Welcome to the Episode 59, part of the continuing series called “Behind the Scenes of the NetApp Tech ONTAP Podcast.”
This week, we welcome Juan Mojica (@Juan_M_Mojica), product manager for the new feature NetApp Volume Encryption (NVE). NVE is available in ONTAP 9.1, which is being announced today at NetApp Insight!
We actually had planned for this episode to go out before Insight, but realized we couldn’t announce any 9.1 stuff until the 26th. So you got Episode 57 on Scale Out Networking instead. 😛
What is NetApp Volume Encryption (NVE)?
Previously, to encrypt data at rest on ONTAP systems, it was an all or nothing deal. ONTAP 9 introduced the ability to do an on-box key management, but you still were encrypting everything.
With NetApp Volume Encryption (NVE), you can encrypt data at a per-volume level, giving you more flexibility and avoiding the need to encrypt entire systems.
Because NVE leverages the AES-NI capabilities on CPU, there are hardware restrictions.
Supported platforms include:
- FAS 6280 and 6290
- FAS 8xxx
- Newest released platforms (A series, FAS9xxx, etc)
Find out more in the episode below.
Finding the Podcast
The podcast is all finished and up for listening. You can find it on iTunes or SoundCloud or by going to techontappodcast.com.
Also, if you don’t like using iTunes or SoundCloud, we just added the podcast to Stitcher.
I also recently got asked how to leverage RSS for the podcast. You can do that here:
You can listen here:
17 thoughts on “Behind the Scenes: Episode 59 – NetApp Volume Encryption”
Pingback: ONTAP 9.1 RC1 is now available! | Why Is The Internet Broken?
Hi! Good news! Will nve be available on metrocluster?
Yep! Already available in 9.1RC1!
Is NVE a native or does it require additional feature licensing?
It’s a licensed feature due to Global Trade Compliance.
Pingback: Behind the Scenes: Episode 61 – Security and Storage | Why Is The Internet Broken?
Pingback: Post-Insight Wrap-up, Storage Security, and other thoughts! | JK-47
Does it require specific controllers/hardware?
Yes, needs AES-NI capable processors. So, fas 6xxx, 8xxx, and new platforms
Pingback: 9.1RC2 is now available! | Why Is The Internet Broken?
Pingback: ONTAP 9.1 is now generally available (GA)! | Why Is The Internet Broken?
If somehow I lost my storage nodes but my disks are intact, can I use the backup of the key manager to restore access to my encrypted volumes ?
I believe this is possible, but I’ve asked the PM to confirm.
Pingback: ONTAP 9.2RC1 is available! | Why Is The Internet Broken?
Pingback: ONTAP 9.2 is Generally Available! (GA) | Why Is The Internet Broken?
Pingback: ONTAP 9.4RC1 is now available! | Why Is The Internet Broken?
Pingback: ONTAP 9.6RC1 is available! | Why Is The Internet Broken?