Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

News

5/20/2010
02:07 PM
George Crump
George Crump
Commentary
50%
50%

When To Use Cloud Storage?

When storage managers start to sift through the hype surrounding cloud storage and try to decide if and where cloud storage would make sense in their environment, they are often left dazed and confused. There are so many companies trying to jump on the cloud storage bandwagon that almost any new feature makes them "the" cloud storage provider. The goal of this entry is provide some ideas on when should a business use cloud storage.

When storage managers start to sift through the hype surrounding cloud storage and try to decide if and where cloud storage would make sense in their environment, they are often left dazed and confused. There are so many companies trying to jump on the cloud storage bandwagon that almost any new feature makes them "the" cloud storage provider. The goal of this entry is provide some ideas on when should a business use cloud storage.As we discuss in our article "What is Cloud Storage?" the definition really depends on how you intend to use it. For the purposes of this entry, a blog and not a white paper, we'll limit the discussion to those providers whose primary business is to deliver storage capacity over some type of WAN or Internet connection to other businesses that can take advantage of that capacity. There are potentially a hundred other definitions depending on how many vendors you speak with. Within the scope of a business selecting an external provider of storage services, we find that in most successful cloud use cases the users did not set out to specifically purchase cloud storage. It became a natural extension to either an existing process or it came as a component of a solution to another problem they were trying to solve.

In the natural extension case this is usually exemplified by an ISV adding the ability to move some of its data to a cloud storage provider. Typically this is a backup application but other applications have added the ability to archive information from emails or projects to the cloud as well. In this model cloud storage becomes an option that you check during configuration of the application. This is a simple and relatively safe way to start using cloud storage. Usually the data being copied to the cloud is a second copy and there is a local copy maintained for a user's selected time.

The other use case is when a storage manager has a specific problem to solve and the solution happens to leverage cloud storage as a component of solving that problem. Once again the obvious examples are backup and email solutions that are cloud focused. In addition a growing number of primary storage solutions focused on the small to medium business are leveraging cloud storage as well. These systems can solve the need for NAS services or even SAN services and then move older data to a cloud storage provider. This keeps local costs down and, for some of the solutions, leverages the storage provider to take care of data protection. The selection of the cloud storage provider is often again a check box with a list of supported providers. While these solutions are certainly more committed to cloud storage than the simple extension use case, many will work even if the connection to the cloud storage provider has gone down.

Cloud storage providers and ISVs should focus on solving the business problem, not on the value of putting a bunch of data out in the internet. Cloud providers need to be careful though, while working with ISVs to be in that list of options they also need to make sure that users understand what to look for in a cloud provider. All cloud storage providers are not created equal and price should not be the sole selection criteria, something we'll detail in our next entry.

Track us on Twitter: http://twitter.com/storageswiss

Subscribe to our RSS feed.

George Crump is lead analyst of Storage Switzerland, an IT analyst firm focused on the storage and virtualization segments. Find Storage Switzerland's disclosure statement here.

Comment  | 
Print  | 
More Insights
Comments
Oldest First  |  Newest First  |  Threaded View
Commentary
How SolarWinds Busted Up Our Assumptions About Code Signing
Dr. Jethro Beekman, Technical Director,  3/3/2021
News
'ObliqueRAT' Now Hides Behind Images on Compromised Websites
Jai Vijayan, Contributing Writer,  3/2/2021
News
Attackers Turn Struggling Software Projects Into Trojan Horses
Robert Lemos, Contributing Writer,  2/26/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-27581
PUBLISHED: 2021-03-05
The Blog module in Kentico CMS 5.5 R2 build 5.5.3996 allows SQL injection via the tagname parameter.
CVE-2021-28042
PUBLISHED: 2021-03-05
Deutsche Post Mailoptimizer 4.3 before 2020-11-09 allows Directory Traversal via a crafted ZIP archive to the Upload feature or the MO Connect component. This can lead to remote code execution.
CVE-2021-28041
PUBLISHED: 2021-03-05
ssh-agent in OpenSSH before 8.5 has a double free that may be relevant in a few less-common scenarios, such as unconstrained agent-socket access on a legacy operating system, or the forwarding of an agent to an attacker-controlled host.
CVE-2021-3377
PUBLISHED: 2021-03-05
The npm package ansi_up converts ANSI escape codes into HTML. In ansi_up v4, ANSI escape codes can be used to create HTML hyperlinks. Due to insufficient URL sanitization, this feature is affected by a cross-site scripting (XSS) vulnerability. This issue is fixed in v5.0.0.
CVE-2021-3420
PUBLISHED: 2021-03-05
A flaw was found in newlib in versions prior to 4.0.0. Improper overflow validation in the memory allocation functions mEMALIGn, pvALLOc, nano_memalign, nano_valloc, nano_pvalloc could case an integer overflow, leading to an allocation of a small buffer and then to a heap-based buffer overflow.