News
11/29/2012
11:36 AM
George Crump
George Crump
Commentary
50%
50%

Managing The Multi-Vendor Backup

Backup management applications go a step beyond monitoring, but they remain limited. It's time to develop a framework-driven approach.

In recent columns I have covered the challenges of consolidating to a single backup application for the enterprise. In short, no single application can do it all, and the capabilities of application-specific backups are still too compelling. I've also discussed consolidating to the backup appliance, but this leaves gaps in monitoring and managing the mixed environment. There is software available to provide this management overview. In this column I'll discuss what to expect -- and what not to expect -- from these products.

There is a big difference between managing and monitoring. Monitoring basically lets you know that something is wrong, but to fix whatever went wrong means launching the offending application's GUI. Also, tasks like adding new clients, scheduling and performing restorations can't be done from the monitoring product. An application that manages the environment does more than simply let you know that something is wrong -- it also lets you fix the problem directly from the management application. This includes the ability to add new clients, change backup schedules and execute restores. A management application can eliminate the need for the backup administrator to be an expert at the various backup applications' interfaces.

[ Before you can assess a vendor's storage deduplication ability, you need to understand the process. Read about it at Measuring The State Of Primary Storage Deduplication. ]

There are several good monitoring applications available that can give you a dashboard that shows how your various backup applications are running. If you are running multiple enterprise backup applications, these programs can alert you to problems and errors. Some even provide a help desk workflow capability. But as I discussed in Managing The VMware Data Protection Problem, many of these monitoring solutions have largely ignored the VMware-specific backup products. This is particularly problematic because selecting a backup product for the virtualized environment is a key point of backup application splintering. A few companies are now closing this gap by providing monitoring intelligence across both enterprise applications and virtualization-specific backup products.

Applications that monitor backup are mature and provide a sense of control over the mixed backup application problem. They are also relatively cost-effective and easy to install. However, since most lack the ability to do anything beyond monitoring, specific changes need to be made through the application. That means that the backup administrator must learn each individual application's interface and terminology.

Management applications attempt to go a step further by actually interfacing with the backup application, either through a series of APIs or, more commonly, by controlling it through the command line. The problem with management applications is that they support a limited number of applications, and they exert a relatively low level of control over the applications. They also tend to be expensive. Few management applications can control all of an enterprise's backup applications, which explains why monitoring programs are more popular: they are more complete and more cost-effective.

In the webinar The Four Things That Are Breaking Enterprise Backup, I discussed the need for an alternative to current backup monitoring and managing products. These framework products would turn backup applications into service engines, allowing different products to share capabilities. For example, if the developer of an application-specific backup product wants to add tape support, they could get it from this framework instead of developing it themselves.

We're starting to see the beginnings of such framework-driven products now, from larger IT suppliers with multiple backup hardware and software products. The first step is to use these products to better integrate and leverage their backup investments. Over time, they could open up and allow other vendors to leverage these frameworks.

From SDN to network overlays, emerging technologies promise to reshape the data center for the age of virtualization. Also in the new, all-digital The Virtual Network issue of Network Computing: Open Compute rethinks server design. (Free registration required.)

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading December Tech Digest
Experts weigh in on the pros and cons of end-user security training.
Flash Poll
10 Recommendations for Outsourcing Security
10 Recommendations for Outsourcing Security
Enterprises today have a wide range of third-party options to help improve their defenses, including MSSPs, auditing and penetration testing, and DDoS protection. But are there situations in which a service provider might actually increase risk?
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-7830
Published: 2014-11-24
Cross-site scripting (XSS) vulnerability in mod/feedback/mapcourse.php in the Feedback module in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x before 2.6.6, and 2.7.x before 2.7.3 allows remote authenticated users to inject arbitrary web script or HTML by leveraging the mod/feedback:mapcourse cap...

CVE-2014-7831
Published: 2014-11-24
lib/classes/grades_external.php in Moodle 2.7.x before 2.7.3 does not consider the moodle/grade:viewhidden capability before displaying hidden grades, which allows remote authenticated users to obtain sensitive information by leveraging the student role to access the get_grades web service.

CVE-2014-7832
Published: 2014-11-24
mod/lti/launch.php in the LTI module in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x before 2.6.6, and 2.7.x before 2.7.3 performs access control at the course level rather than at the activity level, which allows remote authenticated users to bypass the mod/lti:view capability requirement by vi...

CVE-2014-7833
Published: 2014-11-24
mod/data/edit.php in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x before 2.6.6, and 2.7.x before 2.7.3 sets a certain group ID to zero upon a database-entry change, which allows remote authenticated users to obtain sensitive information by accessing the database after an edit by a teacher.

CVE-2014-7834
Published: 2014-11-24
mod/forum/externallib.php in Moodle 2.6.x before 2.6.6 and 2.7.x before 2.7.3 does not verify group permissions, which allows remote authenticated users to access a forum via the forum_get_discussions web service.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Now that the holiday season is about to begin both online and in stores, will this be yet another season of nonstop gifting to cybercriminals?