SlideShare ist ein Scribd-Unternehmen logo

Scaling Security Workflows in Government Agencies

Als PPTX, PDF herunterladen
Avere Systems
Avere Systems

For most federal agencies dealing with increased security threats, limiting machine-data collection is not an option. But faced with finite IT budgets, few agencies can continue to absorb the high costs of scaling high-end network attached storage (NAS) or moving to and expanding a block-based storage footprint. During this webcast, you’ll learn about more cost-effective solutions to support large-scale machine-data ingestion and fast data access for security analytics. You’ll learn about: - The common challenges organizations face when scaling security workflows - Why a high-performance cache works to solve these issues - How to integrate cloud into processing and storage for additional scalability and efficiencies

Regierungs- und gemeinnützige Organisationen
1 von 34
Scaling Security Workflows in Government Agencies September 28, 2017 | 11:00 AM ET WEBINAR
Housekeeping 2 • Recording • Today’s Slides • Attachments • Questions • Feedback
Our Presenters 3 Keith Ober Systems Engineer Avere Systems Bernie Behn Principal Product Engineer Avere Systems
What’s the problem? Data, Data Everywhere
Security Analysis Workflow
Security Analysis Workflow • Acquire and Aggregate Inputs • Normalize Data • Archive Raw / Archive Normalized Data • Analyze for Patterns • Alert or Remediate
Types of Inputs • Network Equipment: routers, switches, firewalls, VPN appliances, etc. • IT: physical servers, VM infrastructure, virtual machines, directory services, end user desktops/laptops • Application Layer: log files, access logs for applications, web servers • Miscellaneous: sensor data
Typical Ingest Workflow Ingest Node(s) Normalize/Filter Storage Analyze data Report/Alert Logs, streamed to Ingest Nodes
Typical Ingest Workflow Ingest Node(s) Normalize/Filter Storage I/O at scale can slow down storage, backing up entire workflow
Typical Ingest Workflow Ingest Node(s) Normalize/Filter Storage Analyze data Report/Alert If analysis is not co-located, latency can impede analysis
Typical Analysis Workflow Ingest Node(s) Normalize/Filter Storage Analyze data Report/Alert If analysis is not co-located, latency can impede analysis
The meta-problem: Log File Ingest and Processing 12 All router1 log files from the beginning of time...well, from when we started gathering them... All log files from firewall 1 All log files from server 1Time and Volume NET: A lot of historical data over time, applying pressure both in terms of storage and processing
Log Ingest Writ Large TheTrue Scale of Enterprise Ingest!
Five Big Challenges Let’s Break It Down.
5 challenges when engineering security workflows 15 1. Ingest Latency and Throughput 2. Vendor Lock-In 3. Life Cycle Management 4. Data Availability and Redundancy 5. Cloud Integration
Challenge 1: Ingest Latency and Throughput Ingest Node Normalize/Filter Storage I/O at scale can slow down storage, backing up entire workflow
Ingest Latency Scales Too Storage The scale forces multiple storage sites, and on some products requires a replication mechanism, introducing more cost, overhead and latency. Ingest Node(s) Normalize/Filter Storage Storage Storage Storage Volume of inputs will drive the number of ingest nodes required. IOT devices are increasing the amount of log data being generated and ingested.
Challenge 2: Vendor Lock-In Storage Ingest Node(s) Normalize/Filter Storage Storage Storage Storage As solution scales: 1. Additional demand for storage increases costs, and lowers performance. 2. Deficiencies in current storage solution amplifies as deployment grows, longer upgrade outages. 3. Vendors often limit interoperability with other products when it comes to replication and tiering.
Vendor Lock-In Ability to transfer data to new solution is difficult: • Business Continuity -- How do you stop ingesting and processing logs? • Interoperability -- How do you ensure that your new/proposed storage solution will work well in a high-performance environment : Ingest performance : Read performance : Scale
Challenge 3: Data Lifecycle Management Storage Ingest Node(s) Normalize/Filter Storage Storage StorageMore Expensive Storage Value of the data 1. Lowering the cost to store means you can store more and derive greater value. 2. New analytic methods/tools bring a fresh round of analysis and burst workloads. 3. How can we begin to build AI based workloads? Cheaper Storage Warm Data Cold Data
Lifecycle Management Storage Performance • Ingest & analysis requires higher performance storage = More expensive storage • Over time simply too much data to store in performance tier • Deletion of older data possible?
Challenge 4: Data Availability and Redundancy Ingest Node Normalize/Filter Storage Ingest Node Normalize/Filter Ingest Node Normalize/Filter Storage Storage Reporting and Processing Node Reporting and Processing Node Reporting and Processing Node
Data Availability and Redundancy • Performance at scale requires distributing the reporting/analysis • Geographical location of ingest may also be distributed • Critical data: can’t lose it so avoid single point of failure • Large data sets with streaming data are extremely difficult to backup with traditional methods and are cost prohibitive
Challenge 5: Cloud Integration: Storage Storage Ingest Node(s) Normalize/Filter Storage Storage Storage Storage 1. How to start archiving data to Cloud Storage, in order to lower cost? 2. How can businesses leverage cloud-based AI workloads against the same data they have today?
Cloud Integration: Storage Cloud Storage Pros • Cloud Storage can be very inexpensive • Reduces the need to own and maintain additional IT assets • Public clouds have built-in redundancy Cloud Storage Cons • Cloud storage is eventually consistent...a query immediately after a write may not succeed • Lowest-cost storage is object, and requires S3-compliant application access
And, so, what do we do? Cache It If You Can
How can Avere address those challenges? 27 Challenges Avere Solution Ingest Latency and Throughput Avere write caching Avere FXT NVRAM 10GB+ Bandwidth Vendor Lock-In Global Namespace Flash Move & Mirror Life Cycle Management Data Availability and Redundancy HA, Clustering Flash Move & Mirror Cloud Integration Avere vFXT compute-based appliance Avere FlashCloud for AWS S3 and GCS
Speed Ingest via write-behind caching • Gather writes (ack’ing clients immediately) and flushing in parallel • Hardware: NVRAM for write protection and caching • Clustered caching solution distributes writes across multiple nodes Accelerate read performance with distributed, read-ahead caching • Read-ahead a request (read a bit more than what was requested) • Cache requests for other readers (typical in analytic workloads) • Writes cached as written, speeding analysis workloads The Power of High-Performance Caching
Caching Basic Architecture Ingest Node Normalize/Filter Storage ● Ingest nodes write to NFS mount points distributed across a caching layer Ingest Node Normalize/Filter Ingest Node Normalize/Filter ● Writes are flushed to storage over time, smoothing the ingest ● Writes are protected within the cluster via HA mirror Reporting / Analysis Node(s) ● Reporting / Analysis nodes access data via the cluster. ● Reads are cached, eventually aged ● Written data in the near term is cached and available Avere FXT Cluster
Data Placement Ingest Node Normalize/Filter Storage Ingest Node Normalize/Filter Ingest Node Normalize/Filter Avere can Mirror data to cloud storage for longer- term archiving Data is accessible through the cluster, as though it were on the primary storage Reporting Analysis Node(s)
Does this Really Work? From the Field Use Case
Avere Security Workflow FXT Cluster DMZ Network Central Control Container based applications to Normalize data DATA Syslog/NetFlow/… DATA Streaming data to Avere with no direct access Core Filers Splunk Configure Splunk to eat data from separate vServer (isolating traffic) Splunk Data Consumers Web access to visualize data ingested and analyzed by Splunk Mirror/Migrate/Cloud Core Filers
33 SC17 November 12-17, 2017 Denver, Colorado AIRI 2017 October 1-4, 2017 Washington DC AWS re:Invent Nov. 27- Dec. 1, 2017 Las Vegas, Nevada
Contact Us! 34 Keith Ober Systems Engineer Avere Systems kober@averesystems.com Bernie Behn Principal Product Engineer Avere Systems bbehn@averesystems.com AvereSystems.com 888.88 AVERE askavere@averesystems.com Twitter: @AvereSystems

