Presentation is loading. Please wait.

Presentation is loading. Please wait.

High Availability for Information Security Managing The Seven R’s Rich Schiesser Sr. Technical Planner.

Published byStuart Banks Modified over 9 years ago

Similar presentations

Presentation on theme: "High Availability for Information Security Managing The Seven R’s Rich Schiesser Sr. Technical Planner."— Presentation transcript:

1 High Availability for Information Security Managing The Seven R’s Rich Schiesser Sr. Technical Planner

2 The Seven R’s 1. Redundancy 2. Reputation 3. Reliability 4. Repairability 5. Recoverability 6. Responsiveness 7. Robustness

3 1. Redundancy –Eliminating Single Points of Failure –Components power supplies central processors memory segments disk storage –Servers warm standby hot standby –Networks duplicate lines –Alternate Data Centers

4 Real Life Experience Duplicating Classified Components Classified environment of N G defense contractor presented unique challenges. Secured network links needed to be duplicated. Encryption devices were required to be redundant. Personnel with encryption keys had to be kept to a minimum.

5 2. Reputation Credibility of Track Record of Key Suppliers of Data Center Hardware And Software Methods to Verify Track Record - Market Share - Industry Analysts - Customer References

6 Real Life Experience The Good, the Bad, the Unbelievable The Good –EMC’s disk array hardware The Bad –EMC’s marketing tactics The Unbelievable –ET Phone Home!

7 3. Reliability - Frequency of Outages - Common Measurement is the Mean Time Between Failure (MTBF) - acquired from manufacturers - verified with customers - compared to industry analysts’ reports - collected and analyzed empirically - Methods to Collect and Analyze Data - trouble calls from clients - problem tickets from suppliers - feedback from client support personnel - feedback from supplier repair personnel

8 Real Life Experience Enterprise Security and Reliability 20 th Century Fox Motion Pictures entered lucrative home entertainment business in 1995. IBM AS/400 computers provided security and high availability for the highly critical applications. The only significant outage occurred when a power transformer exploded.

9 4. Repairability Duration of Outages Common Measurement is the Mean Time To Repair (MTTR) Other Factors to Consider –root cause analysis –repeatability of causes –incorrect diagnosis –use of rolling averages –analysis of trends over time

10 Real Life Experience Bugged by Telephone Companies Critical network link between two key divisions of an aerospace company kept failing intermittently. Problem was not solved until all seven hardware and software vendors were brought in together to brainstorm solutions. Analysis of data that showed patterns and trends finally solved the problem.

11 5. Recoverability Degree of Fault Tolerance Functional Operations –single and double-bit memory errors –disk and tape read/write retries –network transmission retries Hardware and Software Components –operating systems –servers, disks drives and tape drives –network lines and equipment Data Center Facility –power systems –air conditioning systems –fire suppression –computer rooms

12 Real Life Experience Accidental Testing in Production A marketing representative from a major server manufacturer got more than he bargained for while demonstrating his product’s failover capability. Fortunately for him and his company, the product performed as advertised.

13 6. Responsiveness Urgency of Support Manual Response –help desk resolution –dispatching to client support groups –escalation to suppliers or specialists Automated Response –self-detection and correction of errors –remote monitoring and circumvention of failing equipment –automated dispatching of service personnel

14 Real Life Experience IBM Supplies Air Support A major aerospace firm invested heavily in a critical IBM database system that began having software security problems. The DBA and IBM managers escalated to the highest levels of their respective companies. The vendor used a unique method to ensure its technical specialists arrived onsite on time.

15 7. Robustness Overall Quality of the System Able to Withstand a Variety of Disruptive Forces: –internal and external to the company –natural and man-made disasters Places a High Premium on: – documentation – training – analysis – continuous improvement

16 Real Life Experience Politically Charged Security Decisions California recently passed a law requiring, in some instances, disclosure of customer data to all residents of the state. A mortgage company recently encountered the theft of some desktop computers one month prior to enactment of the law. The company stepped up efforts to train employees on the impact of this new law, and methods to mitigate its effects.

17 Summary 1. Redundancy Elimination of Single Points of Failure 2. Reputation Credibility of Track Record 3. Reliability Frequency of Outages 4. Repairability Duration of Outages 5. Recoverability Degree of Fault Tolerance 6. Responsiveness Urgency of Support 7. Robustness Overall Quality of the System

18 Questions?

19 Thank You for Your Participation

Download ppt "High Availability for Information Security Managing The Seven R’s Rich Schiesser Sr. Technical Planner."

Similar presentations

Business Continuity Technology Peter Lesser (212) 692-5617 Peter Lesser (212) 692-5617 Kraft Kennedy & Lesser, Inc. 360 Lexington.

Business Continuity Technology Peter Lesser (212) Peter Lesser (212) Kraft Kennedy & Lesser, Inc. 360 Lexington.
OVERVIEW Virtualization Defined Server Virtualization

OVERVIEW Virtualization Defined Server Virtualization
OVERVIEW TEAM5 SOFTWARE The TEAM5 software manages personnel and test data for personal ESD grounding devices. Test and personnel data may be viewed/reported.

OVERVIEW TEAM5 SOFTWARE The TEAM5 software manages personnel and test data for personal ESD grounding devices. Test and personnel data may be viewed/reported.
Module – 9 Introduction to Business continuity

Module – 9 Introduction to Business continuity
Business Continuity Section 3(chapter 8) BC:ISMDR:BEIT:VIII:chap8:Madhu N PIIT1.

Business Continuity Section 3(chapter 8) BC:ISMDR:BEIT:VIII:chap8:Madhu N PIIT1.
Chapter 13 Managing Computer and Data Resources. Introduction A disciplined, systematic approach is needed for management success Problem Management,

Chapter 13 Managing Computer and Data Resources. Introduction A disciplined, systematic approach is needed for management success Problem Management,
GLOBRIN Business Continuity Workshop TECHNOLOGY & INFORMATION 13 th November 2013 Graham Jack.

GLOBRIN Business Continuity Workshop TECHNOLOGY & INFORMATION 13 th November 2013 Graham Jack.
© 2009 EMC Corporation. All rights reserved. Introduction to Business Continuity Module 3.1.

© 2009 EMC Corporation. All rights reserved. Introduction to Business Continuity Module 3.1.
Chapter 19: Network Management Business Data Communications, 4e.

Chapter 19: Network Management Business Data Communications, 4e.
1 ITC242 – Introduction to Data Communications Week 12 Topic 18 Chapter 19 Network Management.

1 ITC242 – Introduction to Data Communications Week 12 Topic 18 Chapter 19 Network Management.
Date: 03/05/2007 Vendor Management and Metrics. 2 A.T. Kearney X/mm.yyyy/00000 AT Kearney’s IT/Telecom Vendor Facts IT/Telecom service, software and equipment.

Date: 03/05/2007 Vendor Management and Metrics. 2 A.T. Kearney X/mm.yyyy/00000 AT Kearney’s IT/Telecom Vendor Facts IT/Telecom service, software and equipment.
Configuration Management Fault Management Performance Management Accounting Management Security Management.

Configuration Management Fault Management Performance Management Accounting Management Security Management.
Best Practices – Overview

Best Practices – Overview
Copyright © 2012 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill/Irwin CHAPTER FIVE INFRASTRUCTURES: SUSTAINABLE TECHNOLOGIES CHAPTER.

Copyright © 2012 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill/Irwin CHAPTER FIVE INFRASTRUCTURES: SUSTAINABLE TECHNOLOGIES CHAPTER.
EHealth Network Monitoring Network Tool Presentation J. Gaston Senior Network Design Seminar Professor Morteza Anvari 10 December 2004.

EHealth Network Monitoring Network Tool Presentation J. Gaston Senior Network Design Seminar Professor Morteza Anvari 10 December 2004.
Chapter 13 Network Management and Operations. Agenda Objectives Scope Functions Software Security Physical Facility Staffing.

Chapter 13 Network Management and Operations. Agenda Objectives Scope Functions Software Security Physical Facility Staffing.
1 Disaster Recovery Planning & Cross-Border Backup of Data among AMEDA Members Vipin Mahabirsingh Managing Director, CDS Mauritius For Workgroup on Cross-Border.

1 Disaster Recovery Planning & Cross-Border Backup of Data among AMEDA Members Vipin Mahabirsingh Managing Director, CDS Mauritius For Workgroup on Cross-Border.
Lead Black Slide. © 2001 Business & Information Systems 2/e2 Chapter 14 Managing Information Systems and Technology.

Lead Black Slide. © 2001 Business & Information Systems 2/e2 Chapter 14 Managing Information Systems and Technology.
CHAPTER OVERVIEW SECTION 5.1 – MIS INFRASTRUCTURE

CHAPTER OVERVIEW SECTION 5.1 – MIS INFRASTRUCTURE
Business Crisis and Continuity Management (BCCM) Class Session 15 15 - 1.

Business Crisis and Continuity Management (BCCM) Class Session

Similar presentations

Ads by Google