The administrator must encrypt the data at rest to ensure data on the SAN is not compromised if it is
leaked. Data at rest refers to data that is stored on a device or a medium, such as a hard drive, a flash
drive, or a SAN (Storage Area Network). Data at rest can be leaked if the device or the medium is lost,
stolen, or accessed byunauthorized parties. Encrypting data at rest means applying an algorithm that
transforms the data into an unreadable format that can only be decrypted with a key. Encryption
protects data at rest from being exposed or misused by attackers who may obtain the device or the
medium.
