Suggested Answer:C🗳️
Upon installation and activation of the feature, the following keys are generated by RSA BSAFE and persisted to the Lockbox: ✑ KEK Wrapping Key (KWK) ✑ Data Encryption Keys (DEKs) for all bound drives A new KEK is generated each time the array boots. The KEK is wrapped with the KWK and passed to the SAS controller during the system boot process. Using the persisted KWK, the SAS controller can decrypt the KEK. Incorrect Answers: D: Self-Encrypting Drive (SED) technology is another variation of D@RE which is widely used and offers similar functionality as CBE. However, with SEDs, you have to pay a premium on every drive and only certain drives are offered in SED form. References: https://www.emc.com/collateral/white-paper/h13296-dare-wp.pdf (page 8)
C is correct
Data at Rest Encryption (D@RE) Overview
The VNX2 series introduces Data at Rest Encryption (D@RE) which uses hardware
embedded in the SAS (Serial Attached SCSI) controllers to encrypt data stored on disk.
D@RE is available on the entire VNX2 series, as an optional software license, starting
with the VNX5200 through the VNX8000
upvoted 1 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Asrarpasha
2 years, 2 months agorachid1761960
2 years, 9 months ago