News
6/2/2010
05:20 PM
George Crump
George Crump
Commentary
50%
50%

Guided Storage Analysis

Software tools that provide storage and data protection analysis are very useful. They can help inventory, monitor and bring to your attention problems in the environment. Typically there are two challenges that I see with these tools however. First, they don't provide recommendations on what to do about a problem and they don't help you prioritize and organized your addressing of the problem.

Software tools that provide storage and data protection analysis are very useful. They can help inventory, monitor and bring to your attention problems in the environment. Typically there are two challenges that I see with these tools however. First, they don't provide recommendations on what to do about a problem and they don't help you prioritize and organized your addressing of the problem.The best way to describe the first problem of not providing recommendations on how to address an issue is that these tools will tell you that the patient is bleeding but they won't tell you where or how to suture the wound. For example, they may tell you that certain backup jobs are taking longer to complete than normal but won't tell you potential reasons why. Some won't even report the anomaly, you have to manually figure that out by analyzing trending data.

Storage management and data protection management tools should automatically analyze trending information and alert you to changes in the environment or its processes. When something is wrong these tools should interact with a knowledge base of some sort to help give recommendations on what to do to fix the problems that are being identified. One of the best solutions for this is interaction with an online community that uses the tool. I've seen several where a user can post in a forum what their storage management tool is telling them and then users can provide advice on what they should do about it.

The second problem deals with the reality that most IT administrators don't have the luxury of scheduling time to deal with problems in their day and that most problems come in waves when you have the least time to fix them. I'd like to see storage management and data protection analysis tools move to address this, providing organizational help to the IT administrator. Imagine being able to log in to a console and have the system guide you through what you should do each day. It could have you address problems that are affecting SLAs first and address more minor problems second. When there is available time in the day the software could even provide you with tasks to focus on that are not causing failures but tasks that are impacting performance and could lead to future failures. Think about it, a tool that helps you to be proactive instead of reactive.

Progress is being made along these fronts. There are a few tools now that are comparing storage or data protection failures to their affect on SLAs which helps greatly with prioritizing failed tasks. The next step is helping guide the IT administrator through their day.

Track us on Twitter: http://twitter.com/storageswiss

Subscribe to our RSS feed.

George Crump is lead analyst of Storage Switzerland, an IT analyst firm focused on the storage and virtualization segments. Find Storage Switzerland's disclosure statement here.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Flash Poll
10 Recommendations for Outsourcing Security
10 Recommendations for Outsourcing Security
Enterprises today have a wide range of third-party options to help improve their defenses, including MSSPs, auditing and penetration testing, and DDoS protection. But are there situations in which a service provider might actually increase risk?
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-9710
Published: 2015-05-27
The Btrfs implementation in the Linux kernel before 3.19 does not ensure that the visible xattr state is consistent with a requested replacement, which allows local users to bypass intended ACL settings and gain privileges via standard filesystem operations (1) during an xattr-replacement time windo...

CVE-2014-9715
Published: 2015-05-27
include/net/netfilter/nf_conntrack_extend.h in the netfilter subsystem in the Linux kernel before 3.14.5 uses an insufficiently large data type for certain extension data, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) via outbound network traffic that trig...

CVE-2015-2666
Published: 2015-05-27
Stack-based buffer overflow in the get_matching_model_microcode function in arch/x86/kernel/cpu/microcode/intel_early.c in the Linux kernel before 4.0 allows context-dependent attackers to gain privileges by constructing a crafted microcode header and leveraging root privileges for write access to t...

CVE-2015-2830
Published: 2015-05-27
arch/x86/kernel/entry_64.S in the Linux kernel before 3.19.2 does not prevent the TS_COMPAT flag from reaching a user-mode task, which might allow local users to bypass the seccomp or audit protection mechanism via a crafted application that uses the (1) fork or (2) close system call, as demonstrate...

CVE-2015-2922
Published: 2015-05-27
The ndisc_router_discovery function in net/ipv6/ndisc.c in the Neighbor Discovery (ND) protocol implementation in the IPv6 stack in the Linux kernel before 3.19.6 allows remote attackers to reconfigure a hop-limit setting via a small hop_limit value in a Router Advertisement (RA) message.

Dark Reading Radio
Listen Now Incident Response War Gaming: Practicing the Post-Breach Panicking
After a serious cybersecurity incident, everyone will be looking to you for answers -- but you’ll never have complete information and you’ll never have enough time. So in those heated moments, when a business is on the brink of collapse, how will you and the rest of the board room executives respond?