily mean the failure of the entire system.

Crypto: Using multiple cryptographic algorithms, such as different encryption and signing algorithms, can help to reduce the risk of cryptographic failures and attacks. This can increase the security of the system, as attackers must successfully attack multiple cryptographic systems to compromise the security of the system.

Controls: Using a diverse set of controls, such as firewalls, intrusion detection systems, and access controls, can help to reduce the risk of successful attacks and increase the overall security of the system. This can also help to ensure that the system is protected against a wider range of threats.

Overall, diversity in technology, vendors, cryptography, and controls can play a critical role in improving the resilience and security of a system. By using a diverse set of technologies and vendors, organizations can reduce the risk of widespread failures and attacks, as well as increase their overall security posture.


Previous Next



simulationexams.com ad

certexams.com ad