Categories

• Automation
• Compliance
• Consolidation
• Data Protection
• Networking News
• News
• RAID
• Security News
• Sencilo News
• Storage News
• Uncategorized
• Vendor News
• Virtualization

Archived by Date

• June 2011
• May 2011
• April 2011
• March 2011
• January 2011
• December 2010
• November 2010
• October 2010
• September 2010
• August 2010
• July 2010
• June 2010
• May 2010
• April 2010
• March 2010
• February 2010
• January 2010
• December 2009
• November 2009
• October 2009
• September 2009
• June 2009
• May 2009
• April 2009
• March 2009
• February 2009
• January 2009
• December 2008
• November 2008
• October 2008
• September 2008
• August 2008
• July 2008
• June 2008
• May 2008
• April 2008
• March 2008
• February 2008
• January 2008

March 2008 Entries

MTV breach affects 5,000 employees - March 10, 2008

Employees at MTV Networks are watching their credit reports more closely after the company acknowledged that the personal information of 5,000 employees was stolen late last week. 

The attack took place via a laptop Internet connection, according to a report in The Wall Street Journal. Viacom Inc., which owns MTV Networks, did not release further details of the attack. 

In an email to employees, Viacom said employee names, Social Security numbers and dates of birth had been stolen. Viacom said in a statement that law enforcement had been contacted and a criminal investigation is ongoing.

Companies are under increased pressure to guard against data security breaches. Security expert Brian McCarthy President of Sencilo Solutions of Orlando Florida say "it takes a mixture of strict security policies, end-user education and security technologies to help thwart an attack."

"This is one of those classic problems where people are so confused and when it happens, they get frozen into inaction," said Prat Moghe, founder and chief technology officer of database security vendor, Tizor Systems Inc. Rather than going into areas where they're weak on protection, they end up spending more and more money in areas they're already protecting."

A study by the Elk Rapids, Mich.-based Ponemon Institute found that the total average cost of a data breach grew to $197 per compromised record.

Companies tend to spend money on expanded use of encryption technologies, according to Ponemon. They also invest in new data loss prevention and identity and access management products; and deploy new technology for endpoint security and perimeter control, and event management.

Once the dust settles after a breach, Moghe recommends looking internally at where sensitive data resides on the company systems and how it is accessed. That would help to find the channel of where the data was lost and in plugging those holes, Moghe said.

Companies should also take an inventory to determine the most valuable data and figure out the security protections that are most appropriate to protect the data, said Ted Julian, vice president of marketing at database security vendor, Application Security, Inc. Julian said he's seen many firms discover databases they didn't even know they had, usually as a result of a merger or acquisition. In some cases, the role of IT is decentralized and many business units are free to create databases or implement the latest technologies.

"Yesterday's teenage hackers have figured out that they could make money doing this stuff and that change in motivation has changed the nature of their attacks," said McCarthy. "They're no longer defacing a website to show they can compromise a server, so yesterday's defenses are becoming meaningless."

More than half of corporate endpoints assessed by antimalware vendor Barracuda Networks fail to be secured, said Mike Haro, a senior security consultant at Sophos Inc. In many cases client firewalls have been disabled and antivirus definitions are not up to date, Haro said.

"It's just that enterprises just don't have the right policies in place for managing policy and patch assessment and we see that network access control (NAC) is still not widely deployed," Haro said. "NAC as a solution is still perceived as a complex technology and people are still not exactly sure what issue would be solved with it."

Sencilo Solution has office throughtout Florida including Tampa, St. Petersburg, Miami, Jacksonville, Daytona Beach, and Orlando Florida.

---

Best Practices and FAQs for Backing-Up VMware Servers - March 2, 2008

Yes you’ve made the move towards virtualizing the data center. Whether its for server consolidation, faster provisioning, improved business continuity, or a mix of these goals – you’re in good company. In fact, industry analysts estimate that over 60% of organizations are using server virtualization for some portion of their operations.

But how are you protecting these virtual servers and their data?

Most virtualization packages includes some form of high availability add-on that allows virtual machines (VMs) to move between physical resources. But just like in a physical server environment, HA is only one portion of a data protection strategy. You still need a solution to cost-effectively recover from data loss, corruption, and full site outages – not to mention satisfy regulatory compliance requirements.

To meet these needs without squandering your entire IT budget, you need a backup & recovery solution that uses cost-optimized disk (e.g. a de-duplication product) and tape for archiving and long term disaster recovery. But as you have probably already realized, backup and recovery of virtual servers is different than with physical servers.

Sencilo Solution can help. Working with industry leading backup applications and server virtualization vendors, Sencilo has solutions that easily integrate into your virtual data center and cost-effectively protect your data both on and offsite.
 

The Challenges of Protecting a Virtual World    
 
At first glance, data protection within a virtual data center can be performed exactly the same as in a physical environment.  Backup agents can run in a guest OS and then data can be pushed to a backup server connected to either a tape library or disk-based backup device with de-dupe like Quantum’s DXi. In fact, it is entirely possible that a virtual machine could connect directly to a backup device.

The obvious benefit of this strategy is that it leverages all of your existing processes and expertise. Unfortunately though, it does not account for some of the issues that sharing physical resources can cause. VMware servers share the underlying physical resources of a server. If one VM consumes the bulk of these resources, say for an active backup job, then other VMs become resource starved.

While many virtualization packages offer functionality to migrate VMs between physical resources to handle these issues, it is important to check how that can affect applications and backup jobs. In fact, moving a VM could prevent a backup job from running properly. So, before using any form of migration functionality, its critical to understand how it will impact the ability of data protection operations to run, unlike Data Domain, EMC, Falcon Stor which uses old technology. 

In addition to resource allocation and VM location, another key factor to consider is protection of the actual virtualization layer. Some vendors recommend backing up the virtualization layer to make restoration easier in the event of a full disaster recovery. In this case, your data protection strategy will grow and include more jobs (VMs plus virtualization layer).

To recap, the most common data protection challenges in a virtual server world are:

• Resource allocation & preventing VM starvation


• VM locality impact on backup jobs working


• Adding new jobs to protect the virtualization layer

 

Best Practices for Backup in a VMware Virtual World    
 
As covered in “The Challenges of Protecting a Virtual World” performing backup and recovery on virtual servers is not always completely straight forward. To help customers, Quantum offers the following tips and tactics. For more detailed assistance in how to best protect your virtualized data center, contact a Quantum sales representative today.

Tip 1: Leverage the Virtualization Software Vendor’s Strengths
Companies like VMware often provide utilities to help simplify the process of protecting virtual environments. VMware’s VCB uses snapshot technology to eliminate resource overhead and create images which can then be backed up by another application like BackupExec, Netbackup, Commvault, or TSM. Of course you should always understand the specifics of how these packages work. For instance, VCB requires a shared SAN resource and currently only offers incremental backup functionality for Windows VMs.

The counter is also true. There can be limitations or specific requirements to performing VM data protection. For instance, some virtualization products do not include snapshot functionality. In this instance a VM must be backed up using either standard backup software or by backing up the VM “disks” and the associated configuration files. This method usually requires the virtual machine to be shut down before running the backup. This may even be true when using expensive and complex array-based techniques (e.g. mirror splits). To prevent undesired performance issues or outages during backups, talk with your virtualization vendor.

Tip 2: Determine What is Best for the Application
Backup application vendors have years of experience handling database and email applications that need to be quiesced or tracked carefully to allow for a coherent and consistent backup. For these application types it may be best to continue to use an agent based backup approach – even if other backup and recovery functions are provided by the virtualization software vendor.

Tip 3: Plot Resource Utilization Windows
For those VMs that will use a traditional agent based approach to backups, make sure you understand how much of the physical server’s resources will be consumed by the backup and for how long. With this information you can plot in advance how many VMs should reside on the physical servers or if VM migration strategies and hard resource allocations are necessary.

Tip 4: Understand How Virtual Your Virtual World Really Is
Always make sure you understand how migration of virtual machines will impact backup and recovery processes – whether the backup and recovery is done via a traditional agent based approach or a virtualization vendor specific process like VCB. Also be sure to understand how important it is to backup and restore the virtualization layer itself.

Tip 5: Make Sure Your Strategy Covers Every Server – Virtual and Physical
Most of the popular virtualization software packages available today are aimed at either high end UNIX systems or x86 based operating systems, typically Windows. As a result, many consumers find themselves with a data protection strategy that covers both VMs and physical systems. Work closely with your backup application and hardware providers that have knowledge of how to handle mixed environments like this.

