How does Beemo meet 100% of ANSSI recommendations ?

Beemo répond à toutes les exigence de l'ANSSI

The ANSSI (Agence nationale de la sécurité des systèmes d’information) acts as the national authority for information systems security. It regularly provides advice on IT security to individuals, businesses and local authorities.

In terms of data backup, the ANSSI issued 11 recommendations in 2023, available here

Find out how Beemo complies with all these recommendations below :

1/ BUILD AND PROTECT

ANSSI : Define a backup policy by identifying the data that is critical to your company’s business and specifying the frequency with which it is important to back it up.

BEEMO : The administration of Beemo Technologie’s backup solutions enables you to select precisely which items are to be backed up and how often. Each backup set is also configured with a retention time and a number of versions to keep.

ANSSI : Backup and restore operations should be considered as sensitive administration operations that require appropriate protection : hardened administration workstation, flow in an administration network, etc.

BEEMO : Access to Beemo backup servers is protected. The data contained is encrypted and the communication protocol is proprietary, which means that no unauthorised person or software can access our servers..

ANSSI : Make your backup infrastructure independent of your production directories (Active Directory, etc.).

BEEMO : Our backup servers are autonomous and independent of the rest of the IT infrastructure thanks to our proprietary communication protocol.

ANSSI : Make sure you control access to your backups to ensure that they are not modified or altered and are always available, particularly when using Cloud backup services.

BEEMO : The data stored by Beemo is encrypted, signed (so it cannot be modified) and inaccessible from the outside. The data is therefore unalterable.

ANSSI : Be careful about the sensitivity of the data stored if you use an off-site solution, in a public cloud or with an external service provider. Encrypt backups beforehand by your own means if necessary.

BEEMO : All data backed up by Beemo is encrypted using a unique encryption key, regardless of the solution chosen (with or without cloud).

ANSSI : Continuously upgrade your backup infrastructure as your information systems evolve (virtualisation, cloud, etc.) and as the threat evolves. Don’t keep an obsolete infrastructure in production.

BEEMO : The Beemo (Data Safe Restore) software is constantly updated to keep pace with technological developments in software and hardware (Microsoft 365, Synology NAS, etc.).

Free download Data backup : Best practice - A 10-question audit of your backup system to assess your level of security. - Best practice in data backup and recovery.

2/ ANTICIPATE AND REACT

ANSSI : Define a recovery strategy, in line with your disaster recovery plan and taking into account the main attack scenarios identified on your information systems (ransomware, espionage, etc.). Carry out regular restoration tests. Involve management in the acceptable degraded modes in the event of a cyber crisis.

BEEMO : Every Beemo solution allows you to carry out restoration tests. We strongly recommend that all our partners carry out at least one restoration test a year for each of their customers.

ANSSI : Don’t forget to include the installation media and configurations of your business applications in your backups.

BEEMO : The Flash Rescue feature built into all Beemo solutions enables a complete machine to be restored (system, applications, settings, documents, etc.).

ANSSI : Make regular offline backups (disconnected from the IS).

BEEMO : BEEMO backup servers are natively « offline », as are data replications in our data centers.

ANSSI : Plan an emergency isolation procedure for the backup system (servers, media, etc.) in the event of a suspected compromise or attack in progress.

BEEMO : The data on our backup servers is natively isolated from the rest of the IS, so no specific procedure is required.

ANSSI : After an incident, bear in mind that your backups may contain vectors of compromise. Restore from trusted sources (official images, signed installation binaries), check that configurations are compliant, run a virus scan on data.

BEEMO : Sophos anti-virus software is integrated into each backup server, and all backups are encrypted and signed.

Articles sur le même thème

Plus d'articles

Une question ? Un projet ?

N’hésitez pas à nous contacter !

0800 711 500

Contactez-nous