Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Cloud

5/6/2010
11:37 AM
George Crump
George Crump
Commentary
50%
50%

Cloud's Role In Backup, Part III

In this final entry on cloud based backup we will examine how enterprise backup systems can leverage the cloud. This involves the developer of the backup application to add cloud support directly to their application and providing an option to replicate or move backup jobs to an internet based storage repository. Essentially cloud storage becomes another target option to the application, similar to the

In this final entry on cloud based backup we will examine how enterprise backup systems can leverage the cloud. This involves the developer of the backup application to add cloud support directly to their application and providing an option to replicate or move backup jobs to an internet based storage repository. Essentially cloud storage becomes another target option to the application, similar to the choice between disk and tape.The value in making cloud an extension to the backup process as opposed to the center of the backup process is lowered disruption, even if cloud storage access comes as part of an application upgrade. The rest of the infrastructure remains unchanged. As do all the capabilities that we now consider normal in enterprise backup like multi-platform protection, application protection, support of local disk as a backup target and local support of tape.

What's the value of an enterprise backup application supporting cloud storage as a repository? After all many enterprises already are moving data off-site either by truck or data replication. For those that don't want to manage the costs associated with an off-site storage facility or DR facility replication to the cloud can be an attractive option.

The big advantage for the enterprise really comes in addressing the long term retention requirements that a growing number of data centers are facing. Where do you store all this information? While it is fair to say that most enterprise could afford the hard costs of storing that data, the soft costs of managing and maintaining that data and those systems could be very challenging.

By leveraging cloud as an extension to the backup process, backup jobs could be replicated to the cloud storage facility whose sole job it is to manage and maintain both the equipment and the data. Also, depending on the vendor, steps could be taken to enhance the mining of these backup jobs when the need arises to be searched years later for specific data content. This means that locally you only need enough capacity to meet the "normal" restore requests.

There is some disagreement on whose cloud storage should be used. Should the backup application developer build their own cloud and maintain that, or should the application simply support various cloud storage providers and let you select from the list? There is value in both. The important concern from your prospective is does the organization that is holding your data have the fortitude to be there when you need it and does the facility they are using meet up to your standards for security and availability?

A final note on encryption. Almost every application in all three types of cloud related backup have some form of encryption built in. Many systems don't even have an option to turn it off and most will not allow the storage provider to read the encrypted data. Enterprise systems can set encryption before it ever leaves the local client let alone the data center. To a large extent this data is safer being transferred across the wire then unencrypted tapes being placed on a truck.

Cloud storage has a role to play in just about everyone's backup strategy. The size of your organization and how much you already have invested in a backup infrastructure will determine in large part how you go about that.

Track us on Twitter: http://twitter.com/storageswiss

Subscribe to our RSS feed.

George Crump is lead analyst of Storage Switzerland, an IT analyst firm focused on the storage and virtualization segments. Find Storage Switzerland's disclosure statement here.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
DevSecOps: The Answer to the Cloud Security Skills Gap
Lamont Orange, Chief Information Security Officer at Netskope,  11/15/2019
Attackers' Costs Increasing as Businesses Focus on Security
Robert Lemos, Contributing Writer,  11/15/2019
Human Nature vs. AI: A False Dichotomy?
John McClurg, Sr. VP & CISO, BlackBerry,  11/18/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: -when I told you that our cyber-defense was from another age
Current Issue
Navigating the Deluge of Security Data
In this Tech Digest, Dark Reading shares the experiences of some top security practitioners as they navigate volumes of security data. We examine some examples of how enterprises can cull this data to find the clues they need.
Flash Poll
Rethinking Enterprise Data Defense
Rethinking Enterprise Data Defense
Frustrated with recurring intrusions and breaches, cybersecurity professionals are questioning some of the industrys conventional wisdom. Heres a look at what theyre thinking about.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2011-3350
PUBLISHED: 2019-11-19
masqmail 0.2.21 through 0.2.30 improperly calls seteuid() in src/log.c and src/masqmail.c that results in improper privilege dropping.
CVE-2011-3352
PUBLISHED: 2019-11-19
Zikula 1.3.0 build #3168 and probably prior has XSS flaw due to improper sanitization of the 'themename' parameter by setting default, modifying and deleting themes. A remote attacker with Zikula administrator privilege could use this flaw to execute arbitrary HTML or web script code in the context ...
CVE-2011-3349
PUBLISHED: 2019-11-19
lightdm before 0.9.6 writes in .dmrc and Xauthority files using root permissions while the files are in user controlled folders. A local user can overwrite root-owned files via a symlink, which can allow possible privilege escalation.
CVE-2019-10080
PUBLISHED: 2019-11-19
The XMLFileLookupService in NiFi versions 1.3.0 to 1.9.2 allowed trusted users to inadvertently configure a potentially malicious XML file. The XML file has the ability to make external calls to services (via XXE) and reveal information such as the versions of Java, Jersey, and Apache that the NiFI ...
CVE-2019-10083
PUBLISHED: 2019-11-19
When updating a Process Group via the API in NiFi versions 1.3.0 to 1.9.2, the response to the request includes all of its contents (at the top most level, not recursively). The response included details about processors and controller services which the user may not have had read access to.