How Mars 400 Ceph Storage Protects Enterprise Data Against Ransomware / Ambedded was founded in 2013 with the talented team experienced in ARM based software defined storage appliance design and manufacture.

Recently we heard many hackers hijacked enterprise storage by encrypting their data and asking ransom payment to decrypt them. By 2021, ransomware will attack a business every 11 seconds, and the global damage caused by ransomware will reach $20 billion. (ref. Cybersecurity Ventures research) Besides enhancing network security, enterprises shall have a solution to restore their data from the backup storage if you are hijacked by ransomware. Ambedded How Mars 400 Ceph Storage Protects Enterprise Data Against Ransomware Introduction. Ambedded was founded in 2013 with the talented team experienced in ARM based software defined storage appliance design and manufacture.. Ambedded offers Ceph storage solution to the market, including Ceph storage Appliance on ARM microservers and SUSE Enterprise Storage Appliance on ARM microservers. In addition to Ceph solution, Ambedded also offers comprehensive Ceph software support to the customer, to help the unexperienced users to adopt this new technology without hesitations.

service@ambedded.com.tw

Open hour : 9am-6pm

Ambedded Technology Co., LTD.

How Ceph Storage Protects Enterprise Data Against Ransomware by using S3 and RBD snapshot

How Mars 400 Ceph Storage Protects Enterprise Data Against Ransomware

Recently we heard many hackers hijacked enterprise storage by encrypting their data and asking ransom payment to decrypt them.
By 2021, ransomware will attack a business every 11 seconds, and the global damage caused by ransomware will reach $20 billion. (ref. Cybersecurity Ventures research)
Besides enhancing network security, enterprises shall have a solution to restore their data from the backup storage if you are hijacked by ransomware.


Mars 400 Ceph Appliance for Enterprise Storage Data Protection

 

ceph storage appliance by using arm micro server, tuning ceph and ceph management GUI UVS manager

Data stored in the Ceph storage is protected by replication or erasure code to prevent data lost against hardware failure. IT users can use the Ceph distribution algorithm CRUSH rule to tell Ceph to store your data and its replications in different storage nodes or nodes installed in different racks. This smart algorithm controls the data failure domain and avoids residing more than one replicated data in the same failure domain. The CRUSH rule provides a data protection mechanism that can protect data against host failure and rack failure.

The ceph storage cluster can't avoid your data from being attacked by hackers. However, you can use some Mars 400 ceph appliance advanced features to recover your data when data has been encrypted by ransomware.

Mars 400 Ceph Features to Protect Enterprise Storage Data from Ransomware

 

Object Storage supports WORM on S3

Starting from Ceph Nautilus 14.2.5 release, Ceph supports the Object Lock for its S3 compatible object storage to allow for a WORM (Write Once Read Many) model. You can create an object lock enabled bucket with a specified retention period. Users can not delete and make any change to data put in the bucket.

The object lock provides two retention modes:

  • Governance mode: users can only delete or overwrite an object version or change the lock setting when they have special permission.
  • Compliance mode: Users include the root user, can not delete or overwrite an object before the retention period. The retention period can't be shortened in any situation.

You can use Mars 400 Ceph storage appliance to create the immutable S3 buckets and use it as the Veeam backup capacity tier. Veeam Backup & Replication utilizes the S3 object lock and versioning to make the backup data temporarily immutable. All backup data stored in the immutable bucket can not be modified and deleted without a special authentication. Thus Mars 400 protects your data from malware attacks. If your primary data is encrypted, you have a backup to restore your primary storage.

Block and File System supports Copy-On-Write Snapshot

Ceph block storage and file system support copy-on-write snapshot. When you take a snapshot on a volume or image, ceph uses that point in time as the recovery point reference. If users overwrite data later, Ceph will mark the original data as the snapshot data before ceph update the data. Ceph will preserve the original state of that data as read-only. 
Someday, if malware encrypts your storage, you can easily roll back your data to the state of previous snapshots point in time.

*Note: The copy-on-write operation happens only for the first time data is changed.

Figure 1 is an example of the ceph snapshot and rollback.

Figure 1

Ceph block storage and file system support copy-on-write snapshot. When IT users take a snapshot on a volume or image, ceph uses that point in time as the recovery point reference.

Conclusion

 

Data Protect Solution supported by Mars 400 ceph appliance for Ransomware

  • Object Storage: Object Lock (WORM)
  • Block Storage: Snapshot
  • Filesystem: Snapshot
Related Products
Ceph Storage Appliance - Ceph Storage Appliance Mars 400 front.
Ceph Storage Appliance
Mars 400

Mars 400 Ceph Storage Appliance is a turn-key software-defined storage solution for enterprise and data center. The appliance integrates ARM-Based Micro-Server...

Details
Mars 400SES SUSE Enterprise Storage Appliance - Mars 400SES SUSE Enterprise Storage 6 (Nautilus) Appliance.
Mars 400SES SUSE Enterprise Storage Appliance
Mars 400SES

Mars400SES SUSE Enterprise Storage Appliance consists of ARM microserver hardware, 3 years SUSE Enterprise Storage & SUSE Linux Enterprise Server subscription,...

Details
Related Technology
Ceph Block Storage

Ambedded Ceph appliance is a scalable storage platform that enables you to get high available block devices with disaster recovery and snapshot capabilities....

Read more
Object Storage and Amazon S3 Compatible Storage

Ceph Object Storage is an object storage interface built on top of librados and provides a RESTful gateway for applications to the Ceph Storage Cluster....

Read more

Ceph Storage Solutions Design and Manufacture | Ambedded

Located in Taiwan, Ambedded Technology Co., LTD. is a Ceph storage solution provider that offers ARM based software defined storage appliances with 60% CapEX saving, 70% less power consumption and 100% scale out advantages.

For Software-defined storage designing and manufacturing, Ambedded team has broad experience to help customers to adopt the ceph solution into versatile industries, such as Telecom, medical, military, edge datacenter and HA required enterprise storage.

Ambedded has been offering customers Ceph storage solutions since 2013, both advanced technology and 20 years of experience, Ambedded ensures each customer's demands are met.