Home
Topics
SAN (storage area network)
ISCSI SAN
Secure iSCSI storage

Secure iSCSI storage

Ezine

This article can also be found in the Premium Editorial Download "Storage magazine: Tips for lowering the cost of storage support contracts."

Download it now to read this article plus other related content.

1
2
3
4
5
6
7
8

So if iSCSI has so many security features, why do so many people ask about security? The reason is that iSCSI is much more accessible than previous storage protocols. Ethernet hardware and IP support have become ubiquitous, both inside and outside the data center. The technology uses common protocols and is supported by the majority of OSes available today. This means there are millions of people who could theoretically try their hand at breaking into an iSCSI SAN.

This accessibility is also a blessing for iSCSI. On the positive side, there's a lot more understanding and acceptance of its basic concepts vs. Fibre Channel (FC). There's also a legion of trained network engineers who have the skills to build a secure network for iSCSI to run on. Technologies like Challenge-Handshake Authentication Protocol (CHAP), Remote Authentication Dial-In User Service (RADIUS), VPN and IPsec have proven to be powerful and reliable over a decade of widespread use. This stands in contrast to the arcane security features, most of which are rarely used, offered by FC storage device vendors. "Our iSCSI SAN is definitely more secure because of our previous experience with IP and Ethernet," says Ron Braden, IT director for the Town of Vail, CO. "Building a secure IP network is second nature to us."

A secure system addresses data confidentiality, integrity and availability. Most people begin with confidentiality. But availability is equally important and probably accounts for more

Requires Free Membership to View

Login

By submitting you agree to receive email communications from
TechTarget and its partners. Privacy Policy Terms of Use.

security breaches. A denial of service attack is much simpler to engineer than an encryption hack. Data can also be deleted, requiring time-consuming restores. Integrity is a more subtle topic. Substituting bad data for good data can go unnoticed and could lead to more serious side effects than simply losing access to a system. Problems with integrity can also lead to legal and compliance issues that are more costly than any technical problem.

1
2
3
4
5
6
7
8

More News and Tutorials

Articles

Related glossary terms

Terms for Whatis.com - the technology online dictionary

This was first published in May 2007

Join the conversationComment

Share

Comments

Results

Contribute to the conversation

All fields are required. Comments will appear at the bottom of the article.

More from Related TechTarget Sites

Solid State Storage
Virtual Storage
Cloud Storage
Disaster Recovery
Data Backup
Storage UK
Storage Channel

searchSolidStateStorage
- The top three use cases for PCIe SSD
  
  Learn more about the most common applications of PCIe solid-state cards today in this Expert Answer from independent storage expert Marc Staimer.
- Laptop SSD applications and monitoring
  
  Learn what applications benefit from laptop SSDs and what tools are available to monitor wear on these drives in this Expert Answer from Marc Staimer.
- STec CEO: Flash enables storage transformation
  
  STec CEO Mark Moshayedi discusses why he thinks flash will prompt enterprises to move from refrigerator-box SANs to custom-built solid-state systems.
Virtual Storage
- Startup CloudFounders builds open storage for VMs
  
  CloudFounders promises an open storage version of software-defined storage that supports OpenStack, Amazon S3 and VMware.
- 10 ways to improve virtual server storage
  
  Virtual server storage operations can have a profound effect on the storage network. Here are 10 ways to help ensure that your storage yields its best I/O for the VMs it supports.
- VMware market share is high in a small pool of virtualization
  
  Storage expert Jon Toigo explains how VMware is the market leader, and why virtualization growth statistics seem more impactful than they truly are.
CloudStorage
- NetApp, Equinix offer private storage for public cloud
  
  NetApp Private Storage for AWS connects NetApp private storage systems hosted in Equinix data centers to Amazon public clouds.
- Mezeo beefs up software for cloud building, online file collaboration
  
  Mezeo Software enables building public storage clouds on Amazon S3 and OpenStack storage, and strengthens online file-collaboration management.
- Cloud gateways morph into cloud controllers market
  
  After the addition of encryption, clones and deduplication capabilities, cloud storage controllers are the new cloud gateways.
searchDisasterRecovery
- Your data protection plan must consider latency in WAN-based replication
  
  In this Storage Decisions video, Jon Toigo highlights issues IT pros must address in their data protection plan when using WAN-based replication.
- Improving business continuity plan exercises
  
  Planning and conducting business continuity (BC) drills is one of the most important activities in a business continuity program.
- Evaluating BC/DR program performance
  
  Business continuity and disaster recovery are not "set-it-and-forget-it" activities. Paul Kirvan outlines how to evaluate a BC/DR program in this tip.
searchDataBackup
- Enterprise backup software avoids storage sales slump
  
  While storage vendors reported slow sales at start of 2013, Symantec and CommVault had success with enterprise backup software.
- Disk can help with backup tape rotation strategy
  
  Backup expert George Crump explains how to use disk to get the most out of your backup tape rotation strategy.
- How cloud archiving services compare
  
  Backup expert George Crump discusses the issues involved in picking a cloud archiving service for your organization.
searchStorageUK
- Dell cloud storage plans remain hazy
  
  News of a Nirvanix partnership filled in some details about Dell's cloud storage strategy, but the company still treats its cloud plans as a secret.
- Storage Radio: Riverbed Whitewater appliance chases enterprise
  
  In our latest Storage Radio podcast, SearchStorage.com editors discuss the Riverbed Whitewater cloud data backup appliance for enterprise backups.
- Finding data deduplication solutions for DR
  
  Deduplication is an important strategy for disaster recovery. Learn more about data dedupe solutions in this expert tip by Paul Kirvan.
searchStorageChannel
- Hitachi Data Systems Partner Program Checklist
  
  Learn the benefits of becoming a Hitachi Data Systems reseller partner with our Partner Program Checklist.
- Yosemite Technologies Partner Program Checklist
  
  Learn the benefits of becoming a Yosemite Technologies reseller partner with our Partner Program Checklist.
- CommVault, Inc. Partner Program
  
  Learn about data management software vendor CommVault, Inc.'s partner program in this standardized checklist.

All Rights Reserved,Copyright 2000 - 2013, TechTarget