News
10/26/2009
02:59 PM
George Crump
George Crump
Commentary
50%
50%

Cloud Based Backup, Ready For Business?

Cloud based backup services have been successful in the consumer space. Companies like Mozy, Carbonite and others are protecting thousands of laptops and home desktops, but can cloud based backups services move beyond protecting consumer or prosumer data and into the data center? Are cloud based backups ready for business?

Cloud based backup services have been successful in the consumer space. Companies like Mozy, Carbonite and others are protecting thousands of laptops and home desktops, but can cloud based backups services move beyond protecting consumer or prosumer data and into the data center? Are cloud based backups ready for business?A logical starting point for many businesses is to look to these service providers to do what they already do well, laptop backup, and help solve that problem in the data center. Most of the current solutions available have a business version and companies like Backblaze are specifically focusing on the corporate laptop backup market. They are trying to add value by improving simplicity, lowering performance impact and eliminating, difficult to manage in a corporate environment, capacity based pricing. Moving into this space however also pits them against enterprise laptop protection solutions already available from companies like Symantec and Iron Mountain.

Another segment that is beginning to adopt the cloud for backups is the small to medium size business data center itself. As we discussed in our article "Cloud Models Shift to Embrace Application Protection" this backup has to move beyond backing up laptop data and on to backing up servers and their associated applications. Recovery is as important in the SMB data center as it is in the enterprise. Deduplication may make backup across the internet feasible, it does not help recovery, where all the data must be restored. Look for appliance based deployments like those from Asigra and Axcient to be popular. This allows for, at a minimum, the most recent copy of data to be stored locally and the cloud be counted on for more archive type of recoveries.

For many companies with an existing backup software solution and strategy, the simpler choice may be to extend the solution to backup to the cloud. Companies like Symantec and Atempo are adding extensions to their current software that allow data to be pushed to the cloud for DR purposes or to use cloud storage as an archive.

One of the justifications for deduplication is to use its ability to optimize WAN bandwidth and replicate or EVault backup data to a disaster recovery site. Data Domain for example reports that over 60% of its customers are using their solution for this purpose. There are two roadblocks to leveraging these capabilities. First you need to make sure everything is integrated correctly and set to optimize the WAN bandwidth you have and second you need to have a viable second site to send the data.

The next wave of providers that leverage the internet are set to address this challenge. Recovery Service Providers like Simply Continuous can provide the ability to be the hosting site for your target deduplication appliance as well as help with the consulting and configuration required to make sure that your data is getting to the target location in optimal fashion.

The next step is for the large enterprise to leverage cloud based backup, something we will discuss in a future entry.

Track us on Twitter: http://twitter.com/storageswiss

Subscribe to our RSS feed.

George Crump is lead analyst of Storage Switzerland, an IT analyst firm focused on the storage and virtualization segments. Find Storage Switzerland's disclosure statement here.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading, January 2015
To find and fix exploits aimed directly at your business, stop waiting for alerts and become a proactive hunter.
Flash Poll
10 Recommendations for Outsourcing Security
10 Recommendations for Outsourcing Security
Enterprises today have a wide range of third-party options to help improve their defenses, including MSSPs, auditing and penetration testing, and DDoS protection. But are there situations in which a service provider might actually increase risk?
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-7402
Published: 2014-12-17
Multiple unspecified vulnerabilities in request.c in c-icap 0.2.x allow remote attackers to cause a denial of service (crash) via a crafted ICAP request.

CVE-2014-5437
Published: 2014-12-17
Multiple cross-site request forgery (CSRF) vulnerabilities in ARRIS Touchstone TG862G/CT Telephony Gateway with firmware 7.6.59S.CT and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) enable remote management via a request to remote_management.php,...

CVE-2014-5438
Published: 2014-12-17
Cross-site scripting (XSS) vulnerability in ARRIS Touchstone TG862G/CT Telephony Gateway with firmware 7.6.59S.CT and earlier allows remote authenticated users to inject arbitrary web script or HTML via the computer_name parameter to connected_devices_computers_edit.php.

CVE-2014-7170
Published: 2014-12-17
Race condition in Puppet Server 0.2.0 allows local users to obtain sensitive information by accessing it in between package installation or upgrade and the start of the service.

CVE-2014-7285
Published: 2014-12-17
The management console on the Symantec Web Gateway (SWG) appliance before 5.2.2 allows remote authenticated users to execute arbitrary OS commands by injecting command strings into unspecified PHP scripts.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Join us Wednesday, Dec. 17 at 1 p.m. Eastern Time to hear what employers are really looking for in a chief information security officer -- it may not be what you think.