AS-4-Discussions,Assignments
Colin Horn
winsec3e_ppt_ch08.pptxSecurity Strategies in Windows Platforms and Applications
Lesson 8
Microsoft Windows Backup and Recovery Tools
© 2021 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Cover image © Sharpshot/Dreamstime.com
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2021 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
1
Learning Objective(s)
Implement security controls to protect Microsoft Windows systems and networks.
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2021 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Key Concepts
Backup and restore procedures for Microsoft Windows servers, Windows clients, and networks
Cloud backups
The Microsoft Windows Backup and Restore utility
Virtual image backups
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2021 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
The Need for Backups
Primary copy
The copy of information you use most frequently
Data is a valuable asset
Can be damaged or destroyed
Backups provide secondary copy
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
4
The Need for Backups: Reasons for Data Loss
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Hardware errors—Hard disks or disk controllers can fail. Hardware failures may occur
slowly, introducing errors into your data files over time. Equipment can also be lost or stolen.
Hundreds of thousands of laptops are left in airports and taxicabs each year.
Software errors—Software bugs and poorly written software can cause you to lose data
you thought was safe.
Malicious software—Many types of malware damage or delete files to alter or destroy
data.
User actions—Users can take actions that damage or destroy data. Users can misuse
application software or OS utilities to cause data loss. Data loss because of user actions
can be either intentional or accidental. Each type of motivation requires a different type of
control.
Attacks—Successful attacks on your information systems can cause substantial data loss.
Many of the controls you implement keep attackers from successfully harming your information’s
security.
Environmental issues—Many issues with the computing environment can cause
computers to fail and possibly damage data. Air-conditioning system failures can cause
computers to overheat and possibly result in hardware damage. Fire suppressants and
sprinkler systems can damage computers as well. Power spikes and fluctuations can also
cause hardware damage that could result in losing data.
Natural disasters—This is the category most people consider first when discussing reasons
for backups. Disasters such as fires, floods, tornadoes, and earthquakes can cause
substantial damage and result in data loss. Any large-scale disaster has the potential to
damage your data.
5
The Need for Backups
Anytime you lose the primary copy of your data, you have two choices.
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
In most cases, reconstructing data is the last resort. Duplicating
the work effort required to reconstruct data is often counterproductive,
wasteful, and expensive.
6
Reconstruct the data.
Recover the data from a secondary source.
Backup Process
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
7
Identify files
Select target location
Set schedule
Backup Planning
Which files or folders will you back up?
Will you use a static list of files or dynamically identify the items for backup?
Where will the backed-up files be copied?
Will you use removable media?
Does the backup require human intervention?
How will you label and identify backup media?
What controls will you use to protect the C-I-A properties of the backup media?
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
8
Backup Planning (Cont.)
How frequently will you create a backup?
Will you back up all your data each time, or just what changed since the last backup?
How many generations of backups will you keep?
How will you use the backup to recover lost data?
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
9
Restore Process
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
10
Select target location
Transfer secondary file copies back to primary locations
Restore Process (Cont.)
Considerations before running restore process:
Copy all files and folders from the backup media back to their original locations or only some files and folders?
How long will it take to restore the selected data?
What data will I lose in the restore process?
Will I be able to use the data I restore?
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
11
Restore Process (Cont.)
Recovery time objective (RTO)
Is amount of time it should take to recover a resource and bring it back to normal operation
For critical resources
Example
RTO for a server is 3 hours
Full restore takes 4 hours
You can reenter and verify lost data in 2 hours
A restore is not the most efficient choice
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
12
Workstation Backups
File History
Allows users to identify personal files and designate a location to where they will be automatically backed up
Windows Backup and Restore (Windows 7) utility
Wizard-driven utility
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Locally stored data are an integral piece of organizational data
Workstation users store local documents, spreadsheets, presentations, custom settings, and other data
13
Windows File History Backup Options
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
14
File History File Versions Browser
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
15
Previous Versions of a File via File Explorer
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
16
Windows Backup and Restore (Windows 7) Utility
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
The Windows Backup and Restore Wizard prompts for the following:
Where Windows will store the backup—Select a local hard disk, removable media, or
network resources. The wizard will display a list of all valid known backup locations.
What to back up—Let Windows select the most important files and folders to back up or
select which files and folders to include.
If Windows selects the files to back up, it will choose data files that are saved in libraries, on the desktop, and in default Windows folders for all user accounts on the computer.
If the drive you are saving the backup on is formatted using NTFS and has enough disk space, Backup and Restore (Windows 7) will also include a system image of programs, windows, and all drivers and Registry settings in the backup.
When to back up—Select the frequency and time Windows will start the backup.
