News
8/27/2008
09:58 AM
George Crump
George Crump
Commentary
50%
50%

Cloud Storage Migrations

Finishing up the migration series, let's talk about how you would migrate out of a storage cloud. With public storage clouds in particular, this can be a critical issue. These services are all in their infancy. What if you pick the wrong one, how can you get your data back?

Finishing up the migration series, let's talk about how you would migrate out of a storage cloud. With public storage clouds in particular, this can be a critical issue. These services are all in their infancy. What if you pick the wrong one, how can you get your data back?Initially, migration isn't going to be a big ordeal because most early adopters of cloud storage are using the services as an area to store backups and archives, but as the comfort level of the services increases, so will the data sets. As those data sets increase, so will the importance of an exit strategy. Similar to migration issues with internal disk-based archive solutions, migration from a public cloud is going to be a challenge that is compounded by the fact that the Internet is between you and your data.

If the cloud supplier isn't using its own proprietary technology, migration could be made to another service using the same technology. For example, the cloud service provider could use a standard archive-based solution as its storage back end from one of the standard archive storage providers like Copan Systems, Permabit, or EMC, all of which have replication capabilities. You simply (assuming you negotiated this upfront) could replicate your data from one provider to another. Similar to online backup service providers that use tools like Asigra, moving to another provider is pretty straightforward.

If the public cloud supplier is using cloud storage and/or cloud storage software like those solutions from Cleversafe or ParaScale, again the ability to move data to another provider should exist -- just confirm that this capability is on the road map and that you are comfortable with the time frames.

Private storage clouds are essentially public storage clouds on your internal intranet, but because they are internal they follow much the same migration rules that we wrote about in our previous entry on disk archive migration. The challenge is that I expect a private cloud to grow in capacity much more rapidly than a public cloud. There is a higher comfort level, it is behind your firewall and access should be somewhat faster. With either a disk-based archive or a private cloud, selection is critical because as the capacity of the archive grows, migration becomes more and more challenging. With either technology look for scalability, cost efficiency, and reliability.

For more on cloud storage, sign up for our Webcast this afternoon Cloud Storage 101.

Track us on Twitter: http://twitter.com/storageswiss.

Subscribe to our RSS feed.

George Crump is founder of Storage Switzerland, an analyst firm focused on the virtualization and storage marketplaces. It provides strategic consulting and analysis to storage users, suppliers, and integrators. An industry veteran of more than 25 years, Crump has held engineering and sales positions at various IT industry manufacturers and integrators. Prior to Storage Switzerland, he was CTO at one of the nation's largest integrators.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading, January 2015
To find and fix exploits aimed directly at your business, stop waiting for alerts and become a proactive hunter.
Flash Poll
10 Recommendations for Outsourcing Security
10 Recommendations for Outsourcing Security
Enterprises today have a wide range of third-party options to help improve their defenses, including MSSPs, auditing and penetration testing, and DDoS protection. But are there situations in which a service provider might actually increase risk?
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-3580
Published: 2014-12-18
The mod_dav_svn Apache HTTPD server module in Apache Subversion 1.x before 1.7.19 and 1.8.x before 1.8.11 allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a REPORT request for a resource that does not exist.

CVE-2014-6076
Published: 2014-12-18
IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 allow remote attackers to conduct clickjacking attacks via a crafted web site.

CVE-2014-6077
Published: 2014-12-18
Cross-site request forgery (CSRF) vulnerability in IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences.

CVE-2014-6078
Published: 2014-12-18
IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 do not have a lockout period after invalid login attempts, which makes it easier for remote attackers to obtain admin access via a brute-force attack.

CVE-2014-6080
Published: 2014-12-18
SQL injection vulnerability in IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Join us Wednesday, Dec. 17 at 1 p.m. Eastern Time to hear what employers are really looking for in a chief information security officer -- it may not be what you think.