Storage Short Take #11

Well, it’s been a while. May and June was absolutely packed with webinars, presentations, and travel, so I’ve been quite remiss in my release schedule. Nevertheless, here’s some storage short take information for you. Bear with me as I’m trying to catch up from the last one, which was 2 months ago, so some of this may not be news.

Don’t forget, if you have information that you want to know more about, don’t forget to leave a comment below.

Storage Media

Chinese memory maker startup Yangtze River claims that they’re only 2 years behind Samsung in developing 3D NAND technology, announcing they’ll be producing 64-layer 3D NAND this year.

The U.S. Army has funded research into materials that could lead to interesting data storage techniques.

You are probably going to be hearing more and more about Key-Value storage in the next year or so. If you have the cycles now to introduce yourself to the concept, it’s probably a good idea. See below for some information pertaining to KV from the industry bodies. In the meantime, though, you can read about an example KV store called Crail-KV, which is a native KV-SSD using NVMe-oF (published by IEEE).

Technobezz has published their choices for the best external drives in 2019. Not to be outdone, Techzimo released their Top 14 choices as well. I have to violently disagree on their choice to add in the Western Digital MyBook Desktop External Hard drive, however. I’ve had 4 of these DOA in a row. It’s so bad I’m actually not going to buy any more WD kit for a while.

78 Million HDDs shipped worldwide in 2Q19, “up marginally.”

Finally! Samba kills the unsafe SMB1 protocol by default. It’s about time.

Back to Table of Contents

Storage Companies in the News

First and foremost, major congratulations to Elastifile for their announcement of being acquired by Google.  I have always been an enormous fan of Elastifile, and think that the synergy with Google’s Cloud Platform is a no-brainer. This is right on the heels of their announced API for Google Cloud File Service, along with SMB 3.1 support, so the other shoe has just dropped.

Speaking of acquisitions, DDN has completed its acquisition of Nexenta.

WekaIO raised $31.7 million in Series C funding. You may recall that WekaIO is a file-storage software vendor, focusing on parallelism and high-performance. Speaking of which, they recently announced Supermicro as an authorized OEM partner.

On the software side, in May Synology released DSM 6.2.2 with improved system optimization and new resolution features. I haven’t had a chance to play with this yet, but as my DS216+ has been acting up a lot more recently, I think I’m going to have to set aside some time to pay attention to this.

Product Managers, get out your justification slide ware. KBV Research thinks that the Global Next Generation Data Storage Market will reach $106.3 Billion by 2024.

Huawei and CNEX accuse each other of stealing secrets from each other. [Disclosure: I know Ronnie pretty well, and I’m planting a flag on his side on this one, though I have absolutely no dog in this hunt or know anything specific about this case.] Oh wait, this is old news. Late last month, a jury unanimously found Huawei misappropriated CNEX’s trade secrets.

Speaking of Huawei, they’ve announced their Cloud storage strategy: called All-Flash. They say it will “help expand the Chinese high-tech company’s cloud storage portfolio for enterprise.” Up next, Captain Obvious tells us that water is wet.

And, speaking of CNEX, Mellanox Capital has made additional investments in bout CNEX and Pliops. Pliops is a developer of KV storage (remember KV?). There is a lot of Synergy between the three companies from a technological perspective (Pliops has the storage technology, CNEX has the controller technology, and Mellanox has the transport technology). We’re talking a true killer combination if the stars align there. Note this is an investment, not an acquisition, though.

Kaminario has announced a couple of new Storage-As-A-Service (STaaS) licensing schemes to augment it’s procurement model. Effectively, they’re taking a “cloud first” adoption model and then attempting to establish permanence in customer data centers. It’s an interesting strategy, to be sure.

IDC has named Lightbits Labs, Excelero, and Pavilion Data as top innovators of storage for NVMe/TCP solutions. I would not argue with that conclusion.

A German company named Starline has announced a Ceph, iSCSI, and NVMe scale-out SAN solution, called PetaSAN.  Honestly, I can’t think of a more convoluted combination of protocols in a storage appliance. I’ve not done a proper technology evaluation, though, so I can’t make any claims to its efficacy at all. Let’s just say that I’m hyper-skeptical.

Scale Computing has announced a collaboration with Parallels, in an effort to simplify VDI. However, technical details appear to be difficult to come by for right now.

HPE made several announcements at Discover in late June. Rather than itemize them all, you can read about it here and here. TL; DR, announcing Primera (a new server/storage platform), enhancements to Simplicity, and a new Nimble dHCI storage platform. You can also check out Calvin Zito’s recap.

NVMe over Fabrics startup Pavilion Data Systems announced that they are part of the IBM Global Solutions Directory. Good for them. They’ve been playing the “slow and steady wins the race” game in the NVMe-oF space, and it looks like it’s paying off for them. Cool.

Last but not least, Broadcom is in “advanced” talks to acquire Symantec for more than $15B. Now isn’t that interesting.

Back to Table of Contents

Industry Associations and Standards

FCIA News:

Why Standards Matter. Check out the blog series on standards by my FCIA colleague, Barry Maskas “How Fibre Channel Standards are Made, Part 1: What are Standards?” and “How Fibre Channel Standards Are Made, Bonus I: What Are ATA Standards (T13)?

