Home > Storage > PowerMax and VMAX > Mainframe > Dell PowerMax and DLm: Cyber Security for Mainframe Storage > Virtual Vault for Cyber Protection
The goal of a Virtual Vault is to create multiple snapsets of your data so that, if a cyber attack occurs, customers can analyze the snapsets to determine the point at which to restore data. An ancillary objective is to preserve the corrupted environment to understand the cyber attack and how it occurred. Here is one architecture that customers could evaluate and modify to meet their cyber needs.
This design assumes that the workload at DC1 is production, where your mainframe environment and storage is running. Use SRDF/A to replicate the disk from primary DC1 to the secondary site (DC2).
On the DC2 side (considered your backup and disaster recovery site), you would have a second mainframe environment running Mainframe Enabler SCF. On the DC2 mainframe environment running SCF, create a VDG within zDP with the following characteristics:
DLm provides the ability to take data that might not be accessed regularly and send it to a public cloud (through S3) or private cloud (such as Dell ECS). DLm provides this ability through its Long Term Retention (LTR) functionality. For long-term data retention, leverage a DLm that is connected on your DC2 site, and use the DLm LTR feature. With this DLm environment, set up your daily backup jobs while keeping the data on virtual tape (or out to the cloud through the DLm LTR feature) for at least 30 days. Customers must determine how long to keep the data based on recovery requirements to maintain business operations and the amount of storage capacity needed to store that data.
This suggested architecture provides: