Security protection of enterprise data before encountering damage

Source: Internet
Author: User
Keywords Encounter
With the increasing of storage products in the market, the backend storage system becomes the core and key of enterprise business system. Inevitably, companies are more concerned with data security. Generally speaking, there are four ways we can solve data security problems in stored procedures, offsite backup can avoid the loss of data in the event of natural disasters, and RAID (redundant array of independent disks) can reduce the damage of disk parts; Reduce downtime losses. These technologies are the guarantee of data security, while protecting data is one of the primary requirements of storage. Offsite Backup off-site backup is the safest way to protect data, no matter what happens, that is even fire, earthquakes, when other means of protecting data do not work, the advantages of remote disaster tolerance is reflected, but the problem of disaster tolerance in different places is the speed and cost, This requires network connectivity with sufficient bandwidth and excellent data replication management software. Generally from three aspects of the implementation of off-site backup, one is based on the disk array, through the Software replication module, to achieve data replication between the disk array, this method is applicable to the two sides of the replication with the same disk array. The second is host-based, which is independent of the disk array. The third is based on the storage management platform, which is independent of both the host and the disk array. The RAID RAID system uses many small-capacity disk drives to store large amounts of data, and increases reliability and redundancy. For a computer, such an array is like a logical unit consisting of multiple disk drives. The common feature of all RAID systems is the "hot swap" capability: The user can remove a defective drive and insert a new one to replace it. For most types of RAID, you can automatically rebuild data on a failed disk without disrupting the server or system. Mirroring if the failure occurs in a remote branch, you can use mirroring technology, to perform a remote mirror of a different volume or an offsite volume, or to take over a single point of failure with dual fault-tolerant technology, to ensure that no single point of failure and local devices encounter unrecoverable hardware damage, can still start offsite with this same environment and content of the mirror device, To ensure uninterrupted service. Of course, this will certainly enhance the investment in equipment. Snapshots in data protection technology, Snapshot Technology (snapshot) is one of the most basic and popular technologies that are used in many stored procedures, such as data replication and backup. IBM's flashcopy, IBM NAS PSM software, and Veritas Flashsnap Software are all representative of snapshot technology. Storage-system-type remote disaster recovery: Costly storage-system-type remote disaster recovery, as the name suggests, is based on storage-system (Fiber-optic disk array, NAS) mode. Through the storage system built in firmware (modularity) or operating system, through the IP network or DWDM, Fibre Channel and other transport interface links, data to synchronize or asynchronousWay to replicate to the far end. Well-known storage-system-type remote disaster-tolerant solutions include SRDF, truecopy, PPRC, etc. Compared with the main model remote disaster tolerance, the advantage of the storage System type remote disaster tolerance is to separate the data from the operation, which has little influence on the running resources of the host system. In addition, because most of the operating mechanism is to use mirror (mirror) to replicate data, and the use of high-speed buffer memory to speed up I/O access, the data differences between the two points are relatively small, coupled with the storage system itself has a certain degree of fault-tolerant capability, with certain operational performance and reliability. The biggest limitation of storage-system-type remote disaster-tolerance is its expensive construction cost. Because users must be in the local and disaster standby configuration of two identical storage systems, not only the high cost of procurement, but also subject to a single equipment manufacturers, the future expansion of the inevitable lack of flexibility. In addition, if a Fibre Channel storage system is to build a remote disaster-tolerance, it must install a fc-to-ip on both local and disaster standby, the hardware cost will be more than 50,000 dollars, plus the network bandwidth cost, the overall cost input will be staggering. If the enterprise is not carefully evaluated before installation, building a storage-system-type remote disaster-tolerance is very likely to cause it expenditure of black holes, aggravating the financial burden. In addition, the storage system type disaster-tolerant mode has a great defect to the consistency of the database, and there is no applicability to the disaster-tolerant architecture. In addition to the above two architectures, does the enterprise have no better choice? In recent years, the network storage software Solution provider (Falconstor), represented by the American Flying Kang software company (Storage Gateway), has successfully developed a storage network type (Storage receptacle based) remote disaster-tolerant scheme with storage gateway as its core, This scheme not only combines the advantages of main model and storage System type remote disaster-tolerant architecture, but also breaks the ice of remote disaster-tolerant construction cost, and becomes the hottest disaster-tolerant technology at present. Storage network-type remote disaster-tolerant architecture is a storage area network (SAN) between front-end application servers and back-end storage systems, add a layer of storage gateways, which are different from the network gateways we know, taking the US company's program as an example, combining Ipstor storage management software with dedicated managers, The front-end connects the server host, the backend connects the storage device, its role is like the traffic police in the storage network, all I/O is entrusted to it to control the management. Storage network type remote disaster recovery: inclusive or to Fly Kang Company's ipstor as an example, Ipstor remote disaster-tolerant operation, is the combination of host-side agents (agent) and snapshot function (Timemark), the creation of a snapshot copy of the host data, through the network to replicate to the remote disaster preparedness site. Since Ipstor uses only the pattern of data replication for change data, the required bandwidth is lower and the link between the local and disaster sparesCan take advantage of relatively inexpensive IP networks. The advantages of storage network-type remote disaster-tolerance can be said to be the first two architectures. Because the data copy is executed through the storage gateway, the application server only needs to execute the proxy program of the database, and its performance is very low relative to the host type remote disaster tolerance. In addition, through the Storage Gateway virtualization technology, can integrate front-end heterogeneous platform server and back-end of different brand storage devices, local and disaster-ready devices need not be configured, users can based on RTO and RPO, the remote set up a complete hot backup center, when the local disaster occurred immediately take over the business operation Or take a warm-station configuration that installs storage devices only on the disaster-recovery side, protecting the integrity and security of the data, and then restoring the local end after the repair is complete. In addition to the above resources not to occupy the host, and do not have the limitations of storage platform, the cost is the storage network of remote disaster-tolerant maximum advantage. First, there is no need to replace the original IT infrastructure at build time, only by adding a storage gateway to the original storage area network, the local host and storage device can be any brand, and the host and storage device of the disaster standby system need not be the same as that of the local side, and the user can even use the lower level storage systems on the disaster standby ( such as SATA disk arrays, according to statistics, investment costs can save up to 30% to 50%! For those customers who are eager to build remote disaster-tolerant and have very limited IT budgets, storage-network-type remote disaster-tolerance is undoubtedly the best choice. Secondly, for the special Agent of database, the storage network type remote disaster-tolerant ensures the database has a complete disaster-tolerant and start-up capability without worrying about the phenomenon that can't start. More importantly, in the storage of data on the multi-point snapshots, such as value-added functions, can make all kinds of data can be the human destruction of instantaneous recovery ability, it is a most complete disaster-tolerant system, which covers a range of disasters covered by far more than the aforementioned types of methods. In such a disaster-tolerant system, the construction of disaster tolerance is no longer a difficult task, and catastrophe is no longer a terrible thing. "Responsible editor: Snowflake TEL: (010) 68476606-8008" to force (0 Votes) Tempted (0 Votes) nonsense (0 Votes) Professional (0 Votes) The title of the party (0 Votes) passed (0 votes) by the original: Before the destruction of the enterprise data security back to the network security home
Related Article

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.