Data security is an important part of the backup strategy. You must protect your information from unauthorized access, especially if you back up sensitive data to remote locations. To keep your data safe, you can use data encryption.
Data encryption transforms data to an unreadable, scrambled format with the help of a cryptographic algorithm and a secret key. If encrypted data is intercepted, it cannot be unlocked and read by the eavesdropper. Only intended recipients who know the secret key can reverse encrypted information back to a readable format.
In Veeam Agent, encryption works at the backup job level. Veeam Agent uses the block cipher encryption algorithm and stores data in the encrypted format to a backup file.
Encryption is performed on the trusted side depending on the backup target:
- Encryption is performed on the source side for all backup targets except the Veeam backup repository.
- Encryption is performed on the target side if you store backups in the Veeam backup repository.
Decryption is performed on the same side as encryption.
To create encrypted backups, you must enable the encryption option and specify a password that will be used for data encryption. To learn more, see Data Encryption Settings.
You cannot enable encryption options in the properties of the Veeam Agent backup job if you have chosen to create Veeam Agent backups in a Veeam backup repository. For such jobs, encryption options are managed by a backup administrator working with Veeam Backup & Replication. To learn more about data encryption capabilities available in Veeam Backup & Replication, see the Data Encryption section in the Veeam Backup & Replication User Guide.
In This Section