Our Blog

Did you know that data travelling over the Internet is vulnerable? Hackers can gain unauthorized access to a session between two computers by exploiting what is called a session key (a session key is a key that is used to authenticate the connection). Hackers sometimes use source-routed IP packets to hijack information being passed between computers over a network. Alternately, they can use a sniffing program to watch the conversation (man in the middle attack). Therefore, it is not surprising that cloud service providers are concerned—nay, obsessed–with security and security protocols that will ensure that their customer data does not get hacked/diverted/stolen in transit from the client machine to the remote server. There is a scramble to reassure their customers regarding the security of their data backup and recovery services by developing encryption algorithms, certified as FIPS 140-2 compliant.

The Federal Information Processing Standard (FIPS) Publication 140-2 is a computer security standard that was developed by the US Government to accredit cryptographic modules. The guidelines for the development of such cryptographic algorithms have been published under the title “Security Requirements for Cryptographic Modules”.

FIPS 140-2 defines four levels of security numbered sequentially level 1 to level 4. The security levels required for specific types of applications are not prescribed. However, Level 1 offers the lowest level of security and Level 4 the highest. The FIPS 140-2 standard is the information security program for cryptographic programs produced by private software vendors, who would like to have their program certified for use in Government departments and industries, which are highly regulated—such as Financial and health care industries.

Cryptographic modules produced by backup and recovery vendors are tested in third party laboratories that are accredited as “Cryptographic Module Testing Laboratories”. The tests validate the modules against the requirements published in the FIPS 140-2 manual. Eleven areas pertaining to design and implementation are validated and each area is assigned a security level rating. The rating indicates the extent to which the requirements have been met. The overall rating confirms that a minimum number of independent ratings have been received for different areas and all the general requirements have been fulfilled adequately. The ratings received for different areas are listed out in the certificate that is issued to the cloud vendor.

Achieving FIPS 140-2 certification is not easy and hence customers find value in it. FIPS 140-2 certification makes a lot of difference in market positioning for the Cloud backup and recovery vendor. Cloud backup and recovery vendors who have received FIPS 140-2 certification offer advertise the fact as a proof of the robustness of their security algorithms. This assumes greater significance as security and privacy of data remains a major concern in cloud computing. The certification provides “hedging” to cloud vendors and customers who are anxious to find the right cloud backup and recovery vendor before they are ready to entrust their mission-critical information. Moreover, industries that are required to be compliance-heavy find it convenient to use the certification as a means of proving the compliance standards that they have implemented for the enterprise gathered information.

The security of your business data with FIPS140-2 certification is a definite plus and should be an expectation when reviewing recovery solutions.

Yotta280 recommends YottaVault, Powered by Asigra, an avant-garde cloud data backup and recovery solution specifically designed for Mid-sized to Enterprise organizations. Differentiated by its numerous value-added and industry leading features – agentless technology, on-site portable disaster recovery, multiple off site data centers, FIPS 140-2 certification and virtual environments support.

Filed under: Cloud Back Up and Recovery by Yotta280 Monday, February 6th, 2012
No Comments »

Owning and operating a data center is no longer considered a sign of corporate wisdom. Private cloud computing concepts and utility services in the cloud are redirecting established understandings of data privacy and stimulating new modes of thinking. The recent recession (that resulted in budget cuts and rethinks on capital investments), made a business case for the cloud. This in turn promoted a debate around CapEx and OpEx. [Accounting experts call capital intensive expenditure CapEx (Capital Expenses) and revenue intensive expenses OpEx (Operating Expenses)].

A quick look at the history of technology, in context, is revealing. The CapEx vs OpEx debate is not new. The outcome is predetermined. Companies that considered it important to generate their own power during the industrial revolution initially set up their own power plants. However, they quickly gave up the idea of investing in power generating equipment and even let their investments rust, when power was provided as a utility by enterprises that made power their business. They found that it was cheaper to buy power that generate it themselves. It is, therefore, axiomatic that capital intensive data centers will be given up in favor of utility based services in the cloud.

It is therefore, not surprising that much of the discussion around CapEx and OpEx in the cloud is centered on costs. Of course, the bottom line for the business is profit. But, a simplified calculation of CapEx or OpEx costs is not possible.

The mathematics of CapEx is not as basic as taking the average selling price of an IU server and dividing it by 36 months (which is the average expecte life of equipment)! There are associated costs, which cannot be ignored such as power, floor space, storage, IT operations or overhead costs of various kinds that exercise the attention of Accountants. Every cost adds to the overall cost and significantly contributes to the monthly expenses. Futhermore, cost comparisons–that do not engage the attention of accountants–ignore the utilzation ratios of the internal server and the opportunity costs that are lost at different levels of utilization.

Those who pontificate on the OpEx advantages of the cloud and hold forth on the pay as you go options, fail to appreciate it completely. The significance does not lie in merely costs. If OpEx is projected over a long time line, it could prove to be more expensive than CapEx options!

However, there are no long term commitments associated with cloud storage accounts. OpEx is not limted by public markets as it does not tie up capital and is extremely attractive to businesses that have their eye fixed on the profit margins. The potential scalability option itself carries value and enterprises in the cloud may even be willing to pay a premium for that flexibility! End users migrating to the cloud will find they can maintain one or more web applications at a fraction of the normal cost. The hardware utilization ration jumps up to 80%.

Server technology refreshes are a thing of the past. There is a significant dip in the cost of designing or deploying new applications. Operational efficency can be achieved through a single infrastructure practice and overheads can be reduced through effective self service.

The reality is that Cloud technology is distruptive and debates around disruptive concepts are unavoidable.

Yotta280 recommends YottaVault, Powered by Asigra, an avant-garde cloud data backup and recovery solution specifically designed for Mid-sized to Enterprise organizations. Differentiated by its numerous value-added and industry leading features – agentless technology, on-site portable disaster recovery, mulitple off site data centers, FIFPS 140-2 certifcation and virtual environments supports.

Filed under: Cloud Back Up and Recovery by Yotta280 Friday, December 16th, 2011
No Comments »

We encourage everyone, Public Cloud or Private Cloud candidates…when evaluating Cloud Backup and Recovery solutions, to remember the Warren Buffet quote – “Price is what you pay, value is what you get”.  PLEASE NOTE:  All Cloud Backup and Recovery Solutions are not equal!  Cloud Backup and Recovery solutions vary in what they provide, deliver and price.

• How do you actually recover lost data? Can you recover it in the timeframe you need?
• Where does your data go when it “goes offsite”?  Does the data center storing your data adhere to SAS70/SSAE16/SOC?
• Is your data encrypted in flight and at rest?
• Does the encryption meet the most current security requirement for cryptographic modules? (FIPS140-2)
• Can you centrally manage backup and recovery activities for remote offices? From laptops?
• Are your backups monitored 24x7x365 with daily feedback and follow-up?
• Do you have a Service Level Agreement?

If you consider your company data a valuable business asset, don’t gamble with the company future.  And just because you haven’t lost data “yet”, doesn’t mean you don’t need to be prepared with the best data disaster plan available.

If you are considering a Public or Private Cloud Backup and Recovery solution for your company, contact Yotta280 and let us share with you how the value of a true data protection solution can benefit your company.  www.yotta280.com

Filed under: Cloud Back Up and Recovery by Yotta280 Monday, December 5th, 2011
No Comments »

Technological advances have made it simple to transition from tape backup to cloud backup and recovery solutions. But, the task of migration requires thoughtful consideration.

Not all data needs to be migrated from tape to the cloud. Data lifetime requirements have an impact on what kind of data needs to be migrated from tape to the cloud. Short life term data may or may not be migrated to the cloud. The data can be retained on tapes and the server running the proprietary backup software may be maintained by the customer till all the lifetimes of the data have expired. Thereafter, the server and the software can be retired. Data with long term data life time requirements will have to be migrated to the cloud to comply with present legal requirements for that data.

