Backup copies allow data to be restored from an earlier point in time to help the business recover from an unplanned event. Storing the copy of the data on separate medium is critical to protect against primary data loss or corruption.
Data backup should be an essential part of your computer/server usage routine. One of the most important aspects of IT security is data protection. Let's take an example of how to simply back up some of the sensitive data - in our example SSH keys.
First of all, we need to back them up:
tar -cf ssh-keys.tar ~/.ssh/.alvosec
Then we will encrypt the file by using openssl:
openssl aes-256-cbc -salt -pbkdf2 -in ssh-keys.tar -out ssh-keys.tar.enc
Now we need to transfer that file into secure environment, where multiple layers of data protection exist. In our example we will transfer on Nextcloud application.
More about Nextcloud encryption model.
Having that file transferred, we need to store encryption password in secure environment. We recommend using BitWarden.
As your password manager, Bitwarden takes vault security seriously. This secure approach includes end-to-end encryption, administrative controls, and safety for client applications. Let’s take a closer look at each. More about their security model read here.
You are done, you have stored key and file on two separated locations, where data loss is less likely to happen.