Page 770 - StudyBook.pdf
P. 770
754 Chapter 12 • Operational and Organizational Security: Policies and Disaster Recovery
A: MAC is the only method of the three that is considered to be of highest
strength. It is suitable for systems that need to be extremely secure, such as
those that use mission critical applications.With MAC, every account and
object is associated with groups and roles that control their level of security and
access.
Q: I work for a small company that only has one facility, so storing backup tapes at
another site is not an option.What can I do to keep the backup tapes safe in
case of a disaster?
A: There are many options for storing backup tapes offsite.A safety deposit box
could be rented at a bank to store the backup tapes, or a firm that provides
storage facilities for backups could be hired.When deciding on a storage
facility, ensure that it is secure and has protection against fires and other disas-
ters.You do not want to store your backups in a location that has a higher like-
lihood of risk than your own facilities.
Q: I’ve implemented RAID for fault tolerance through my Windows OS, but still
have to shutdown the system to remove and replace a failed hard disk. Is there
any way to implement RAID and not have to shut down the server when a
disk needs replacing?
A: RAID can be implemented through hardware, which can support “hot swap-
ping,” in which a disk can be removed from the server without having to take
it down. RAID takes a higher toll on the system, as RAID functions must run
through the OS running on the machine. Because of this, hot swapping is often
unsupported through the OS, which is why you must take down the system to
replace a disk.
www.syngress.com
