Reference: http://technet.microsoft.com/en-us/library/dn195884.aspx
- Under Backup->Information Collected, Processed, or Transmitted:
Customer Data and file content is encrypted with an auto-generated key created by your Windows Server software.
What does this mean? Can we get more information on the auto-generated key and encryption process.
- Under Backup-> Use of information -> Point number 2.
A token signed with the certificate that was generated during the server registration step. This allows the Service to authenticate your server uniquely
What token it is referring to?
2. Under Backup-> Use of information -> Point number 3.
The encrypted form of the auto-generated encryption key is transferred and stored along with your backed-up Data. When you restore your Data, this encrypted key is restored first and unencrypted on your registered server.
Is it stored in a different file or what is the format? How is this key gets unencrypted during restore; what algorithm it uses?
3. Under Backup-> Use of information -> Point number 3.
Then, the encrypted data is downloaded as a part of the restore feature, and unencrypted locally before restoring your Data to the registered server.
What key will it use to unencrypt (decrypt)? Is it the passphrase?
Laksh