I quote from this article Forget about hacking – your servers might get stolen:
Are data centers as secure as they want you to think?
Though security is often a selling-point for many data centers, they aren’t necessarily safe from theft. There have been plenty of incidents involving hardware theft from data centers.
A few examples:
- Multiple robberies at a Chicago data center
The Chicago-based colocation company CI Host had its data center broken into on October 2, 2007. The intruders passed through a reinforced wall with the help of a power saw, attacked the night manager with a tazer, and stole at least 20 servers. This particular data center had at that time been burglarized at least four times since 2005.- Fake police officers rob Verizon data center
A Verizon Business data center in northern London got $4 million worth of computer equipment stolen on December 6, 2007. The “heist” was done by between three to five men dressed as police officers. They managed to gain entry to the data center and tied up the five staff members before stealing the equipment....
I would imagine that it would be much easier for someone inside the data center to steal data by taking out a raid disk during routine maintenance. Besides the implicit trust to host your server there, how do you protect yourself from being an unknowing victim of data theft? Would full disk encryption work if you need to supply them the password for performing maintenance?