News
4/29/2009
09:24 AM
George Crump
George Crump
Commentary
Connect Directly
RSS
E-Mail
50%
50%

Application Aware Storage and Protection

In storage, its easy to forget that it is all about the application, especially when it comes to protection and more importantly recovery of that application. There is a wide variety of storage data protection from basic RAID to snapshots. There is an even wider variety of data protection software that provides multiple levels of protection, but between the two there is only rudimentary understanding of the application.

In storage, its easy to forget that it is all about the application, especially when it comes to protection and more importantly recovery of that application. There is a wide variety of storage data protection from basic RAID to snapshots. There is an even wider variety of data protection software that provides multiple levels of protection, but between the two there is only rudimentary understanding of the application.Companies like NetApp, SyncSort and AppAssure are all now offering solutions that have a more intimate, application aware understanding of specific applications that are critical to the enterprise; Exchange being the most common, but some are including support for SQL and SharePoint as well.

Application aware data protection and/or storage moves well beyond the capability of knowing how to quiesce the application so that the changes of a consistent copy of the environment is made. Protection of applications like Exchange, SQL and Oracle are almost useless when the last known good copy is last nights backup. The replay of transaction logs alone, if they survived the data failure, could take a very long time, let alone how long the base restore would take.

A more granular approach that either thins out the amount of data moved, as is the case with block level incremental (BLI) backups or utilizes on-board snapshots is preferable here, so the frequent capture of the data can be made. If an Exchange environment can be protected every 15 minutes with minimal data movement, the work to reapply transaction logs will be minimal. With these techniques, snapshots or BLI data growth is minimal.

As we discuss in an earlier entry "The Problem with Snapshots", the advantage of the off-primary storage solutions, i.e. not snapshots, is that if there is a failure on your primary storage, your protected copy does not fail along with it. In many cases these off-primary solutions can even allow you to start operating immediately off the protected copy while you rebuild and recover the fallen host or storage. The ability to recover in place, without having to move data in these key applications becomes more critical as capacities increase and recovery windows decrease.

Going further these solutions need to understand what application they are protecting at a very granular level; messages within Exchange or objects within SQL or Sharepoint. For example you should be able to use one of these tools on Exchange to mount the backup image of the environment for the ability to search for the data needed and instantly restore mailboxes or individual messages directly from the snapshot or disk backup that the tool created.

They should also provide the ability to quickly determine if the backup set itself is valid by doing some sort of corruption detection. We've all seen the studies indicating that almost 50% of recovery attempts initially fail. The wrong time to learn that your backup copy of your Exchange environment is corrupt is when you attempt to recover it. Having that knowledge prior to you actually needing that backup copy can allow you to either take another backup, again with these tools there is little impact, or at least you know not to waste time recovering bad data.

Optimal performance of these mission critical applications is always going to grab headlines but when the server is down, the storage has failed or a user's mailbox is corrupted, all the talk of optimal is quickly traded for "just get me back to work at any speed".

Track us on Twitter: http://twitter.com/storageswiss.

Subscribe to our RSS feed.

George Crump is founder of Storage Switzerland, an analyst firm focused on the virtualization and storage marketplaces. It provides strategic consulting and analysis to storage users, suppliers, and integrators. An industry veteran of more than 25 years, Crump has held engineering and sales positions at various IT industry manufacturers and integrators. Prior to Storage Switzerland, he was CTO at one of the nation's largest integrators.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
DevOps’ Impact on Application Security
DevOps’ Impact on Application Security
Managing the interdependency between software and infrastructure is a thorny challenge. Often, it’s a “developers are from Mars, systems engineers are from Venus” situation.
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-2227
Published: 2014-07-25
The default Flash cross-domain policy (crossdomain.xml) in Ubiquiti Networks UniFi Video (formerly AirVision aka AirVision Controller) before 3.0.1 does not restrict access to the application, which allows remote attackers to bypass the Same Origin Policy via a crafted SWF file.

CVE-2014-5027
Published: 2014-07-25
Cross-site scripting (XSS) vulnerability in Review Board 1.7.x before 1.7.27 and 2.0.x before 2.0.4 allows remote attackers to inject arbitrary web script or HTML via a query parameter to a diff fragment page.

CVE-2014-5100
Published: 2014-07-25
Multiple cross-site request forgery (CSRF) vulnerabilities in Omeka before 2.2.1 allow remote attackers to hijack the authentication of administrators for requests that (1) add a new super user account via a request to admin/users/add, (2) insert cross-site scripting (XSS) sequences via the api_key_...

CVE-2014-5101
Published: 2014-07-25
Multiple cross-site scripting (XSS) vulnerabilities in WeBid 1.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) TPL_name, (2) TPL_nick, (3) TPL_email, (4) TPL_year, (5) TPL_address, (6) TPL_city, (7) TPL_prov, (8) TPL_zip, (9) TPL_phone, (10) TPL_pp_email, (11) TPL_authn...

CVE-2014-5102
Published: 2014-07-25
SQL injection vulnerability in vBulletin 5.0.4 through 5.1.3 Alpha 5 allows remote attackers to execute arbitrary SQL commands via the criteria[startswith] parameter to ajax/render/memberlist_items.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Sara Peters hosts a conversation on Botnets and those who fight them.