Windows IT Pro Storage UPDATE--Data Security: A Storage Problem--January 23, 2006

Subscribe to Windows IT Pro:
https://store.pentontech.com/index.cfm?s=1&promocode=eu205xgL

==============

Don't let overzealous antispam software block your copy of Storage UPDATE--add [email protected] to your list of allowed senders and contacts.

==========

This email newsletter comes to you free and is supported by the following advertisers, which offer products and services in which you might be interested. Please take a moment to visit these advertisers' Web sites and show your support for Storage UPDATE.

Diskeeper
http://www.windowsitpro.com/whitepapers/diskeeper/defragmentation/index.cfm?code=STGTop123

LeftHand Networks
http://www.windowsitpro.com/go/whitepapers/lefthand/storage?code=STGMid123

==========

1. Commentary
- Data Security--It's a Storage Problem

2. From the Community
- Duplicate Media Names Cause Data-Restore Problem Under Win2K Backup

3. New and Improved
- Winchester Systems Adds New Storage Array to FlashDisk OpenSAN Line
- Tell Us About a Hot Product and Get a T-Shirt!

4. Windows IT Pro Resources

==== Sponsor: Diskeeper ====

The Impact of Disk Defragmentation

Nearly every IT professional has a fragmentation horror story - in which fragmentation severely degraded performance so that systems were unusable. In this free white paper, learn what impact fragmentation has on users and system activities and discover how quickly fragmentation accumulates as a result of these activities. Plus get the recommendations you need to manage the frequency of defragmentation across your infrastructure.
http://www.windowsitpro.com/whitepapers/diskeeper/defragmentation/index.cfm?code=STGTop123

==========

==== 1. Commentary: Data Security--It's a Storage Problem ====
by Elliot King, [email protected]

2005 was a rough year for people worried about the security of their personal information. In compliance with California's law mandating that companies reveal "unauthorized acquisition of \[data\] that compromises the security, confidentiality, or integrity of personal information," major companies--among them Bank of America, CitiFinancial, LexisNexis, and ChoicePoint--sent more than 51 million such notices to their customers.

Not surprisingly, sensing an issue that resonates with the public, Congress has jumped into the data-security fray. A bill called the Data Accountability and Trust Act (DATA) is starting to wind its way through the legislative process. Although many critics in Congress believe that the act doesn't go far enough--some feel that it preempts stronger state laws with a weaker federal standard--nobody is arguing that the proposed data-security law goes too far. The need to improve data security is clearly on the legislative agenda.

But has data security made its way onto the business IT agenda? Not according to a recent study sponsored by GlassHouse Technologies, a provider of independent services that help organizations solve enterprise storage problems. In a survey of more than 300 companies, 54 percent revealed that they hadn't documented procedures for protecting stored data, and a whopping 70 percent of the senior executives who responded rated their companies' data storage security as only fair or poor.

The survey queried executives in 16 industries, including government, telecommunications, technology, energy, financial services, aerospace, and health care, and found that most companies don't yet really understand the source of threats to their data. For example, 61 percent believe that external threats to data are more significant than internal threats, albeit insiders have much more access to sensitive data. Moreover, around 51 percent worry more about protecting their company's intellectual property than protecting their customers' personal information, although the immediate consequences of mishandling customer information can be far greater.

And since executives apparently don't yet fully understand the data-security problem, many organizations haven't yet seriously addressed it. For example, the GlassHouse survey reveals that only 15 percent of respondents encrypt backup data.

But if companies' data-security infrastructures are either ineffective or nonexistent, who will take the lead in responding to the compliance issues those enterprises clearly face? According to Jim Geis, director of storage solutions at Forsythe Technology, a national provider of technology-infrastructure solutions, although storage and network administrators will have to work closely on security issues, eventually security must be integrated into the storage infrastructure. "Information security transcends perimeter security," Geis says.

It won't be easy. Building an effective data-security infrastructure means making complicated decisions about issues such as encryption and access. For instance, how much data should be encrypted? When should it be encrypted? And who manages encryption keys?

These types of decisions have to be made in the context of balancing security concerns with the need for access and availability. Encrypting too much data can impede overall system performance and deny users timely access to data they need. Clearly, effective encryption requires a data-classification program. In terms of security issues, all data is not equal.

However, IT pros can take certain steps immediately to beef up data security. For example, administrators can ensure that old backup tapes are stripped of data before they're sent for recycling. Geis notes that in a recent study, more than 60 percent of old tapes still had unencrypted data on them.

Data security isn't an issue that can be easily solved by throwing more, or more sophisticated, technology at it. In many cases, effective technology isn't yet available. And even when technical data-security solutions exist, exactly where and how they should be implemented isn't yet clear.

In fact, the first step toward building an effective data-security infrastructure is to develop policies governing data access and flows. "Policy is first," Geis says. And the development of policy has to start now because companies face real long-term and significant costs when their data security is breached.

==== Sponsor: LeftHand Networks ====

Storage demands for Microsoft Windows servers have changed dramatically over the last five years. In this free white paper, you'll learn how storage has been redesigned to provide administrators with the tools to manage the storage demands of today and the future. Find out how this affects you, how it will help defer storage purchases, how to separate backup data from protected data, and more!
http://www.windowsitpro.com/go/whitepapers/lefthand/storage?code=STGMid123

==== 2. From the Community ====

Duplicate Media Names Cause Data-Restore Problem Under Win2K Backup

When you use the Windows 2000 Backup Utility with a standalone tape unit and a single scheduled backup job, when restoring your data you might experience difficulty selecting the correct media name. Even if you're sure that you've selected the correct name, you might get the message "Please check the Removable Storage Management MMC," and your only option is to cancel. For more information about this problem and how to resolve it, go to http://support.microsoft.com/?kbid=269385.