Empfohlen

First Cloud based enterprise Backup & Recovery in India
First Cloud based enterprise Backup & Recovery in IndiaFirst Cloud based enterprise Backup & Recovery in India
First Cloud based enterprise Backup & Recovery in India
Blaze Arizanov
 
How To Build A Stable And Robust Base For a “Cloud”
How To Build A Stable And Robust Base For a “Cloud”How To Build A Stable And Robust Base For a “Cloud”
How To Build A Stable And Robust Base For a “Cloud”
Hardway Hou
 
Ibm spectrum scale fundamentals workshop for americas part 6 spectrumscale el...
Ibm spectrum scale fundamentals workshop for americas part 6 spectrumscale el...Ibm spectrum scale fundamentals workshop for americas part 6 spectrumscale el...
Ibm spectrum scale fundamentals workshop for americas part 6 spectrumscale el...
xKinAnx
 
Webinar: How Snapshots CAN be Backups
Webinar: How Snapshots CAN be BackupsWebinar: How Snapshots CAN be Backups
Webinar: How Snapshots CAN be Backups
Storage Switzerland
 
[NetApp] Simplified HA:DR Using Storage Solutions
[NetApp] Simplified HA:DR Using Storage Solutions[NetApp] Simplified HA:DR Using Storage Solutions
[NetApp] Simplified HA:DR Using Storage Solutions
Perforce
 
Engage for success ibm spectrum accelerate 2
Engage for success ibm spectrum accelerate 2Engage for success ibm spectrum accelerate 2
Engage for success ibm spectrum accelerate 2
xKinAnx
 
IBM Spectrum Scale Slidecast
IBM Spectrum Scale SlidecastIBM Spectrum Scale Slidecast
IBM Spectrum Scale Slidecast
inside-BigData.com
 
Learning UML with Enterprise Architect
Learning UML with Enterprise ArchitectLearning UML with Enterprise Architect
Learning UML with Enterprise Architect
Gerald R. Gray
 

Empfohlen

First Cloud based enterprise Backup & Recovery in India
First Cloud based enterprise Backup & Recovery in IndiaFirst Cloud based enterprise Backup & Recovery in India
First Cloud based enterprise Backup & Recovery in India
Blaze Arizanov
 
How To Build A Stable And Robust Base For a “Cloud”
How To Build A Stable And Robust Base For a “Cloud”How To Build A Stable And Robust Base For a “Cloud”
How To Build A Stable And Robust Base For a “Cloud”
Hardway Hou
 
Ibm spectrum scale fundamentals workshop for americas part 6 spectrumscale el...
Ibm spectrum scale fundamentals workshop for americas part 6 spectrumscale el...Ibm spectrum scale fundamentals workshop for americas part 6 spectrumscale el...
Ibm spectrum scale fundamentals workshop for americas part 6 spectrumscale el...
xKinAnx
 
Webinar: How Snapshots CAN be Backups
Webinar: How Snapshots CAN be BackupsWebinar: How Snapshots CAN be Backups
Webinar: How Snapshots CAN be Backups
Storage Switzerland
 
[NetApp] Simplified HA:DR Using Storage Solutions
[NetApp] Simplified HA:DR Using Storage Solutions[NetApp] Simplified HA:DR Using Storage Solutions
[NetApp] Simplified HA:DR Using Storage Solutions
Perforce
 
Engage for success ibm spectrum accelerate 2
Engage for success ibm spectrum accelerate 2Engage for success ibm spectrum accelerate 2
Engage for success ibm spectrum accelerate 2
xKinAnx
 
IBM Spectrum Scale Slidecast
IBM Spectrum Scale SlidecastIBM Spectrum Scale Slidecast
IBM Spectrum Scale Slidecast
inside-BigData.com
 
Learning UML with Enterprise Architect
Learning UML with Enterprise ArchitectLearning UML with Enterprise Architect
Learning UML with Enterprise Architect
Gerald R. Gray
 
IMCSummit 2015 - Day 2 General Session - Flash-Extending In-Memory Computing
IMCSummit 2015 - Day 2 General Session - Flash-Extending In-Memory ComputingIMCSummit 2015 - Day 2 General Session - Flash-Extending In-Memory Computing
IMCSummit 2015 - Day 2 General Session - Flash-Extending In-Memory Computing
In-Memory Computing Summit
 
