Hidden NAS security issues
Are there any hidden security vulnerabilities in a NAS environment? Could you outline the most common and well-known security issues that the NAS administrator should know?

    Requires Free Membership to View

    Login

    When you register for SearchStorage.com, you’ll also receive targeted emails from my team of award-winning editorial writers. Our goal is to keep you informed on the hottest topics, the latest news and the biggest challenges you face as a storage professional today.

    Rich Castagna, Editorial Director

    By submitting your registration information to SearchStorage.com you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchStorage.com is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.

For NAS security some of issues are similar to SAN security, and some are unique. NAS consists of an IP network with clients using different protocols over Ethernet to access NAS storage. Vulnerabilities such as sniffer attack to copy data are considered common attacks on IP networks. Also, most IP systems come with several services that, if not required, should be removed to reduce security exposures (often called "hardening").

Finally, management or administrator access to NAS resources must be protected through strong authentication and confidentiality, something that is a common and higher priority risk to SAN and NAS.

Editor's note: Do you agree with this expert's response? If you have more to share, post it in one of our .bphAaR2qhqA^0@/searchstorage>discussion forums.


This was first published in April 2003

Back to top