Air Gapping
Category: infrastructure
A physical security isolation control where a computer system is completely disconnected from public networks and the internet.
Air-gapped nodes are reserved for mission-critical infrastructure, including root cryptographic certificate generation blocks or offline cold financial ledger backings. To extract data from an air-gapped server, an actor must possess physical hardware access permissions.
Common Examples
- We maintain our primary offline archive on an air-gapped system cluster to insulate it from any potential remote automated payload threats.
- Updating software definitions on an air-gapped system node requires manual validation of encrypted hardware media blocks by two engineers.