All customer data stored on the Quick Backup network is strongly encrypted. Customers’ data is never transmitted or stored in unencrypted form. This includes transmission between the Quick Backup client software that is installed on client computers or servers and the Quick Backup storage servers, as well as the data during replication. The Quick Backup website uses SSL encryption to secure all pages that display or transmit customer data or account information.
By default, the Quick Backup software encrypts backup data using the 256bit Advanced Encryption Standard (AES). AES was adopted in 2001 by the US Government as the encryption standard for data classified as top secret after a 5-year testing and standardisation process. AES has been analysed extensively and is now used worldwide. Quick Backup customers can choose Two-fish or Triple DES as an alternative to AES if they desire.
Encrypting Key Protection
All encryption and decryption of backup data takes place on the client computer. Data is encrypted before it is transmitted to the Quick Backup servers for storage. When data is restored; the data is decrypted on the client computer after it is retrieved from the Quick Backup storage system. During the set-up of the Quick Backup client software on the customer’s computer, the user is prompted to enter an encryption key for each backup set created. The encrypting key is stored on the customer’s computer and is never transmitted over TCPIP to Quick Backup or any other location. Backup files cannot be decrypted without the encrypting key. Since the encrypting key is never transmitted to the Quick Backup servers, there is no way for any administrator, technician, engineer, or other person at Quick Backup to gain access to your data in usable form. Even in the unlikely event of a security breach at the data centre; there is virtually no risk of customer files being exposed to unauthorised viewing, assuming that a sufficiently secure encrypting key was selected by the customer. While customers can allow their encryption key to default to their password, this does not pose a serious security threat. Quick Backup does not store passwords in unencrypted form. Only a hashed version of the password is stored for each customer account. The hashed password cannot be used to decrypt data, even if the customer allowed the encrypting key to default to their password.
Seed Load Encryption
Quick Backup offers users with large storage requirements the ability to seed load their backup data onto portable USB media such as USB hard drives and USB Flash memory and physically ship the media to Quick Backup to be seeded (loaded) on the servers. The seed load data is encrypted then compressed and loaded onto the portable drives using the same backup software that is used to transmit the data to the data centre via TCPIP.
Emergency Restore Encryption
In the event that a customer experiences an emergency and needs to restore a large amount of data; Quick Backup will load the data onto portable USB media such as USB hard drives or USB Flash drives and express post or hand deliver the data to the customer. Since Quick Backup does not store any data in unencrypted form, the data that is loaded onto the media to be sent to the customer site is already encrypted with the customer’s encrypting key.
The Quick Backup software can be used to restore and decrypt the data from the media only with the correct decryption key.
Note: there is a charge for emergency restore services. Once the drives are returned, the drives are low level formatted clean before they are reused for any purpose.