Cloud Storage Considerations:
- Determine storage technology requirements are (HDD or SSD)
- Select storage options for deployment
- Read/Write Throughput using IOPS (IOPS measures I/O performance for storage devices)
Cloud Storage Protection Options
Local Replication – Replicates data within a single data center region.
Regional Replication (zone-redundant storage) – Replicates data across multiple data centers within on region. Benefits: safeguards data if one region goes offline.
Multi Regional Replication – Replication across multiple data centers.
Geo-Redundant Storage (GRS) – Replicates data to a secondary region that is distant from the primary region. Benefits: safeguards data in the event of a regional outage or disaster.
Asynchronous vs. Synchronous Replicated Storage
Synchronous Replication – Data is written to primary storage and replication target simultaneously.
Asynchronous Replication – Data is written to primary storage first and then to replication target. Best for replication where users and systems are on the same connection (bandwidth).
Snapshots and Clones
- A storage snapshot takes an original data copy, storing the differences from the original
- Cloning makes a complete copy of a VM or storage environment.
- Clones are used for configuration backup and rapid deployment.
- Snapshots are used for roll-back and roll-forward situations, often during app development.
Network Storage Types
- Object Storage (blob storage) – Used for unstructured data such as images, videos, audio, and documents.
- File Storage
- Table Storage (NoSQL databases, big data)
- Queue Storage (messages waiting for delivery)
- High-Performance Storage
- File Compression
- Storage Array Compression
- Backup Storage Compression
Storage Access Protocols
- Small Computer System Interface (SCSI) – Most used block level access method for disks in the data center.
- Fiber Channel (FC)
- Internet/IP Small Computer System Interface (iSCSI) – Allows for data transfer across existing IPs.
- Fibre Channel over Ethernet (FCoE)
- Common Internet File System (CIFS)
- Network File System (NFS)
Storage Management Considerations
- RAID and Mirroring
- Traffic Analysis
- Process Automation
- Storage Provisioning
- Data Movement between Cold, Warm, and Hot Storage
Storage Provisioning Models
Fat Provisioning – Space is allocated beyond current needs.
Thin Provisioning – Optimized storage so that you are not paying for storage you don’t need.
Determining Storage Security Options
At-Rest – Data in storage.
In-Transit – Data in transit that is moving across a network such as web applications, mobile apps, and instant messaging.
In-Use – Data in use refers to data that is not at rest or in transit (data being generated, changed, erased, or viewed on one network node).
Data-At-Rest Encryption Standard: AES
Cloud Storage Security
ACL – Access Control Lists – Restrict access to resources such as files and folders.
Zoning (LUN) – Storage area networks (SANs). Restricts access to portions of the SAN. Allows which users can access which data. Zoning allows both access and bandwidth control through port assignment for each zone.
- Hard Zoning – Assigned a permanent zone.
- Soft Zoning – Can be changed by an administrator.
Transferring Large Data to the Cloud
- Copy data to an encrypted drive and send to the CSP-certified shipping provider.