SNIA News:

SNIA has been busy working on technical specification and recently announced two:

  • The Key Value Storage API Specification has been published as a SNIA Technical Position available to the public. It defines an application programming interface for Key Value storage devices, allowing upper level applications to take advantage of the Key Value store method independent of what infrastructure is being used.
  • A new version of the SNIA Linear Tape File System (LTFS) LTFS Format Specification with improved capacity performance has just been approved. This ISO standard provides an industry standard format for recording data on modern magnetic tape. LTFS is a file system that allows stored files to be accessed in a similar fashion to those on disk or removable flash drives.

In case you missed it, SNIA also released a technical White Paper: NVM PM (Persistent Memory) Remote Access for High Availability. Useful if you want to learn more about the design characteristics of using high-speed networks as a transport for persistent memory.

NVMe News:

NVMe has ratified version 1.4 of the base specification. A lot of this will be discussed in great detail at this year’s Flash Memory Summit, but for now you can get a quick-and-dirty glance at the changes in the 1.4 revision.

Back to Table of Contents

Webinars and Conferences

Fibre Chanel Zoning Basics. The FCIA has been doing a lot of advanced topics lately, so we went back to basics with Fibre Channel Zoning in the June 27th BrighTalk webinar. Just because it’s the fundamentals, though, don’t confuse this with being just for beginners. We also discussed some of the latest advancements in zoning and things you can look out for in the future to make your life easier when administering FC storage.

Fibre Channel and Security. Speaking of Fibre Channel, the FCIA is hosting a live webcast on “Fibre Channel and Security” on August 27th. Register here to join me with my expert FCIA colleagues, Landon Noll and Nishant Lodha for a deep dive into the security aspects of Fibre Channel.

The SNIA Cloud Storage Initiative is hosting a live webcast next week on July 17th, “Kubernetes in the Cloud (Part 2)”.  If you guessed from the title that there was a “Part 1!” You’re right and you can view that on-demand now. It covered the high level aspects of Kubernetes and will get you up to speed for the July 17thpresentation.

SNIA has also announced the Storage Developer Conference (SDC) 2019 presenters. Now, in theory, I’m supposed to be presenting on NVMe standards, but I don’t see my picture up there. So… hmmmm.

NVM Express is back at the Flash Memory Summit as an organizational sponsor and host. There are two full days of NVMe goodness to explore – from understanding what’s new all the way to discussions of use cases.

Flash Memory Summit is coming up soon, and I’ll be moderating a couple of panels, and participating in another one on the Future of NVMe and NVMe-oF Storage Industry Trends.

Back to Table of Contents

Synology News

Apparently Gmail API changes have affected Synology’s DSM integration. If you use DSM to send notifications via Gmail, you’ll have to update to DSM 6.2.2-24922 Update 2.

From Synology:

However, if any of the following conditions applies, please refer to this article which will guide you through the manual configuration.

  1. If you wish to skip this update or your Synology product model is not eligible to update to DSM 6.2.

  2. If you’re using ssmtp binary to send emails, such as running user-defined scripts in Task Scheduler.

  3. If you’re building a website with Web Station and sending emails using PHP, including sending emails from a third-party website package, such as WordPress, MantisBT, etc.

Security Announcements:

Please see earlier Storage Short Takes for additional Synology advisories (#10#9, #8, #7#6, #5, #4). Some of those vulnerabilities are still active.

Critical Severity

Affected: Linux Kernel

Status: Ongoing

Solution: None yet. Watch this space or Synology’s direct security announcements.

Details:

CVE-2019-11477, CVE-2019-11478 and CVE-2019-11479 allow remote attackers to conduct denial-of-service attacks via a susceptible version of DiskStation Manager (DSM) or Synology Router Manager (SRM).

References

 

Affected: Virtual Machine Manager

Status: Resolved.

Solution:

Virtual Machine Manager 2.4 Upgrade to 2.4.1-9259 or above.
Virtual Machine Manager 2.3 Upgrade to 2.3.5-9030 or above.

Details:

A vulnerability allows remote attackers to bypass security constraints via a susceptible version of Virtual Machine Manager.

 

Important Severity

Affected: Samba

Status: Ongoing

Solution: None yet.

Details:

CVE-2018-16860 allows man-in-the-middle attackers to bypass security constraints via a susceptible version of Directory Server for Windows Domain.

References

 

Moderate Severity

Affected: Photo Station.

Status: Resolved.

Solution:

Photo Station 6.8 Upgrade to 6.8.12-3496 or above.
Photo Station 6.3 Upgrade to 6.3-2978 or above.

Detail:

These vulnerabilities allow remote attackers to obtain sensitive information or modify system settings via a susceptible version of Photo Station.

Back to Table of Contents

Bonus Round

Anyone who has been using Zoom on a Mac needs to take a closer look at just what information is being used and sent out. TL, DR: Zoom installs a web server on your mac that bypasses security settings. The Register has an excellent breakdown.

Back to Table of Contents

Special Thanks to Diane Marsili and Sophia Meyer for contributions to this article.

Follow, sponsor, or see more at:
Advertisements

No Comments

Leave a Reply

%d bloggers like this: