Frequently asked questions about our solution for disaster recovery.
How fast can you restore from backup?
AirGapd allows us to failover to a cloud location and recover very quickly. Some servers recover in just minutes, and entire complex environments in an hour or two. Failing back to a client’s on-premises data center can take a while due to Internet and server speed, but production continues to run in the cloud until the failback occurs. There is no time service-level agreement (SLA) for failback to the customer’s environment since it entirely depends on their bandwidth, server, and storage speed.
How is AirGapd different from traditional DRaaS solutions?
We built AirGapd upon our intimate knowledge of how hackers deliver ransomware and damage recovery paths. Our expert team has years of experience in ransomware recovery and incident response. Most recoveries result in ransom payments because attackers destroy backups, backup servers, disaster recovery (DR) hotsite backups, etc. If they can damage your recovery path, ransom payments are necessary. We architected AirGapd to be ransomware resilient.
Traditional DRaaS solutions do not consider ransomware, the hackers actively in your environment, and their intentions. We witness what happens daily and continue to enhance AirGapd with new defense mechanisms for the latest tactics.
We fully manage your data from architecture, deployment, configuration, and monitoring to recovery. We never hand you the keys and tell you you’re on your own. We help you construct your DR plan at onboarding and continue to help you update and evolve your recovery paths. We’re here to help you restore your servers and recover quickly instead of dealing with weeks of downtime, business interruption, and extraordinary expenses if ransomware happens.
AirGapd closes the door on ransomware and threat actors. Instead of a live VPN to a DR site, which is vulnerable to attack, we ensure layers of security and separation between your network and your backup sets. We leverage HTTPS/TLS rather than SMB or CIFS. Your data is immutable once it touches our cloud. You don’t have the encryption keys for the attackers to steal as we never give them to you. Only we can open your backups.
We consider AirGapd to be RRaaS (Ransomware Resilience as a Service).
What if we pay a ransom to avoid public exposure of our data in an extortion attack?
Ransomware is the ransom of data that is encrypted in exchange for a key. If you choose to pay an attacker an extortion payment in order to control the public announcement of your breach, that is up to you. AirGapd is a business continuity solution to get you back up and running when you have ransomware or another disaster which would prevent systems from running in your datacenter or your cloud. AirGapd is not involved with nor responsible for extortion payments.
Can ransomware access the files you backup?
No. There is no network link or path for ransomware to reach your backup sets from the on-premises network. We have all VPNs to your site turned off and storage snapshots in the cloud transmitted up via HTTPS/TLS rather than SMB or CIFS.
Is AirGapd encrypted?
Yes, AirGapd utilizes AES 256 –bit encryption and transmits with TLS 1.2, so your data is encrypted in transit and at rest.
Are your data centers compliant?
All datacenters comply with SOC and ISO 27001, as well as other compliances. If there is a specific compliance you require, contact us, and we will verify whether our data centers in your country meet those compliance needs.
I have GDPR and data governance concerns. Where are your data centers?
We have data centers in globally distributed locations. We always try to keep your data in your country. It is important to let our team know about any compliance or governance needs so we can make sure your data is appropriately located.
Regarding GDPR, know that we only use your backup data for your recovery. We log all access to your backup sets, and it is our policy only to access your backup data for recovery testing and actual recovery. Your data belongs to you, and we don’t view, use, or disclose any of your backup data.
Will AirGapd work for on-premise, data center, and my servers in AWS or Azure?
AirGapd will work with your data center living in any location (AWS, Azure, RackSpace, on-premises, etc.)
Can you use the DR hot site or storage I already purchased?
No. We only backup using our tools and data centers to deliver the utmost security and control. Every client environment is different and managing those differences creates complexity and risk.
How often can you backup, and how long do you store backups?
How often we backup depends on several factors. If your servers and storage are fast, we can back up every few minutes. The amount of data that has changed in a few minutes is usually minimal, so the backup can run frequently.
Competing backup software may be trying to snapshot at the same time. When backup software uses snapshot technology, we must plan our backups to work around the schedule you have in place. We will work with your IT team and existing solution providers to develop the best schedule.
Internet speed can be a huge factor. If the frequency of backups impairs user performance, we can spread them out or throttle them.
You have options to choose your restore point objective (RPO). Most clients choose a one-day RPO, which means we are backing your data up once per day. Some clients who have highly transactional systems request a 15-minute RPO and can request more frequent backups.
What are RTO and RPO for continuity?
The restore point objective (RPO) for is 1 hour, but theoretically, RPO can be as low as every 15 seconds, depending on the server, storage, and bandwidth speeds.
While we can recover a single server within minutes, executing a complete site failover takes some orchestration and timing.