News
6/2/2010
05:20 PM
George Crump
George Crump
Commentary
50%
50%

Guided Storage Analysis

Software tools that provide storage and data protection analysis are very useful. They can help inventory, monitor and bring to your attention problems in the environment. Typically there are two challenges that I see with these tools however. First, they don't provide recommendations on what to do about a problem and they don't help you prioritize and organized your addressing of the problem.

Software tools that provide storage and data protection analysis are very useful. They can help inventory, monitor and bring to your attention problems in the environment. Typically there are two challenges that I see with these tools however. First, they don't provide recommendations on what to do about a problem and they don't help you prioritize and organized your addressing of the problem.The best way to describe the first problem of not providing recommendations on how to address an issue is that these tools will tell you that the patient is bleeding but they won't tell you where or how to suture the wound. For example, they may tell you that certain backup jobs are taking longer to complete than normal but won't tell you potential reasons why. Some won't even report the anomaly, you have to manually figure that out by analyzing trending data.

Storage management and data protection management tools should automatically analyze trending information and alert you to changes in the environment or its processes. When something is wrong these tools should interact with a knowledge base of some sort to help give recommendations on what to do to fix the problems that are being identified. One of the best solutions for this is interaction with an online community that uses the tool. I've seen several where a user can post in a forum what their storage management tool is telling them and then users can provide advice on what they should do about it.

The second problem deals with the reality that most IT administrators don't have the luxury of scheduling time to deal with problems in their day and that most problems come in waves when you have the least time to fix them. I'd like to see storage management and data protection analysis tools move to address this, providing organizational help to the IT administrator. Imagine being able to log in to a console and have the system guide you through what you should do each day. It could have you address problems that are affecting SLAs first and address more minor problems second. When there is available time in the day the software could even provide you with tasks to focus on that are not causing failures but tasks that are impacting performance and could lead to future failures. Think about it, a tool that helps you to be proactive instead of reactive.

Progress is being made along these fronts. There are a few tools now that are comparing storage or data protection failures to their affect on SLAs which helps greatly with prioritizing failed tasks. The next step is helping guide the IT administrator through their day.

Track us on Twitter: http://twitter.com/storageswiss

Subscribe to our RSS feed.

George Crump is lead analyst of Storage Switzerland, an IT analyst firm focused on the storage and virtualization segments. Find Storage Switzerland's disclosure statement here.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Flash Poll
10 Recommendations for Outsourcing Security
10 Recommendations for Outsourcing Security
Enterprises today have a wide range of third-party options to help improve their defenses, including MSSPs, auditing and penetration testing, and DDoS protection. But are there situations in which a service provider might actually increase risk?
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2015-0750
Published: 2015-05-22
The administrative web interface in Cisco Hosted Collaboration Solution (HCS) 10.6(1) and earlier allows remote authenticated users to execute arbitrary commands via crafted input to unspecified fields, aka Bug ID CSCut02786.

CVE-2012-1978
Published: 2015-05-21
Multiple cross-site request forgery (CSRF) vulnerabilities in Simple PHP Agenda 2.2.8 and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) add an administrator via a request to auth/process.php, (2) delete an administrator via a request to auth/admi...

CVE-2015-0741
Published: 2015-05-21
Multiple cross-site request forgery (CSRF) vulnerabilities in Cisco Prime Central for Hosted Collaboration Solution (PC4HCS) 10.6(1) and earlier allow remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCut04596.

CVE-2015-0742
Published: 2015-05-21
The Protocol Independent Multicast (PIM) application in Cisco Adaptive Security Appliance (ASA) Software 9.2(0.0), 9.2(0.104), 9.2(3.1), 9.2(3.4), 9.3(1.105), 9.3(2.100), 9.4(0.115), 100.13(0.21), 100.13(20.3), 100.13(21.9), and 100.14(1.1) does not properly implement multicast-forwarding registrati...

CVE-2015-0746
Published: 2015-05-21
The REST API in Cisco Access Control Server (ACS) 5.5(0.46.2) allows remote attackers to cause a denial of service (API outage) by sending many requests, aka Bug ID CSCut62022.

Dark Reading Radio
Archived Dark Reading Radio
Join security and risk expert John Pironti and Dark Reading Editor-in-Chief Tim Wilson for a live online discussion of the sea-changing shift in security strategy and the many ways it is affecting IT and business.