Announcement: Azure Backup security capabilities for protecting cloud backups

Azure Backup now provides security capabilities to protect cloud backups. These security features ensure that customers are able to secure their backups and recover data using cloud backups if production and backup servers are compromised.  These features are built on three principles – Prevention, Alerting and Recovery – to enable organizations increase preparedness against attacks and equip them with a robust backup solution.

 

 

Features

1. Prevention: New authentication layer added for critical operations like Delete Backup Data, Change Passphrase. These operations now require Security PIN available only to users with valid Azure credentials. 
2. Alerting: Email notifications are sent for any critical operations that impact availability of backup data. These notifications enable users to detect attacks as soon as they occur.
3. Recovery: Azure backup retains deleted backup data for 14 days ensuring recovery using any old or recent recovery points. Also, minimum number of recovery points are always maintained such that there are always sufficient number of points to recover from.

 

Get Started

To start leveraging these features, navigate to recovery services vault in the Azure portal and enable them. https://sec.ch9.ms/ch9/9935/b83a62e6-48bb-44cc-b765-c73a87709935/AzureBackupSecurityFeatures_mid.mp4 explains how to get started by enabling these features and how to leverage them in Azure Backup.

 

Read more on https://azure.microsoft.com/en-us/blog/azure-backup-security-feature/.