News
6/2/2010
05:20 PM
George Crump
George Crump
Commentary
50%
50%

Guided Storage Analysis

Software tools that provide storage and data protection analysis are very useful. They can help inventory, monitor and bring to your attention problems in the environment. Typically there are two challenges that I see with these tools however. First, they don't provide recommendations on what to do about a problem and they don't help you prioritize and organized your addressing of the problem.

Software tools that provide storage and data protection analysis are very useful. They can help inventory, monitor and bring to your attention problems in the environment. Typically there are two challenges that I see with these tools however. First, they don't provide recommendations on what to do about a problem and they don't help you prioritize and organized your addressing of the problem.The best way to describe the first problem of not providing recommendations on how to address an issue is that these tools will tell you that the patient is bleeding but they won't tell you where or how to suture the wound. For example, they may tell you that certain backup jobs are taking longer to complete than normal but won't tell you potential reasons why. Some won't even report the anomaly, you have to manually figure that out by analyzing trending data.

Storage management and data protection management tools should automatically analyze trending information and alert you to changes in the environment or its processes. When something is wrong these tools should interact with a knowledge base of some sort to help give recommendations on what to do to fix the problems that are being identified. One of the best solutions for this is interaction with an online community that uses the tool. I've seen several where a user can post in a forum what their storage management tool is telling them and then users can provide advice on what they should do about it.

The second problem deals with the reality that most IT administrators don't have the luxury of scheduling time to deal with problems in their day and that most problems come in waves when you have the least time to fix them. I'd like to see storage management and data protection analysis tools move to address this, providing organizational help to the IT administrator. Imagine being able to log in to a console and have the system guide you through what you should do each day. It could have you address problems that are affecting SLAs first and address more minor problems second. When there is available time in the day the software could even provide you with tasks to focus on that are not causing failures but tasks that are impacting performance and could lead to future failures. Think about it, a tool that helps you to be proactive instead of reactive.

Progress is being made along these fronts. There are a few tools now that are comparing storage or data protection failures to their affect on SLAs which helps greatly with prioritizing failed tasks. The next step is helping guide the IT administrator through their day.

Track us on Twitter: http://twitter.com/storageswiss

Subscribe to our RSS feed.

George Crump is lead analyst of Storage Switzerland, an IT analyst firm focused on the storage and virtualization segments. Find Storage Switzerland's disclosure statement here.

Comment  | 
Print  | 
More Insights
Comments
Oldest First  |  Newest First  |  Threaded View
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Five Emerging Security Threats - And What You Can Learn From Them
At Black Hat USA, researchers unveiled some nasty vulnerabilities. Is your organization ready?
Flash Poll
10 Recommendations for Outsourcing Security
10 Recommendations for Outsourcing Security
Enterprises today have a wide range of third-party options to help improve their defenses, including MSSPs, auditing and penetration testing, and DDoS protection. But are there situations in which a service provider might actually increase risk?
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-7445
Published: 2015-10-15
The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denial of service (memory consumption) via an application that processes graphics data, as demonstrated b...

CVE-2015-4948
Published: 2015-10-15
netstat in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x, when a fibre channel adapter is used, allows local users to gain privileges via unspecified vectors.

CVE-2015-5660
Published: 2015-10-15
Cross-site request forgery (CSRF) vulnerability in eXtplorer before 2.1.8 allows remote attackers to hijack the authentication of arbitrary users for requests that execute PHP code.

CVE-2015-6003
Published: 2015-10-15
Directory traversal vulnerability in QNAP QTS before 4.1.4 build 0910 and 4.2.x before 4.2.0 RC2 build 0910, when AFP is enabled, allows remote attackers to read or write to arbitrary files by leveraging access to an OS X (1) user or (2) guest account.

CVE-2015-6333
Published: 2015-10-15
Cisco Application Policy Infrastructure Controller (APIC) 1.1j allows local users to gain privileges via vectors involving addition of an SSH key, aka Bug ID CSCuw46076.

Dark Reading Radio
Archived Dark Reading Radio
Join Dark Reading community editor Marilyn Cohodas and her guest, David Shearer, (ISC)2 Chief Executive Officer, as they discuss issues that keep IT security professionals up at night, including results from the recent 2016 Black Hat Attendee Survey.