Microsoft Dryad
Microsoft DryadMicrosoft Dryad
Microsoft Dryad
Colin Clark
 
Spectrum scale-external-unified-file object
Spectrum scale-external-unified-file objectSpectrum scale-external-unified-file object
Spectrum scale-external-unified-file object
Sandeep Patil
 
Veritas NetBackup benchmark comparison: Data protection in a large-scale virt...
Veritas NetBackup benchmark comparison: Data protection in a large-scale virt...Veritas NetBackup benchmark comparison: Data protection in a large-scale virt...
Veritas NetBackup benchmark comparison: Data protection in a large-scale virt...
Principled Technologies
 
S ss0885 spectrum-scale-elastic-edge2015-v5
S ss0885 spectrum-scale-elastic-edge2015-v5S ss0885 spectrum-scale-elastic-edge2015-v5
S ss0885 spectrum-scale-elastic-edge2015-v5
Tony Pearson
 
EarthLink Business Cloud Server Backup
EarthLink Business Cloud Server BackupEarthLink Business Cloud Server Backup
EarthLink Business Cloud Server Backup
Mike Ricca
 
Inter connect2016 yss1841-cloud-storage-options-v4
Inter connect2016 yss1841-cloud-storage-options-v4Inter connect2016 yss1841-cloud-storage-options-v4
Inter connect2016 yss1841-cloud-storage-options-v4
Tony Pearson
 
Optimal Azure Database Development by Karel Coenye
Optimal Azure Database Development by Karel Coenye Optimal Azure Database Development by Karel Coenye
Optimal Azure Database Development by Karel Coenye
ITProceed
 
Building a Hybrid Cloud Solution
Building a Hybrid Cloud Solution Building a Hybrid Cloud Solution
Building a Hybrid Cloud Solution
Cloudian
 
S de0882 new-generation-tiering-edge2015-v3
S de0882 new-generation-tiering-edge2015-v3S de0882 new-generation-tiering-edge2015-v3
S de0882 new-generation-tiering-edge2015-v3
Tony Pearson
 
Survey Results: The State of Backup
Survey Results: The State of BackupSurvey Results: The State of Backup
Survey Results: The State of Backup
Zetta Inc
 
Spectrum Scale final
Spectrum Scale finalSpectrum Scale final
Spectrum Scale final
Joe Krotz
 
S100293 hybrid-cloud-orlando-v1804a
S100293 hybrid-cloud-orlando-v1804aS100293 hybrid-cloud-orlando-v1804a
S100293 hybrid-cloud-orlando-v1804a
Tony Pearson
 
Surveon Powerful Data Backup Solutions
Surveon Powerful Data Backup SolutionsSurveon Powerful Data Backup Solutions
Surveon Powerful Data Backup Solutions
Surveon Technology Inc.
 
Data Center Tiers Explained
Data Center Tiers ExplainedData Center Tiers Explained
Data Center Tiers Explained
Data Cave
 
12 Architectural Requirements for Protecting Business Data in the Cloud
12 Architectural Requirements for Protecting Business Data in the Cloud12 Architectural Requirements for Protecting Business Data in the Cloud
12 Architectural Requirements for Protecting Business Data in the Cloud
Buurst
 
S cv3179 spectrum-integration-openstack-edge2015-v5
S cv3179 spectrum-integration-openstack-edge2015-v5S cv3179 spectrum-integration-openstack-edge2015-v5
S cv3179 spectrum-integration-openstack-edge2015-v5
Tony Pearson
 
Consolidating File Servers into the Cloud
Consolidating File Servers into the CloudConsolidating File Servers into the Cloud
Consolidating File Servers into the Cloud
Buurst
 
Migrate Existing Applications to AWS without Re-engineering
Migrate Existing Applications to AWS without Re-engineeringMigrate Existing Applications to AWS without Re-engineering
Migrate Existing Applications to AWS without Re-engineering
Buurst
 
Acroknight the Caribbean Data Backup solution presentation October 2013
Acroknight the Caribbean Data Backup solution presentation October 2013Acroknight the Caribbean Data Backup solution presentation October 2013
Acroknight the Caribbean Data Backup solution presentation October 2013
Steven Williams
 
Webinar: Cloud Storage: The 5 Reasons IT Can Do it Better
Webinar: Cloud Storage: The 5 Reasons IT Can Do it BetterWebinar: Cloud Storage: The 5 Reasons IT Can Do it Better
Webinar: Cloud Storage: The 5 Reasons IT Can Do it Better
Storage Switzerland
 
Webinar: Sizing Up Object Storage for the Enterprise
Webinar: Sizing Up Object Storage for the EnterpriseWebinar: Sizing Up Object Storage for the Enterprise
Webinar: Sizing Up Object Storage for the Enterprise
Storage Switzerland
 

Weitere ähnliche Inhalte

Was ist angesagt?

IMCSummit 2015 - Day 2 General Session - Flash-Extending In-Memory Computing
IMCSummit 2015 - Day 2 General Session - Flash-Extending In-Memory ComputingIMCSummit 2015 - Day 2 General Session - Flash-Extending In-Memory Computing
IMCSummit 2015 - Day 2 General Session - Flash-Extending In-Memory Computing
In-Memory Computing Summit
 
Veritas NetBackup benchmark comparison: Data protection in a large-scale virt...
Veritas NetBackup benchmark comparison: Data protection in a large-scale virt...Veritas NetBackup benchmark comparison: Data protection in a large-scale virt...
Veritas NetBackup benchmark comparison: Data protection in a large-scale virt...
Principled Technologies
 
EarthLink Business Cloud Server Backup
EarthLink Business Cloud Server BackupEarthLink Business Cloud Server Backup
EarthLink Business Cloud Server Backup
Mike Ricca
 
Spectrum Scale final
Spectrum Scale finalSpectrum Scale final
Spectrum Scale final
Joe Krotz
 
Data Center Tiers Explained
Data Center Tiers ExplainedData Center Tiers Explained
Data Center Tiers Explained
Data Cave
 
12 Architectural Requirements for Protecting Business Data in the Cloud
12 Architectural Requirements for Protecting Business Data in the Cloud12 Architectural Requirements for Protecting Business Data in the Cloud
12 Architectural Requirements for Protecting Business Data in the Cloud
Buurst
 
Consolidating File Servers into the Cloud
Consolidating File Servers into the CloudConsolidating File Servers into the Cloud
Consolidating File Servers into the Cloud
Buurst
 
Migrate Existing Applications to AWS without Re-engineering
Migrate Existing Applications to AWS without Re-engineeringMigrate Existing Applications to AWS without Re-engineering
Migrate Existing Applications to AWS without Re-engineering
Buurst
 

Was ist angesagt? (20)

IMCSummit 2015 - Day 2 General Session - Flash-Extending In-Memory Computing
IMCSummit 2015 - Day 2 General Session - Flash-Extending In-Memory ComputingIMCSummit 2015 - Day 2 General Session - Flash-Extending In-Memory Computing
IMCSummit 2015 - Day 2 General Session - Flash-Extending In-Memory Computing
 
Microsoft Dryad
Microsoft DryadMicrosoft Dryad
Microsoft Dryad
 
Spectrum scale-external-unified-file object
Spectrum scale-external-unified-file objectSpectrum scale-external-unified-file object
Spectrum scale-external-unified-file object
 
Veritas NetBackup benchmark comparison: Data protection in a large-scale virt...
Veritas NetBackup benchmark comparison: Data protection in a large-scale virt...Veritas NetBackup benchmark comparison: Data protection in a large-scale virt...
Veritas NetBackup benchmark comparison: Data protection in a large-scale virt...
 
