Continuous Data Protection as a Strategy for Reduced Data Recovery Time

“…Ransomware has been identified as one of the growing threats in the business community, with the potential to cause tremendous damage and representing 95% of extortion-based malware attacks (Mansfield-Devine, 2016;Richardson & North, 2017;Symantec, 2016). Ransomware can be addressed after it occurs with sophisticated backup strategies that utilize a sufficient time-delineated RPO restore point capability (Evans, 2014;Mugoh et al, 2011). Ransomware should be considered a generalized threat, and provisions should be made in the NIST guidance documents to help address it and remediate it once it happens.…”

“…Firms without the traditional backup paradigm and no multiple RPO strategy cannot rebuild data and systems to recover from a ransomware attack. They either have to pay the ransom or lose precious data and productivity (Evans, 2014;Mugoh et al, 2011). Traditional backup could be added as another method, or perhaps a specific tactic, under evaluation guidance.…”

“…Figure 6. Diagram of traditional backup paradigm, adapted from Thomas (2017b) RTO is the standard metric to determine the time it takes to effect a restore after an issue or event (Mugoh, Ateya, & Shibwabo, 2011). RPO refers to the point in the system's history or its state at a given time that needs to be restored, e.g., three hours ago (Mugoh et al, 2011).…”

“…CDP can be considered a more comprehensive form of replication, where the target seeks to keep track of all changes as they occur with a limited rollback period (Evans, 2014;Mugoh et al, 2011). However, because of the massive amount of detail required to keep track of these transactions, storage can very rapidly become very expensive.…”

“…Thus data protection methodologies such as replication and CDP are often set up to create an immediate copy of the system or data to respond instantaneously to issues, and they have limited rollback capabilities (Evans, 2014;Mugoh et al, 2011;Thomas, 2017a). While these paradigms often have versioning capability, they are often limited to static images of a short-term retention period, with no long-term retention due to the high expense of storage media and system resources needed for operations and their general availability (Thomas, 2017b).…”

Improving Backup System Evaluations in Information Security Risk Assessments to Combat Ransomware

“…Ransomware has been identified as one of the growing threats in the business community, with the potential to cause tremendous damage and representing 95% of extortion-based malware attacks (Mansfield-Devine, 2016;Richardson & North, 2017;Symantec, 2016). Ransomware can be addressed after it occurs with sophisticated backup strategies that utilize a sufficient time-delineated RPO restore point capability (Evans, 2014;Mugoh et al, 2011). Ransomware should be considered a generalized threat, and provisions should be made in the NIST guidance documents to help address it and remediate it once it happens.…”

“…Firms without the traditional backup paradigm and no multiple RPO strategy cannot rebuild data and systems to recover from a ransomware attack. They either have to pay the ransom or lose precious data and productivity (Evans, 2014;Mugoh et al, 2011). Traditional backup could be added as another method, or perhaps a specific tactic, under evaluation guidance.…”

“…Figure 6. Diagram of traditional backup paradigm, adapted from Thomas (2017b) RTO is the standard metric to determine the time it takes to effect a restore after an issue or event (Mugoh, Ateya, & Shibwabo, 2011). RPO refers to the point in the system's history or its state at a given time that needs to be restored, e.g., three hours ago (Mugoh et al, 2011).…”

“…CDP can be considered a more comprehensive form of replication, where the target seeks to keep track of all changes as they occur with a limited rollback period (Evans, 2014;Mugoh et al, 2011). However, because of the massive amount of detail required to keep track of these transactions, storage can very rapidly become very expensive.…”

“…Thus data protection methodologies such as replication and CDP are often set up to create an immediate copy of the system or data to respond instantaneously to issues, and they have limited rollback capabilities (Evans, 2014;Mugoh et al, 2011;Thomas, 2017a). While these paradigms often have versioning capability, they are often limited to static images of a short-term retention period, with no long-term retention due to the high expense of storage media and system resources needed for operations and their general availability (Thomas, 2017b).…”

Improving Backup System Evaluations in Information Security Risk Assessments to Combat Ransomware

The Snapshot View Analysis for Continuous Data Protection

Backup with Storage in a Database