Q

Hidden NAS security issues

Are there any hidden security vulnerabilities in a NAS environment? Could you outline the most common and well-known security issues that the NAS administrator should know?

For NAS security some of issues are similar to SAN security, and some are unique. NAS consists of an IP network with clients using different protocols over Ethernet to access NAS storage. Vulnerabilities such as sniffer attack to copy data are considered common attacks on IP networks. Also, most IP systems come with several services that, if not required, should be removed to reduce security exposures (often called "hardening").

Finally, management or administrator access to NAS resources must be protected through strong authentication and confidentiality, something that is a common and higher priority risk to SAN and NAS.

Editor's note: Do you agree with this expert's response? If you have more to share, post it in one of our .bphAaR2qhqA^0@/searchstorage>discussion forums.


This was first published in April 2003

Dig deeper on Secure data storage

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

-ADS BY GOOGLE

SearchSolidStateStorage

SearchVirtualStorage

SearchCloudStorage

SearchDisasterRecovery

SearchDataBackup

Close