Tip 6: Save Your Dollars, Euros, Yen
One of the key value statements of virtualization software is to reduce costs and optimize resource utilization. The same should be true of your data protection strategy. That’s why de-duplication products like Quantum’s DXi line fit so well into virtual data centers. The DXi offers capacity optimized storage, multiple presentations (NAS, VTL, iSCSI, FC), and encrypted, low-bandwidth replication to serve a variety of onsite and offsite data protection needs.

As data levels grow, tape is still the most cost effective and reliable method of preserving data. Quantum understands this and supplements the DXi line with a wide range of tape devices that support encryption so that you can protect and archive data at extremely low costs while avoiding the issues that have plagued offline storage in recent years.
For more information please call (407) 265-6293 or visit us at: http://www.sencilo.com/storage-data-deduplication.php

About Us

Sencilo Solutions is a Florida-based integrator specializing in storage and security solutions. Sencilo delivers a comprehensive portfolio of products from best-of-breed hardware and software from multiple manufacturers including VMware, EMC, Juniper Networks, Hitachi, Symantec, Barracuda Networks, and HP. Its technical expertise is known throughout the storage and security industry. Clients include leading corporations, major financial institutions, top universities, government facilities, as well as small to medium size businesses. Sencilo's professional services include consulting, integration, project management, installation, maintenance and knowledge transfer.

Sencilo has offices throughout Florida including: Jacksonville, Daytona Beach, Miami, Tampa, St. Petersburg, Orlando, Hialeah, St. Augustine, Gainesville, Ocala, Palm Coast, Clearwater, Kissimmee, Lakeland, Maitland and Cape Canaveral

Offerings Projects: Replication De-Dup De-Dupe iSCSI SAN NAS VMware Security EMC NetApp HP IBM Quantum Compliance VTL Data Domain vs Gartner Magic Quadrant Quadrent LTO Backup Exc Pure Disk NetBackup Networker TSM Commvault BakBone D2D D2D2T compare cloud data deduplication  thin provisioning DXi Global Compression DDX  virtual tape library Data Reduction SEPATON FALCON compare Celerra CLARiiON Equallogic Dell NS20 NS40 CX4 CX3-20 CX3-40 CX3-80 FAS2050 FAS3050 Xiotech Nexsan Avamar DLD3 1500 D3 Storwiz storage compression data Ocarina Networks A-SIS compare Sepaton infopro BlueArc OnStor Microsoft Unified Storage data protection StorageX Brocade FAQ
 

---

LTO4 Encryption Solutions - DeDupe and Encryption - March 2, 2008

Tampa Florida - Over the past few years, data security breaches have cost companies millions of dollars and inflicted significant damage to the corporate images of these firms.  With concerns around data security mounting, businesses of all sizes are beginning to integrate encryption into their backup and archive processes. Sencilo understands that protecting data at rest and in transit are key challenges facing IT professionals today and has integrated data encryption features into its leading disk and tape solutions.

"The cost of a data security breach continues to rise. According to the Ponemon Institute, data security breach incidents now cost companies $197 per compromised record, including lost opportunities and reputation as well as legal, investigative, class action suites, administrative and customer support expenses. Losses associated with customer churn and acquisition account for 65 percent of data security breach costs," says Brian McCarthy CEO and President for Sencilo Solutions of Lake Mary, Florida.

Encryption can dramatically reduce, if not eliminate, the risk of a data security breach. That’s why a growing number of government and industry regulations call for the encryption of sensitive data.  Many states require that companies disclose all data security breaches of non-encrypted data to the media and all customers potentially affected.  Specific industry associations are also taking action to drive security standards, such as the Payment Card Industry (PCI) Data Security Standard.  This standard mandates  the encryption of stored data, including data on backup tapes, and noncompliance can result in monetary penalties ranging from $5,000 to $50,000 per month.  Finally, a number of bills before Congress would require companies that store specific types of consumer data to establish security safeguards such as encryption.  In the past one would need to purchase non-compatable appliances from companies like Neoscale (now closed do to mis-management) or Decru a division of Netapp.  These solutions would run up woulds of $500,000 to encrypt tapes. 

IT managers are faced with the challenge of integrating encryption into their backup, recovery, and archive processes.  This additional business requirement introduces another technical dimension to an already complex set of processes, leaving users with important questions to resolve. Some of the questions the questions that we are often ask are "how will I add encryption without affecting the backup window?"  Or Will this change my backup processes and software environment? A few others are how will I manage the encryption process?  Can I encrypt data being transported between sites, both via replication and on tapes? Without the right approach and architecture, users will be forced to make painful tradeoffs to achieve data security and may be forced to settle for poor performance, Decru hardware or Symatec Legato backup software dependencies, and complex management.

Sencilo understands the issues and have been providing solutions for the past five years associated with encryption within backup, recovery, and archive.  We offer encryption options for both our disk and tape solutions, giving customers the flexibility to choose what fits best with their business requirements. For disk-based backup, One of the most popular is Quantum’s DXi-Series incorporates de-duplication and fully-encrypted replication, allowing customers to securely link sites for enterprise-wide backup and disaster recovery.  Unlike the older technology used in Data Domain vs Falcon Stor vs Exagrid, Quantum uses higher proforming technology.

For tape systems, Encryption Key Manager (Q-EKM) is available for Scalar i500 and Scalar i2000 tape libraries in conjunction with LT0-4 drives.  Quantum Encryption Key Manager (Q-EKM) is an easy-to-use solution for protecting valuable data at rest across the enterprise.  It is easy to set up, integrates seamlessly into existing backup environments, and scales easily to meet changing demands. And with Q-EKM’s “set and forget” design, the administrator doesn’t have to worry about data encryption and key management.

Key Features:

• Provides native LTO-4 drive-based encryption — a cost-effective solution based upon the AES (Advanced Encryption Standard) 256-bit encryption recommended by the federal government for classified data.


• Operates out of the data path with no impact on performance or “same system” restore requirements.


• Protects, stores and manages encryption keys supporting multiple libraries in a centralized keystore.

Sencilo Solutions is a recognized leader in the design and deployment of primary and secondary (nearline) storage. Through extensive experience in the storage industry, we have developed a deep understanding of how technology can solve operational problems. The greatest challenge that organizations face is knowing which technology will help and which will not. Sencilo leverages its expertise to help customers address this challenge and select the best storage solution available for current and future needs. Our solutions include SCSI, iSCSI and Fibre Channel connectivity. 

For more information please call (407) 265-6293 or visit us at: http://www.sencilo.com/storage-data-deduplication.php

About Us

Sencilo Solutions is a Florida-based integrator specializing in storage and security solutions. Sencilo delivers a comprehensive portfolio of products from best-of-breed hardware and software from multiple manufacturers including VMware, EMC, Juniper Networks, Hitachi, Symantec, Barracuda Networks, and HP. Its technical expertise is known throughout the storage and security industry. Clients include leading corporations, major financial institutions, top universities, government facilities, as well as small to medium size businesses. Sencilo's professional services include consulting, integration, project management, installation, maintenance and knowledge transfer.

Sencilo has offices throughout Florida including: Jacksonville, Daytona Beach, Miami, Tampa, St. Petersburg, Orlando, Hialeah, St. Augustine, Gainesville, Ocala, Palm Coast, Clearwater, Kissimmee, Lakeland, Maitland and Cape Canaveral

Offerings Projects: Replication De-Dup De-Dupe iSCSI SAN NAS VMware Security EMC NetApp HP IBM Quantum Compliance VTL Data Domain vs Gartner Magic Quadrant Quadrent LTO Backup Exc Pure Disk NetBackup Networker TSM Commvault BakBone D2D D2D2T compare cloud data deduplication  thin provisioning DXi Global Compression DDX  virtual tape library Data Reduction SEPATON FALCON compare Celerra CLARiiON Equallogic Dell NS20 NS40 CX4 CX3-20 CX3-40 CX3-80 FAS2050 FAS3050 Xiotech Nexsan Avamar DLD3 1500 D3 Storwiz storage compression data Ocarina Networks A-SIS compare Sepaton infopro BlueArc OnStor Microsoft Unified Storage data protection StorageX Brocade FAQ

---