Every single data area processed in SAP HANA is highly sensitive. To safeguard against security threats, SAP HANA includes a built-in feature that encrypts the vast majority of accrued data, known as data volumes, on the SAP HANA server’s hard drive. However, there is no built-in way to encrypt the log files that record ongoing changes to the SAP HANA database, which are used to ensure that the current data set can be restored in the event of an error, such as a system failure. You can use standard file system encryption technology, but you would need to manually enter the decryption key before SAP HANA can start up.
To help SAP customers extend the direct encryption capability provided for data volumes to include log files, SUSE Linux Enterprise Server for SAP Applications provides a remote data center encryption function that enables you to encrypt SAP HANA log files directly on the server’s hard drive.
Learn how to extend the direct encryption capabilities provided for data volumes to include log volumes using a remote data center encryption function. Read the full article by Hannes Kuehnemund
SUSE delivers the remote data center encryption function with Service Pack 2 for SUSE Linux Enterprise Server for SAP Applications 12, which was initially released in November 2016. In addition to SAP HANA, the new encryption function can be used to boost the data security of a variety of other SAP and non-SAP applications.