Data Protection And Information Lifecycle Management

Paperback | September 23, 2005

byTom Petrocelli

not yet rated|write a review

The Definitive Guide to Protecting Enterprise Data

Your enterprise data is your most critical asset. If it's compromised, your business can be destroyed. Don't let that happen-leverage today's state-of-the-art strategies, best practices, and technologies and protect your critical information. In Data Protection and Information Lifecycle Management , leading industry consultant Tom Petrocelli presents a systematic, coherent approach to planning and implementing cost-effective data protection.

This book introduces Information Lifecycle Management (ILM), a powerful new strategy for managing enterprise information based on its value over time. The author explains emerging techniques for protecting storage systems and storage networks, and for integrating storage security into your overall security plan. He also presents new technical advances and opportunities to improve existing data-protection processes, including backup/restore, replication, and remote copy.

Coverage includes

  • A complete, unique framework for considering and planning data protection
  • Understanding storage technology from the standpoint of data protection
  • Architecting more effective backup/restore solutions
  • Using remote copy and replication to keep data synchronized and support immediate failover to hot sites
  • Leveraging core computer security concepts and strategies to protect your most critical data
  • Securing your entire storage infrastructure, not just servers
  • Using policy-driven data protection and Data Lifecycle Management (DLM) to improve security and reduce cost
  • Using ILM to identify your highest-value data and choose the right ways to protect it

Data Protection and Information Lifecycle Management is an indispensable resource for IT executives who must plan and implement strategies for data protection; administrators who must protect data on a day-to-day basis; and product managers, consultants, and marketers responsible for crafting superior data-security solutions.

Pricing and Purchase Info


In stock online
Ships free on orders over $25

From the Publisher

The Definitive Guide to Protecting Enterprise Data Your enterprise data is your most critical asset. If it's compromised, your business can be destroyed. Don't let that happen-leverage today's state-of-the-art strategies, best practices, and technologies and protect your critical information. In Data Protection and Infor...

From the Jacket

The Definitive Guide to Protecting Enterprise Data Your enterprise data is your most critical asset. If it's compromised, your business can be destroyed. Don't let that happen-leverage today's state-of-the-art strategies, best practices, and technologies and protect your critical information. In Data Protection and Information Life...

Tom Petrocelli is president and chief analyst at Technology Alignment Partners, Inc., and a recognized expert in data protection issues, especially those involving data movement and security. He has published articles in nearly all of the major data storage industry publications and speaks frequently at industry conferences and events...
Format:PaperbackDimensions:288 pages, 9.1 × 6.9 × 0.8 inPublished:September 23, 2005Publisher:Pearson EducationLanguage:English

The following ISBNs are associated with this title:

ISBN - 10:0131927574

ISBN - 13:9780131927575


Extra Content

Read from the Book

Data protection is like buying insurance or executing a will: It's something we all know we should do but often put off. We are forced to think about all the unpleasant scenarios that force us to do it in the first place. The process can be complex, even daunting to most people. We forge ahead because we know it's important. Ultimately, we sleep better knowing that we have a safe haven in the face of disaster. New storage technology, such as storage networks, has allowed organizations to collect and store massive amounts of information about customers, suppliers, and operations. Along with this ballooning of stored data has come a new threat to the organization: loss of key information assets. IT managers now realize that these enormous storehouses of information are often left inadequately protected. At the same time, the ramifications of data loss are increasing. Shareholder lawsuits, government regulation, and extreme financial losses are driving changes in the way data is stored and managed. The techniques, methods, and technology available to the IT professional have expanded greatly. In the past, backup to tape was pretty much all that was available. Disk-to-disk and disk-to-disk-to-tape systems have expanded the options for backup. Remote copy and replication have enabled organizations to constantly move data off-site, far from harm. As more storage systems are networked, storage security is becoming an important tool for protecting data from harm. It's not only technology that now sits in the data protection bag of tricks. Strategic methodologies such as Data Lifecycle Management and Information Lifecycle Management add new dimensions to the data protection landscape. Both are policy-based processes for managing data and information according to a lifecycle. While data lifecycle management deals with data on a time-based cycle, information lifecycle management is used to manage information assets in an event-driven fashion. Both promise to allow for better data protection at a lower cost. Data and information are now recognized as core assets that need to be valued and secured like other assets. This book is a guide to protecting data assets in the enterprise. It presents the technology, techniques, strategies, and best practices used to safeguard data. It may even help you sleep better at night. Who Is This Book For? This book covers topics useful to many people. The primary audience is the IT professional, especially CIOs, managers, and system architects. System administrators, storage administrators, network administrators, database administrators, systems analysts, and business analysts who are involved in storing and protecting critical business data will also find this book to be a vital resource. Product managers, consultants, technical marketing specialists, and technicians, as well as engineers at value-added resellers, OEMs, ISVs, and service providers, will also be interested in this book. It provides general knowledge about emerging areas of interest to their customers. Marketing communications specialists, PR agents, venture capitalists, analysts, editors, trainers, professors, and students will also find value in this book. It provides these professionals with a general overview of data protection technology and practice in plain language. How This Book Is Arranged This book takes a progressive approach to understanding data protection. Starting with the most basic topics, each chapter builds on the previous ones. Some chapters are overviews for those who are not well acquainted with important base technologies and practices. Others are more involved, presenting the major ideas, techniques, processes, and technology associated with data protection. Those chapters also end with a case study about real IT professionals and the techniques they have used to solve data protection problems. Finally, the book ends with several appendixes, a bibliography, and a glossary, all designed to enhance your understanding of other parts of the book. The chapters of Data Protection and Information Lifecycle Management are: Chapter 1: Introduction to Data Protection. This chapter lays the foundation for understanding data protection, introducing the major drivers and techniques behind data protection. It discusses the reasons that organizations spend time and money on data protection and presents a framework for understanding the ensuing topics. Chapter 2: An Overview of Storage Technology. Chapter 2 provides the technological underpinnings of most data protection. Written for those who may not have a deep knowledge of storage technology, it contains something for everyone. The chapter discusses the basics of data storage necessary to understanding data protection. Furthermore, the chapter presents some of the new technology and practices that impact data protection strategies today. Chapter 3: Backup and Restore. The classic data protection strategy just keeps getting better. Chapter 3 outlines the most common techniques, such as tape backup, as well as the more recent additions to the backup bag of tricks. The emphasis is on architecture and practices. Chapter 4: Remote Copy and Replication: Moving Data to a Safe Location. Chapter 4 kicks it up a notch, exploring remote copy and replication--ways of constantly duplicating data in a network. With data synchronized constantly, hot sites can be used that provide immediate failover in case of disaster. Chapter 5: Basic Security Concepts. This chapter provides the necessary underpinnings for the next chapter, which deals with storage security. It is a quick reference to basic computer security concepts and strategies. Chapter 6: Storage System Security. Chapter 6 describes a new area of security: storage security. Until recently, the security of the storage system was ignored, since it was safe behind the server security screen. That's no longer true, and data protection demands a new focus on securing the storage infrastructure. Chapter 7: Policy-Based Data Protection. This chapter outlines the emerging area of policy-driven data protection, especially Data Lifecycle Management (DLM). These techniques are some of the most powerful in the data protection toolbox. Chapter 8: Information Lifecycle Management. This chapter explores how Information Lifecycle Management (ILM) can be used to enhance data protection. The book takes a detailed look at ILM and shows how it can be used to further information assurance and data protection. Appendix A: XML Schemas and Document Type Definitions for Policy Statements. The XML schemas and DTDs for the policy examples in Chapters 7 and 8 are listed here, with some additional thoughts on how XML can be used to describe DLM and ILM policies. Appendix B: Resources. This appendix lists other resources that are helpful to those entrusted with data protection plans: industry groups, conferences, books, and web sites. They provide additional insights into the technology and regulations that are important to data protection. Appendix C: Acronyms. This appendix lists the acronyms used in the book. Data Protection and Information Lifecycle Management is chock full of acronyms. Acronyms are important shortcuts that save us from having to say the same thing over and over again, but they work only if you know what they are. Glossary. The glossary lists the major terms used throughout the book, along with their definitions. Bibliography. The bibliography lists the books that provided references for the author while writing this book. What You Will Take Away from This Book After reading this book, you will have a better understanding of how to protect critical corporate data. The techniques, practices, and technology are a mixture of tried and true and the brand new. There are some new takes on older methods, as well as new ideas for old problems. In the end, you will have not only new information to manage, but also better ways of doing it.

