News
1/31/2011
12:19 PM
George Crump
George Crump
Commentary
Connect Directly
RSS
E-Mail
50%
50%

Backup Deduplication 2.0 Needs Better RAID

As we wrap up our series on what is needed in the next generation of backup deduplication devices, one of the key needs is going to be a better drive protection capability. Today most deduplication systems leverage RAID to provide that drive protection, however as capacities increase, RAID rebuild times are going to get worse. Vendors need to provide a better solution.

As we wrap up our series on what is needed in the next generation of backup deduplication devices, one of the key needs is going to be a better drive protection capability. Today most deduplication systems leverage RAID to provide that drive protection, however as capacities increase, RAID rebuild times are going to get worse. Vendors need to provide a better solution.The first part of the problem is that disk backup systems are always going to be one of the first storage platforms in a data center to adopt larger drive capacities so they can continue to narrow the price gap between disk and tape. As these capacities increase so does the time it takes for RAID rebuilds to complete if a drive fails. With RAID 5 this means a longer period of time that your backups are exposed to complete failure. With RAID 6 while you can sustain a second failure without data loss overall backup and recovery performance is still impacted. Of course the longer the rebuild time the greater the chance that there could actually be a second drive failure.

You may ask yourself "why does a total data loss matter?". Fair question, this is after all backup data. First most backup administrators, armed with disk backup, now count on not having to perform as many full backups, instead running higher numbers of incremental, differentials or synthetic full daily backups. The full backup window may now be designed to happen once a quarter. The time saved by eliminating the weekly full backup has probably been absorbed by some other process. Total data loss is especially costly on backup deduplication systems since its efficiency depends on previous generations of files. A total failure means that the entire deduplication process would essentially need to start all over again.

Until drive manufacturers make drives that never fail, the key is for backup deduplication systems to get through this rebuild process sooner or to use a different process all together. RAID is RAID and the larger drives get the more work will be involved in the rebuild process. There are ways around this though. First you can throw more storage horsepower at the problem. While your are limited to drive mechanics the faster the parity calculations can be done the better. Another option is to not fail the entire drive but to use intelligence to mark out the bad section of the drive and keep on going.

Another option is to use a different data protection algorithm than RAID. There are erasure coding or Reed-Solomon techniques that may have better rebuild times. These and other techniques understand what blocks on a drive contain data and only does the rebuild for those blocks, again faster. The other option, probably least attractive in the disk backup space is mirroring since, again, it is trying to compete with tape.

A final option may be to actually use smaller, faster drives and then through backup virtualization, leverage tape to keep the size of the front end disk smaller. As we discussed in our recent article "Breaking The Top Four Myths Of Tape vs. Disk Backup" tape is not susceptible to the cost per GB scrutiny that disk is when it is used as part of the backup process. It may sound a little like turning back the clock. This small disk based cached backed by an increasingly reliable tape library or even as a front end to a deduplicated disk backend may be an ideal solution.

Additional Blogs in this Series:

Deduplication 2.0 - Recovery Performance Backup Deduplication 2.0 - Density Backup Deduplication 2.0 - Power Savings Backup Deduplication 2.0 - Integration

Track us on Twitter: http://twitter.com/storageswiss

Subscribe to our RSS feed.

George Crump is lead analyst of Storage Switzerland, an IT analyst firm focused on the storage and virtualization segments. Find Storage Switzerland's disclosure statement here.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Must Reads - September 25, 2014
Dark Reading's new Must Reads is a compendium of our best recent coverage of identity and access management. Learn about access control in the age of HTML5, how to improve authentication, why Active Directory is dead, and more.
Flash Poll
10 Recommendations for Outsourcing Security
10 Recommendations for Outsourcing Security
Enterprises today have a wide range of third-party options to help improve their defenses, including MSSPs, auditing and penetration testing, and DDoS protection. But are there situations in which a service provider might actually increase risk?
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-3621
Published: 2014-10-02
The catalog url replacement in Keystone before 2013.2.3 and 2014.1 before 2014.1.2.1 allows remote authenticated users to read sensitive configuration options via a crafted endpoint, as demonstrated by "$(admin_token)" in the publicurl endpoint field.

CVE-2014-6242
Published: 2014-10-02
Multiple SQL injection vulnerabilities in the All In One WP Security & Firewall plugin before 3.8.3 for WordPress allow remote authenticated users to execute arbitrary SQL commands via the (1) orderby or (2) order parameter in the aiowpsec page to wp-admin/admin.php. NOTE: this can be leveraged usi...

CVE-2014-6414
Published: 2014-10-02
OpenStack Neutron before 2014.2.4 and 2014.1 before 2014.1.2 allows remote authenticated users to set admin network attributes to default values via unspecified vectors.

CVE-2014-6856
Published: 2014-10-02
The AHRAH (aka com.vet2pet.aid219426) application 219426 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

CVE-2014-6857
Published: 2014-10-02
The Car Wallpapers HD (aka com.arab4x4.gallery.app) application 1.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Chris Hadnagy, who hosts the annual Social Engineering Capture the Flag Contest at DEF CON, will discuss the latest trends attackers are using.