Home > Ask the Storage Technology Experts > Questions & Answers > Top five security questions to ask storage vendors
Ask The Storage Expert: Questions & Answers
EMAIL THIS

Top five security questions to ask storage vendors

Vijay Ahuja EXPERT RESPONSE FROM: Vijay Ahuja

Pose a Question
Other Storage Categories
Meet all Storage Experts
Become an Expert for this site


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


>
QUESTION POSED ON: 14 July 2005
When soliciting vendors for storage management solutions, what are the top five questions to ask them about security as it relates to storage?

>
1. What type of authentication are you supporting? The T11 FC SP draft recommends support of DH CHAP with RADIUS server.

2. What type of encryption is used to secure traffic between the management entities? They may use SSL, SSH and in certain environments VPN/IPSec may help.

3. How the encryption keys are stored and secured?

4. How the secrets (e.g. passwords) are secured while in storage?

5. What kind of access control (RBAC etc.) is supported?

Remember that the management network has several components -- and you want to probe the security for each component: managed entity (switches, ports, etc.), management server, management admin workstation and the network over which they are connected. Also, the traffic may traverse over Fibre Channel (FC) or IP -- you need to address both.

There is a lot you, as the end user, can do. For starters, keep the corporate network and the storage management network separate.

BROWSE BY TAG
Secure data storage,   Data Protection,   VIEW ALL TAGS

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   



RELATED CONTENT
Secure data storage
Throwing caution to the clouds
Storage encryption essentials
Vendors take steps to lock down cloud storage services
Encryption Special Report: Key management stumbling block to securing data
What you need to know about storage encryption products
Isilon targets enterprise NAS with Backup Accelerator, N+2:1 parity
Storage Decisions Chicago 2009 Session Downloads
Storage Decisions Session Downloads: Disaster Recovery Track (Chicago 2009)
Storage Decisions Session Downloads: Data Retention & Retrieval Track (Chicago 2009)
Data on the brink

RELATED GLOSSARY TERMS
Terms from Whatis.com − the technology online dictionary
hard drive shredder  (SearchStorage.com)
Storage as a Service (SaaS)  (SearchStorage.com)
storage encryption  (SearchStorage.com)
storage security  (SearchStorage.com)

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary



Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.
Browse our Expert Advice



Search for Data Management Tools
TechTarget Storage Media
Storage Magazine View this month\\'s issue and subscribe today.
Storage Decisions Apply online for free conference admission.
SearchStorage.com
HomeNewsMagazineTopicsLearningMultimediaWhite PapersBlogsEventsAbout Us
SEARCH :     Site Index Powered by: Search Powered by Google

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2000 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts