Addressing Security Threats with Standards
|
|
Transport Layer Security (TLS) is an IETF suite of cryptographic protocols that are designed to provide communications security (confidentiality and data integrity) and can be used transparently by layering higher-level protocols (e.g., HTTP) on top of TLS. SNIA Swordfish™, SNIA SMI-S, and SNIA CDMI storage specifications leverage TLS in this manner.
To ensure both interoperability and security for conformant storage clients and servers, SNIA developed the SNIA TLS Specification for Storage Systems v1.01 (a.k.a., ISO/IEC 20648:2016), which harmonized the TLS requirements across all its specifications and enables timely adjustments to the TLS requirements when the threat landscape changes. Recently, SNIA determined that changes are now needed, v1.1 of the SNIA TLS specification explicitly disallows the use of TLS 1.0 and 1.1, mandates support for TLS 1.2, and permits support for TLS 1.3. Vendors should review the new specification and make adjustments where appropriate. Learn more here.
Public review and feedback are also welcome on additional SNIA technical Work-in-Progress DRAFT versions, including:
|
|
“Geek Out” on Buffers, Queues and Caches
|
|
Buffers, queues and caches are part of every data center architecture, and a critical part of performance. A well-implemented buffer can mean the difference between a finely tuned system and a nightmare of troubleshooting. Need a refresh on these storage basics? Here’s your chance to “Geek Out” on how buffers, queues and caches really work to help your storage system shine.
Want to dive deeper? There are 9 more “Everything You Wanted to Know About Storage But Were Too Proud to Ask” videos that offer vendor-neutral education on memory, storage management, architecture, and more. Pick and choose the ones that you want to geek out on.
|
|
New LTFS Projects – Get Involved
|
|
SNIA's Linear Tape File System (LTFS) Technical Work Group focuses on the development of an architecture that is related to the on-tape format for LTFS. New projects are underway:
LTFS Compliance Test Specification
- This specification defines the test cases to be executed by the LTFS adaptor to validate the compliance of an implementation, the file system software and the produced media, with LTFS Format Specification.
LTFS Tape Image Format Specification
- This specification defines the data structure of a file image for a magnetic tape written by the LTFS implementation, analogous to *.iso file format for optical disc storage.
|
|
Speak at Storage Developer Conference
|
|
|
|
The call for SDC 2020 presentations is now open! Gain exposure to the technical work you are doing and submit a speaking proposal today at the annual event created BY developers FOR developers. Submit your proposal here.
|
|
SDC India 2020 – Call for Presentations
|
|
|
SDC India is now seeking the brightest minds in the industry willing to share their knowledge and experience by submitting a presentation proposal. Presentations will be chosen based on their technical merit and educational interest to the SDC audience. The deadline for submissions in March 31, 2020. Submit your proposal here.
|
|
|
SNIA is pleased to welcome the following new member:
|
|
Memory at Storage Scale, Storage at Memory Speed
|
|
|
|
Presented by Charles Fan, Co-Founder and CEO, MemVerge
|
|
by Scott Shadley, VP Marketing, NGD Systems and Nick Adams, Storage Architect, Intel
|
|
|
Ethernet-attached SSDs—Brilliant Idea or Storage Silliness?
March 17, 2020
Mark Carlson, Kioxia; Rob Davis, Mellanox; John Kim, Mellanox; Ted Vojnovich, Lenovo
Several SSD and networking vendors have recently demonstrated ways to connect SSDs directly to an Ethernet network. They propose that deploying Ethernet SSDs will be more scalable, easier to manage, more performant, and/or lower cost than traditional storage networking solutions that use a storage controller (or hyperconverged node) between the SSDs and the network.
Who would want to attach SSDs directly to the network? Are these vendors brilliant or simply trying to solve a problem that doesn’t exist? What are the different solutions that could benefit from Ethernet SSDs? Which protocols would one use to access them? And how do Ethernet SSDs relate to computational storage? Join this SNIA Networking Storage Forum webcast to learn all this and more.
The Impact of Artificial Intelligence on Storage and IT
April 1, 2020
Glyn Bowden, HPE; James Myers, Intel; Alex McDonald, NetApp
Artificial intelligence (AI) and machine learning (ML) have been having quite the impact on most industries in the last couple of years, but what about our own IT industry? In this webcast find out how the rise of machine learning has created a new type of demand on IT operations teams as well as how those same teams can utilize new insights and capabilities driven by machine learning. We will explore:
- The demand on infrastructure
- Storage and data pipelines
- The growing field of IT operations leveraging AI (aka AIOps)
QUIC – Will it Replace TCP/IP?
April 2, 2020
Lars Eggert, NetApp; Tim Lustig, Mellanox
QUIC is a new UDP-based transport protocol for the Internet, and specifically, the web. Originally designed and deployed by Google, it already makes up 35% of Google's egress traffic, which corresponds to about 7% of all Internet traffic. The strong interest by many other large Internet players in the ongoing IETF standardization of QUIC is likely to lead to an even greater deployment in the near future. This talk will highlight:
- Unique design aspects of QUIC
- Differences to the conventional HTTP/TLS/TCP web stack
- Early performance numbers
- Potential side effects of a broader deployment of QUIC
Storage Security Series: Protecting Data at Rest
April 29, 2020
Pierre Mouallem, Lenovo; Ahmad Atamhl, Mellanox; Steve Vanderlinden, Lenovo
Contrary to popular belief, securing “data at rest” does not simply mean encrypting the data prior to storage. While it is true that data encryption plays a major role in securing “data at rest,” there are several other factors that come into play and are as important as encryption. In this webcast, we present the end-to-end process to secure “data at rest,” and discuss all the factors and trade-offs that must be considered, and some of the general risks that need to be mitigated.
|
|
|
Find SNIA at these Events
|
|
|
|
SNIA Technical Symposium – Freemont, CA – April 20-24, 2020
SDC India – Bangalore, India – May 21-22, 2020
Storage Developer Conference – Santa Clara, CA – September 21-24, 2020
|
|
Your opinion about SNIA Matters is important to us.
Let us know:
Did you find this issue valuable?
Yes
No
|
|
|
|
We value your feedback. Please send any comments or suggestions to the SNIA Matters editor, Diane Marsili.
|
|
|
|
|