Table of Contents


About the Author.


    Who Is This Book For?

    How This Book Is Arranged.

    What You Will Take Away from This Book.

1. Introduction to Data Protection.

    What Does Data Protection Mean?

    A Model for Information, Data, and Storage.

    Why Is Data Protection Important to the Enterprise?

    Data Loss and Business Risk.

    Connectivity: The Risk Multiplier.

    Business Continuity: The Importance of Data Availability to Business Operations.

    The Changing Face of Data Protection.

    Key Points.

2. An Overview of Storage Technology.

    A Quick History of Data Storage.

    Storage I/O Basics.

    The I/O Stack.

    Direct Attach Storage.

    Network Attached Storage (NAS).

    Storage Area Networks.

    Extending SANs over MAN and WAN.

    Key Points.

3. Backup and Restore.

    The First Line of Defense.

    Designing Storage Systems for Backup and Recovery.

    Recovering from Disaster: Restoring Data.

    Things That Go Wrong with Restore Operations.

    Tape Backup.

    Disk-to-Disk Backup.

    Disk-to-Disk to Tape.

    Backup and Restore Practices.

    Application-Level Backup and Recovery.

    Case Study: Bingham McCutchen.

    Key Points.

4. Remote Copy and Replication: Moving Data to a Safe Location.

    How Remote Copy and Replication Are Different from Backup.

    Remote Copy.

    Design Considerations for Remote Copy.


    Case Study: PdMain.

    Key Points.

5. Basic Security Concepts.

    Least Privilege.

    Defense in Depth.

    Diversity of Defense.


    Typical Attacks.

    Key Points.

6. Storage System Security.

    The Role of Storage Security in Enterprise Data Protection.

    DAS Security.

    SAN Security.

    Internal and External Vectors.


    Security Practices for Storage.

    Secure Fibre Channel Protocols: FC-SP and FCAP.

    Case Study: Transend Services.

    Key Points.

7. Policy-Based Data Protection.

    Difficulties with Data Protection Strategies.

    Data Lifecycle Management (DLM).

    Key Points.

8. Information Lifecycle Management.

    Information Assurance and Data Protection.

    What Is Information Lifecycle Management?

    Unstructured and Structured Information.

    The Importance of Context.

    Determining and Managing Information Context.

    Location and the Information Perimeter.

    The Information Lifecycle.

    An ILM Schema.

    Matching Information Value to Protection Options.

    The Changing Value of Information.

    Regulatory Concerns.

    Protecting Information Using ILM Policies.

    Controlling Information Protection Costs.

    Automating ILM.

    Case Study: MidAmerica Bank.

    Key Points.

Appendix A: XML Schemas and Document Type Definitions for Policy Statements.

Appendix B: Resources.

    Books Worth Reading.

    Organizations and Conferences.

    Web Sites Worth Visiting.

    Government Documents and Resources.

Appendix C: Acronyms.