UK’s trusted IT infrastructure partner since 2003
sales@servnetuk.com
0800 987 4111
Servnet
ConfiguratorGet in Touch
RAID is not a backup: what RAID does and doesn't protect — analysisRAID is not a backup: what RAID does and doesn't protect — analysis — reach
Storage · RAID

RAID is not a backup: what RAID does and doesn't protect

Servnet Storage Team · Storage & Data Protection7 min read

RAID keeps your data online through a drive failure — but it will happily mirror a deletion, a corruption or a ransomware encryption to every disk instantly. RAID is availability, not backup. Size your array in the RAID calculator, then make sure it is backed up.

What protects you against what
RAID onlyBackup onlyRAID + BackupDrive failureYesRestoreYesAccidental deleteNoYesYesRansomwareNoIf air-gappedYesSite loss / fireNoIf off-siteYesStays onlineYesNoYes

What RAID protects against

RAID protects against drive failure — a disk dies, the array keeps running on parity or a mirror, and a replacement rebuilds. Depending on the level it also adds read or write performance. That is genuinely valuable: it keeps services available and buys time to replace hardware.

What it does not protect against is everything that is not a drive failure: accidental or malicious deletion, file corruption, a failed upgrade, ransomware, controller faults, fire, flood or theft. All of those affect the logical data, which RAID faithfully replicates across every drive.

The 3-2-1 rule

The backup standard is 3-2-1: three copies of your data, on two different media, with one copy off-site. Modern guidance extends it to 3-2-1-1-0 — one of those copies immutable or air-gapped, and zero backup errors after verification. RAID is, at most, part of one of those copies.

Ransomware in particular targets connected backups, so an immutable or air-gapped copy (object lock, or LTO tape on a shelf) is the copy that survives an attack. We cover the options on our tape & archive and backup & cyber-resilience pages.

The 3-2-1-1-0 backup rule
53 copies of dataproduction + two backups42 different mediae.g. disk + tape/object31 copy off-siteanother site or cloud21 immutable / air-gappedobject lock or offline tape10 errorsverified, test-restored

Build both

Use RAID for availability — pick a level that survives the failures you expect (see RAID levels explained) — and a separate backup for recoverability. The two solve different problems and you need both.

Servnet sizes and supplies both the primary array and the backup/air-gap tier. Use the calculator to plan the array, then talk to us about protecting it.

Key takeaways
  • RAID survives drive failure; it does not survive deletion, corruption, ransomware or site loss.
  • RAID replicates a bad write to every drive instantly — that is the opposite of a backup.
  • Follow 3-2-1-1-0: three copies, two media, one off-site, one immutable/air-gapped, zero errors.
  • Build RAID for availability and a separate backup for recoverability — you need both.
Frequently asked

FAQs — RAID is not a backup

RAID and backup

If I have RAID 6, do I still need a backup?

Yes. RAID 6 survives two drive failures, but it cannot recover a deleted file, a corrupted database, a ransomware encryption or a site loss — it replicates all of those across the array. You still need a separate, ideally air-gapped, backup.

What is the difference between RAID and a backup?

RAID is about availability — staying online through a drive failure. A backup is about recoverability — restoring a previous, clean copy after data is lost or damaged. They solve different problems.

What makes a backup ransomware-resistant?

An immutable or air-gapped copy — object storage with object lock, or offline LTO tape — that ransomware cannot reach or alter. That is the copy that survives an attack.

Related

Continue reading

More in Storage

Got a question this article didn't answer?

One conversation with an engineer who's done this before. No sales script.

Talk to Servnet →