Tape technology itself is changing. The newer technologies/software is not made backward compatible and much of the data copied onto onto tapes in the past become irrecoverable. Further, the tape owners and cloud vendors may not have access to the software that can read the data. So, the data will have to be read at the customer location using the appropriate proprietary software that was used to write the data and the output copied to a temporary location before it can be transferred to the cloud vendor’s storage.

One of the significant advantages of migrating tape to cloud is the potential optimization and de-duplication of data. Incremental backup, differential backup and a host of other kinds of backup technology can be used to ensure that backup happens continuously or within a scheduled time frame efficiently and effectively.

Backup failures can be tracked and corrected instantly with alerts being generated for every success or failure of a backup. Replication of data or mirroring of data is almost automatic in the cloud, but not so in the tape. Disk to disk replication can be automated and data can be replicated on to one or more geographically dispersed servers to ensure high availability of enterprise information. There are no replication costs, transportation costs or extra storage costs involved in the process! Further, the cloud is infinitely scalable and globally accessible unlike tape backups.

Simple web interfaces are available over the Internet and provide secure access to the information stored on remote servers in the cloud from any part of the globe 24 x 7. Data security is ensured with user access protocols and encryption of information in transition and storage.

Migrating from tape to cloud is a sign of maturity of the SMB and the enterprise. IT needs to follow technology and the cloud, unlike the tape, makes it easier to do so.

Yotta280 recommends YottaVault, an avant-garde cloud data backup and recovery solution specifically designed for Mid-sized to Enterprise organizations. Differentiated by its numerous value-added and industry leading features – agentless technology, on-site portable local storage, multiple off site data centers, FIPS 140-2 certification and virtual environments support.

About the Author: Terry Fields, CEO of Yotta280, an Asigra cloud backup and recovery partner, has over 25 years of experience in the information management, disaster recovery, business continuity and data protection industry. Yotta280 has quickly become much more than a traditional online backup provider, allowing its customers to experience the most complete data protection and recovery capability available.

General Tags: online backup services, CEO interviews, online backup companies, online backup news, data security, cloud computing, online file storage, online backup, compare online backups, data storage, SaaS, software as a service, backing up online, online file backup, top rated online backups, online data backup, online backup providers directory, online backup reviews

Filed under: Cloud Back Up and Recovery by Yotta280 Thursday, December 1st, 2011
No Comments »

This is a Press Release edited by StorageNewsletter.com on Fri, October 14th, 2011

Mobile device protection, cloud-based virtual DR and user-selected granular recovery Asigra, Inc. is joining two cloud service providers at the 2011 Storage Networking World conference in Orlando to showcase next generation cloud backup.

Highlights at this year’s event will include live demonstrations of mobile device backup and user-selected granular recovery in the SNIA Hands-On Lab. Case studies on cloud-based Virtual Disaster Recovery (VDR) will be featured at Asigra’s booth in the SNIA Cloud Pavilion.

At this year’s SNIA Hands-on-Lab at SNW, IT professionals will perform cloud backup by remotely accessing production data on servers residing in Toronto, Canada using their laptops at SNW in Orlando. The production data will be backed up to the Yotta280 storage cloud located in Jacksonville, FL. Lab participants will then delete information to simulate a loss event and perform user-selected granular recovery from the storage vault in Jacksonville back to the primary servers in Toronto to demonstrate performance recovery across geographies. The demonstration will showcase the simplicity, flexibility and speed of Asigra’s cloud backup and recovery solution.

Filed under: News & Events by Yotta280 Thursday, December 1st, 2011
No Comments »

September 19, 2011: Yotta280 Inc., of Jacksonville, Florida a leading cloud backup and recovery service provider announces the first enterprise-class cloud backup platform to protect the entire digital footprint (storage, servers, desktops, and laptops on the enterprise LAN as well as remote tablets, smartphones, and laptops). YottaVault, Powered by Asigra, incorporates tablets and smartphones within the existing end to end data protection service. For more information, you can contact Yotta280 at 1-877-449-6882 or go to www.yotta280.com.

Filed under: News & Events by Yotta280 Thursday, December 1st, 2011
No Comments »