17
Backup and Restore (Windows 7)
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
18
Server Backups
Servers:
Store large volumes of data
Provide software and data-dependent services to an organization’s users
Use Windows Server Backup utility
Backup plan should include methods to easily and quickly retrieve backup images on demand
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
19
Windows Server Backup
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Backup Wizard prompts for:
What to back up—Back up an entire server or select which files and folders to include.
Microsoft recommends backing up entire servers in most cases.
When to back up—Select the frequency and time Windows will begin the backup
process.
Where Windows will store the backup—Select a disk dedicated for backup images, a
volume with other files on it, or a shared network folder.
20
Network Backups
Back up files and folders to a network shared folder or device
Benefits:
Protects backed-up data from damage to primary computer or storage device
Local disk space not used to create backups
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
21
Network Backups (Cont.)
Drawbacks:
Can degrade network performance
May be slower than using a local disk
May time out and fail more frequently than local resources
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
22
Cloud Backups
Backing up data across the Internet to remote cloud servers
Benefits:
Physically separate from your local computer
Drawbacks:
Lack of bandwidth
Anyone with a network sniffer between you and backup destination can intercept data
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
For security, use strong connection encryption with Internet backup product
23
Disaster Recovery and Business Continuity Plans
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
DRP
Covers the actions you must take when a disaster strikes to address the damage and return your infrastructure to a point where you can continue operations.
BCP
Ensures critical business functions continue in the face of interrupted processes
24
Disaster recovery plan (DRP)
Business continuity plan (BCP)
Disaster Recovery Plan
Contains steps to restore an IT infrastructure to a point where an organization can continue operations
Identifies each component of an IT infrastructure that is critical to primary business functions
States the steps to take to replace damaged or destroyed components
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
25
Disaster Recovery Options
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
26
Business Continuity Plan
DRP
Ensures IT infrastructure is operational and ready to support primary business functions
Focuses mainly on IT
BCP
An organizational plan; doesn’t focus only on IT
Ensures organization can survive any disruption and continue operating
If disruption is major, BCP will rely on DRP to provide an IT infrastructure
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
27
Recovery/Restoration Process
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
The general process to recover, or restore files includes these steps:
Verify that you have a stable infrastructure. Since you just suffered data loss, be sure that you know why you lost data and that you have addressed the problem. If you have not addressed the problem, you could end up losing more data.
Open your restore utility. The utility you choose will depend on the backup utility you used to create your backup images. In short, you have to use a restore utility designed to work with your backup utility.
Select the backup image to use and the type of restore (complete or selective) you’ll perform.
28
Fix the problem
Open restore utility
Select backup image; restore
Windows Workstation Backup and Restore (Windows 7)
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Follow the Backup and Restore Wizard prompts to enter:
The scope of the restore operation—Choose one of the following options:
Select the Restore My Files button to restore only files that you own.
Select the Restore All Users’ Files link to restore files for all users.
Select the Select Another Backup to Restore Files From link to restore files from a different backup location.
What files and folders to restore—Add individual files and folders you want to restore.
Where Windows will place the restored files—Restore files back to their original location or to another folder
29
Windows Server Recovery
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Follow the Server Recovery Wizard prompts:
Where Windows can locate the backup image—Choose the local server or a remote
server.
When the backup was created—Choose the desired date for the backup you want to use.
What to recover—You can recover four different ways. Select one of the following:
Files and folders—Select individual files and folders to recover.
Volumes—Select entire volumes to recover.
Applications—If you chose to back up specific applications, you can select the applications
to recover.
System state—Choose to recover only the system state to recover essential system
settings.
Where Windows will store the recovered files and folders—Files and folders can be
recovered to their original location or another location. You can also select what Windows
does if it encounters duplicate files and whether the recovery operation should recover
access control lists (ACLs) along with recovered files and folders.
30
Rebuilding Systems from Bare Metal
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
A restore that includes the operating system and all configuration settings is called a bare metal recovery.
The recovery process starts with a stable computer and Windows boot media (DVD or USB device).
Windows will install all computer settings and OS using the backup selected.
When the backup finishes, you should be able to reboot from your hard disk and log on to your newly restored computer.
31
Managing Backups with Virtual Machines
Virtualization
The ability to run multiple virtual machines (VMs) simultaneously on a single physical computer
Allows organizations to do more with less physical hardware
VM
A software implementation of a physical computer
Windows Server includes Microsoft’s Hyper-V technology
Third-party virtualization products include VMware, VirtualBox, and VirtualPC
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
32
Best Practices for Microsoft Windows Backup and Recovery
Identify critical business functions.
Develop a plan to continue critical business functions.
Define recovery time objectives for critical resources.
Develop a backup plan.
Automate backup operations.
Verify backup operations.
Document backup and recovery.
Test recovery procedures.
Review recovery plan quarterly.
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
33
Summary
Backup and restore procedures for Microsoft Windows servers, Windows clients, and networks
Cloud backups
The Microsoft Windows Backup and Restore utility
Virtual image backups
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
34