S ss0885 spectrum-scale-elastic-edge2015-v5
S ss0885 spectrum-scale-elastic-edge2015-v5S ss0885 spectrum-scale-elastic-edge2015-v5
S ss0885 spectrum-scale-elastic-edge2015-v5
 
EarthLink Business Cloud Server Backup
EarthLink Business Cloud Server BackupEarthLink Business Cloud Server Backup
EarthLink Business Cloud Server Backup
 
Inter connect2016 yss1841-cloud-storage-options-v4
Inter connect2016 yss1841-cloud-storage-options-v4Inter connect2016 yss1841-cloud-storage-options-v4
Inter connect2016 yss1841-cloud-storage-options-v4
 
Optimal Azure Database Development by Karel Coenye
Optimal Azure Database Development by Karel Coenye Optimal Azure Database Development by Karel Coenye
Optimal Azure Database Development by Karel Coenye
 
Building a Hybrid Cloud Solution
Building a Hybrid Cloud Solution Building a Hybrid Cloud Solution
Building a Hybrid Cloud Solution
 
S de0882 new-generation-tiering-edge2015-v3
S de0882 new-generation-tiering-edge2015-v3S de0882 new-generation-tiering-edge2015-v3
S de0882 new-generation-tiering-edge2015-v3
 
Survey Results: The State of Backup
Survey Results: The State of BackupSurvey Results: The State of Backup
Survey Results: The State of Backup
 
Spectrum Scale final
Spectrum Scale finalSpectrum Scale final
Spectrum Scale final
 
S100293 hybrid-cloud-orlando-v1804a
S100293 hybrid-cloud-orlando-v1804aS100293 hybrid-cloud-orlando-v1804a
S100293 hybrid-cloud-orlando-v1804a
 
Surveon Powerful Data Backup Solutions
Surveon Powerful Data Backup SolutionsSurveon Powerful Data Backup Solutions
Surveon Powerful Data Backup Solutions
 
Data Center Tiers Explained
Data Center Tiers ExplainedData Center Tiers Explained
Data Center Tiers Explained
 
12 Architectural Requirements for Protecting Business Data in the Cloud
12 Architectural Requirements for Protecting Business Data in the Cloud12 Architectural Requirements for Protecting Business Data in the Cloud
12 Architectural Requirements for Protecting Business Data in the Cloud
 
S cv3179 spectrum-integration-openstack-edge2015-v5
S cv3179 spectrum-integration-openstack-edge2015-v5S cv3179 spectrum-integration-openstack-edge2015-v5
S cv3179 spectrum-integration-openstack-edge2015-v5
 
Consolidating File Servers into the Cloud
Consolidating File Servers into the CloudConsolidating File Servers into the Cloud
Consolidating File Servers into the Cloud
 
Migrate Existing Applications to AWS without Re-engineering
Migrate Existing Applications to AWS without Re-engineeringMigrate Existing Applications to AWS without Re-engineering
Migrate Existing Applications to AWS without Re-engineering
 
Acroknight the Caribbean Data Backup solution presentation October 2013
Acroknight the Caribbean Data Backup solution presentation October 2013Acroknight the Caribbean Data Backup solution presentation October 2013
Acroknight the Caribbean Data Backup solution presentation October 2013
 

Ähnlich wie Scaling Security Workflows in Government Agencies

ADV Slides: Platforming Your Data for Success – Databases, Hadoop, Managed Ha...
ADV Slides: Platforming Your Data for Success – Databases, Hadoop, Managed Ha...ADV Slides: Platforming Your Data for Success – Databases, Hadoop, Managed Ha...
ADV Slides: Platforming Your Data for Success – Databases, Hadoop, Managed Ha...
DATAVERSITY
 
Share on LinkedIn Share on Twitter Share on Facebook Share on Google+ Share b...
Share on LinkedIn Share on Twitter Share on Facebook Share on Google+ Share b...Share on LinkedIn Share on Twitter Share on Facebook Share on Google+ Share b...
Share on LinkedIn Share on Twitter Share on Facebook Share on Google+ Share b...
Avere Systems
 
Hardware Provisioning
Hardware ProvisioningHardware Provisioning
Hardware Provisioning
MongoDB
 
2010 AIRI Petabyte Challenge - View From The Trenches
2010 AIRI Petabyte Challenge - View From The Trenches2010 AIRI Petabyte Challenge - View From The Trenches
2010 AIRI Petabyte Challenge - View From The Trenches
George Ang
 