==== 3. New and Improved ====
by Anne Grubb, [email protected]

Winchester Systems Adds New Storage Array to FlashDisk OpenSAN Line

Winchester Systems introduced the new FX-700 FlashDisk OpenSAN, a storage array that offers double the internal bus speed of the previous generation of FlashDisk OpenSAN products, can scale to 112TB, and can accommodate both Fibre Channel (Switched Bunch of Disks--SBOD--based) primary and Serial ATA (SATA) secondary storage within the same physical storage array. The new storage array is designed for midsize and enterprise environments and ensures high performance, availability, and reliability through features such as an SBOD architecture that eliminates bus-contention-related issues associated with Fibre Channel Arbitrated Loop (FC-AL), separate host I/O connections from the RAID controllers that ensure no disruption of host connectivity if a RAID controller requires replacement, and the ability to do nondisruptive firmware upgrades. The FX-700 FlashDisk OpenSAN is list-priced starting at under $70,000. For more information, contact the vendor on the Web:
http://www.winsys.com

Tell Us About a Hot Product and Get a T-Shirt!

Have you used a product that changed your IT experience by saving you time or easing your daily burden? Tell us about the product, and we'll send you a T-shirt if we write about the product in a future Windows IT Pro What's Hot column. Send your product suggestions with information about how the product has helped you to [email protected]

=========

==== Hot Spot (advertisement) ====

IT Consolidation: Maximizing the Potential of Your Windows Environment

Optimize your existing Windows Server infrastructure with the addition of server and storage consolidation software and techniques. Also get tips and guidelines to evaluate your current infrastructure and determine what segments of your environment are suitable for consolidation.
http://www.windowsitpro.com/go/whitepapers/polyserve/serverconsolidation/?code=STGHot123

=========

==== 4. Windows IT Pro Resources ====

Check out these links to a wealth of Windows IT Pro resources: white papers, eBooks, Web seminars, conferences, and other events.

==== Resources and Events ====
(brought to you by Windows IT Pro)

WEB SEMINAR: Learn to gather evidence of compliance across multiple systems and link the data to regulatory and framework control objectives.
http://www.windowsitpro.com/go/seminars/bindview/multiregcompliance/?partnerref=0125emailannc

WHITE PAPER: Optimize your existing Windows Server infrastructure with the addition of server and storage consolidation software and techniques.
http://www.windowsitpro.com/go/whitepapers/polyserve/serverconsolidation/?code=0125emailannc

WEB SEMINAR: Get the tools, tips, and training that you need to avoid a messaging meltdown when an outage strikes. View this seminar today:
http://www.windowsitpro.com/go/seminars/messaging/?partnerref=0125emailannc

WEB SEMINAR: Learn how to leverage new features in SQL Server 2005 to greatly extend your existing backup and restore capabilities.
http://www.windowsitpro.com/go/seminars/SQLServer/?partnerref=0125emailannc

WHITE PAPER: Address the need to manage spyware threats and vulnerabilities from one console as a comprehensive security solution.
http://www.windowsitpro.com/go/whitepapers/shavlik/spyware?code=0125emailannc

==== Featured White Paper ====

WHITE PAPER: Evaluate the costs of losing information and learn what real-time information management means and how to accomplish it in your business.
http://www.windowsitpro.com/go/whitepapers/xosoft/infomanagement?code=0125emailannc

==== Announcements ====
(from Windows IT Pro and its partners)

Become a VIP Monthly Pass Subscriber

Sign up now and get a VIP Monthly Online Pass that includes online access to ALL the articles, tools, and helpful resources published in SQL Server Magazine, Windows IT Pro, and the Exchange and Outlook Administrator, Windows Scripting Solutions, and Windows IT Security newsletters. You'll also have 24/7 access to a database of more than 25,000 online articles that will give you all the answers you need, when you need them. BONUS--Includes the latest issue of Windows IT Pro each month. Sign up now for just $29.95 per month.
https://store.pentontech.com/index.cfm?s=1&promocode=eu2761uv

Windows Scripting Solutions Newsletter--2006 Special

Order now and SAVE up to $30 off the regular price. You'll get 12 helpful issues loaded with expert-reviewed downloadable code and scripting techniques, as well as hundreds of tips on automating repetitive tasks. You'll also get access to the entire online newsletter archive (more than 500 scripting articles), including the popular "Shell Scripting 101" series. Order now for just $99:
https://store.pentontech.com/index.cfm?s=1&promocode=eu2661us

=========

==== Contact Us ====

About the commentary -- [email protected]
About the newsletter -- [email protected]
About technical questions -- http://www.windowsitpro.com/forums
About product news -- [email protected]
About your subscription -- [email protected]
About sponsoring UPDATE -- [email protected]

===============

This email newsletter is brought to you by Windows IT Pro, the leading publication for IT professionals deploying Windows and related technologies. Subscribe today!
https://store.pentontech.com/index.cfm?s=1&promocode=eu205xgb

View the Windows IT Pro privacy policy at
http://www.windowsitpro.com/AboutUs/Index.cfm?action=privacy

Windows IT Pro, a division of Penton Media, Inc.
221 East 29th Street, Loveland, CO 80538
Attention: Customer Service Department

Copyright 2006, Penton Media, Inc. All rights reserved.

Hide comments

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish