Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Analytics

2/2/2007
06:30 AM
50%
50%

EMC Kicks Off With Security

'Robust' product refresh cycle begins, with RSA security built into Symmetrix

EMC will use the RSA Security Conference in San Francisco next week to unveil technologies from its $2.1 billion security acquisition built into its storage systems. (See EMC Secures RSA for $2.1B.)

Next week's announcements will be the first of several enhancements EMC is expected to make this month to its high-end Symmetrix and midrange Clariion storage platforms and affiliated software. EMC has not confirmed any of the products, but industry sources and EMC marketing materials acquired by Byte and Switch spell out the moves. And on EMC's earnings conference call January 23, CEO Joe Tucci said his company was prepping a "robust" product refresh cycle with security integrated into multiple platforms. (See Tucci Aims for 'One EMC'.)

Other announcements will follow, including mainframe disaster recovery software; Symmetrix support for 4-Gbit/s Fibre Channel and RAID 6; a new entry-level Clarrion CX3 system; and network-based asynchronous replication for Clariion based on technology acquired from Kashya last year. (See EMC Coughs Up for Kashya.)

While EMC is merely catching up with RAID 6- and 4-Gbit/s support, at least one of next week's announcements show the vendor is also beginning to integrate technology from a few of its 2006 acquisitions. Example: The Symmetrix Service Credential -- the first RSA technology integrated into EMC storage -- due for unveiling next week.

Service Credential is designed to prevent unauthorized service actions on Symmetrix systems. It provides identity authorization through a user password and encrypted credential that varies by user, time, system, and the user's assigned role. EMC will also add audit logging to track all service and maintenance activity on a Symmetrix for compliance.

The upgraded Symmetrix operating system will also support RAID 6, allowing a system to survive two failed drives in a RAID group without downtime. The need for RAID 6 is greater with the low-cost Fibre Channel drives EMC offers with Symmetrix because those drives are more apt to fail and take longer to rebuild.

Still, EMC is hardly leading edge with its support of RAID 6. Most of its top competitors, as well as a host of smaller vendors, have supported it for many months. (See RAID 6, Take 2.)

EMC will officially announce Symmetrix 4-Gbit/s Fibre Channel support on the front end, although that has been available since last fall. The 4-Gbit/s support lets customers increase the number of hosts they connect to the system, but back-end support to disk remains at 2 Gbit/s.

Clariion and most other midrange systems already support end-to-end 4-Gbit/s Fibre Channel. (See HDS PrepsTagmaStore, Ponders Sun and EMC Uncages 4-Gig Clariions.) With regard to other high-end systems, IBM supports 4 Gbit/s on its DS8000 high-end system, and Hitachi Data Systems is planning 4 Gbit/s for its next TagmaStore release.

Later this month, EMC will launch Geographically Dispersed Disaster Restart (GDDR), its answer for IBM's Geographically Dispersed Parallel Sysplex (GDPS) software for automating disaster recovery on mainframes. Like GDPS, GDDR saves administrators from having to write customer scripts to perform failover and failback after outages.

The Clariion CX3-10 will also follow later in the month. The CX3-10 has 2 Gbytes of cache and supports up to 60 disks, 512 LUNs, and 64 high-availability hosts. That compares to 4 Gbytes of cache, 120 disks, 1,024 LUNs, and 128 hosts in the next-smallest CX3 system, the CX3-20. EMC will position the CX3-10 for midsize enterprises, or departments or branch offices of large enterprises. The new system will support Fibre Channel and SATA drives in one system.

EMC will also launch RecoverPoint/SE Continuous Remote Replication (CRR) software specifically for Clariion systems. RecoverPoint, based on Kashya technology, provides continuous data protection (CDP) along with remote replication.

— Dave Raffo, News Editor, Byte and Switch

  • EMC Corp. (NYSE: EMC)
  • Hitachi Data Systems (HDS)
  • IBM Corp. (NYSE: IBM)

    Comment  | 
    Print  | 
    More Insights
  • Comments
    Newest First  |  Oldest First  |  Threaded View
    Mobile Banking Malware Up 50% in First Half of 2019
    Kelly Sheridan, Staff Editor, Dark Reading,  1/17/2020
    Active Directory Needs an Update: Here's Why
    Raz Rafaeli, CEO and Co-Founder at Secret Double Octopus,  1/16/2020
    New Attack Campaigns Suggest Emotet Threat Is Far From Over
    Jai Vijayan, Contributing Writer,  1/16/2020
    Register for Dark Reading Newsletters
    White Papers
    Video
    Cartoon Contest
    Current Issue
    The Year in Security: 2019
    This Tech Digest provides a wrap up and overview of the year's top cybersecurity news stories. It was a year of new twists on old threats, with fears of another WannaCry-type worm and of a possible botnet army of Wi-Fi routers. But 2019 also underscored the risk of firmware and trusted security tools harboring dangerous holes that cybercriminals and nation-state hackers could readily abuse. Read more.
    Flash Poll
    How Enterprises are Attacking the Cybersecurity Problem
    How Enterprises are Attacking the Cybersecurity Problem
    Organizations have invested in a sweeping array of security technologies to address challenges associated with the growing number of cybersecurity attacks. However, the complexity involved in managing these technologies is emerging as a major problem. Read this report to find out what your peers biggest security challenges are and the technologies they are using to address them.
    Twitter Feed
    Dark Reading - Bug Report
    Bug Report
    Enterprise Vulnerabilities
    From DHS/US-CERT's National Vulnerability Database
    CVE-2020-5216
    PUBLISHED: 2020-01-23
    In Secure Headers (RubyGem secure_headers), a directive injection vulnerability is present in versions before 3.9.0, 5.2.0, and 6.3.0. If user-supplied input was passed into append/override_content_security_policy_directives, a newline could be injected leading to limited header injection. Upon seei...
    CVE-2020-5217
    PUBLISHED: 2020-01-23
    In Secure Headers (RubyGem secure_headers), a directive injection vulnerability is present in versions before 3.8.0, 5.1.0, and 6.2.0. If user-supplied input was passed into append/override_content_security_policy_directives, a semicolon could be injected leading to directive injection. This could b...
    CVE-2020-5223
    PUBLISHED: 2020-01-23
    In PrivateBin versions 1.2.0 before 1.2.2, and 1.3.0 before 1.3.2, a persistent XSS attack is possible. Under certain conditions, a user provided attachment file name can inject HTML leading to a persistent Cross-site scripting (XSS) vulnerability. The vulnerability has been fixed in PrivateBin v1.3...
    CVE-2019-20399
    PUBLISHED: 2020-01-23
    A timing vulnerability in the Scalar::check_overflow function in Parity libsecp256k1-rs before 0.3.1 potentially allows an attacker to leak information via a side-channel attack.
    CVE-2020-7915
    PUBLISHED: 2020-01-22
    An issue was discovered on Eaton 5P 850 devices. The Ubicacion SAI field allows XSS attacks by an administrator.