Ähnlich wie Scaling Security Workflows in Government Agencies (20)

Webinar: Cloud Storage: The 5 Reasons IT Can Do it Better
Webinar: Cloud Storage: The 5 Reasons IT Can Do it BetterWebinar: Cloud Storage: The 5 Reasons IT Can Do it Better
Webinar: Cloud Storage: The 5 Reasons IT Can Do it Better
 
Webinar: Sizing Up Object Storage for the Enterprise
Webinar: Sizing Up Object Storage for the EnterpriseWebinar: Sizing Up Object Storage for the Enterprise
Webinar: Sizing Up Object Storage for the Enterprise
 
Cloudian Webinar - 7 Key Reasons why Object Storage lowers Storage TCO
Cloudian Webinar - 7 Key Reasons why Object Storage lowers Storage TCOCloudian Webinar - 7 Key Reasons why Object Storage lowers Storage TCO
Cloudian Webinar - 7 Key Reasons why Object Storage lowers Storage TCO
 
ADV Slides: Platforming Your Data for Success – Databases, Hadoop, Managed Ha...
ADV Slides: Platforming Your Data for Success – Databases, Hadoop, Managed Ha...ADV Slides: Platforming Your Data for Success – Databases, Hadoop, Managed Ha...
ADV Slides: Platforming Your Data for Success – Databases, Hadoop, Managed Ha...
 
Share on LinkedIn Share on Twitter Share on Facebook Share on Google+ Share b...
Share on LinkedIn Share on Twitter Share on Facebook Share on Google+ Share b...Share on LinkedIn Share on Twitter Share on Facebook Share on Google+ Share b...
Share on LinkedIn Share on Twitter Share on Facebook Share on Google+ Share b...
 
Taking Splunk to the Next Level – Architecture
Taking Splunk to the Next Level – ArchitectureTaking Splunk to the Next Level – Architecture
Taking Splunk to the Next Level – Architecture
 
Hardware Provisioning
Hardware ProvisioningHardware Provisioning
Hardware Provisioning
 
2010 AIRI Petabyte Challenge - View From The Trenches
2010 AIRI Petabyte Challenge - View From The Trenches2010 AIRI Petabyte Challenge - View From The Trenches
2010 AIRI Petabyte Challenge - View From The Trenches
 
Data Virtualization Reference Architectures: Correctly Architecting your Solu...
Data Virtualization Reference Architectures: Correctly Architecting your Solu...Data Virtualization Reference Architectures: Correctly Architecting your Solu...
Data Virtualization Reference Architectures: Correctly Architecting your Solu...
 
Introducing IBM Spectrum Scale 4.2 and Elastic Storage Server 3.5
Introducing IBM Spectrum Scale 4.2 and Elastic Storage Server 3.5Introducing IBM Spectrum Scale 4.2 and Elastic Storage Server 3.5
Introducing IBM Spectrum Scale 4.2 and Elastic Storage Server 3.5
 
From cache to in-memory data grid. Introduction to Hazelcast.
From cache to in-memory data grid. Introduction to Hazelcast.From cache to in-memory data grid. Introduction to Hazelcast.
From cache to in-memory data grid. Introduction to Hazelcast.
 
VMworld 2013: Low-Cost, High-Performance Storage for VMware Horizon Desktops
VMworld 2013: Low-Cost, High-Performance Storage for VMware Horizon Desktops VMworld 2013: Low-Cost, High-Performance Storage for VMware Horizon Desktops
VMworld 2013: Low-Cost, High-Performance Storage for VMware Horizon Desktops
 
HP & OCSL Webinar StoreOnce 28th Of August 2013
HP & OCSL Webinar StoreOnce 28th Of August 2013HP & OCSL Webinar StoreOnce 28th Of August 2013
HP & OCSL Webinar StoreOnce 28th Of August 2013
 
#MFSummit2016 Operate: The race for space
#MFSummit2016 Operate: The race for space#MFSummit2016 Operate: The race for space
#MFSummit2016 Operate: The race for space
 
Elastic storage in the cloud session 5224 final v2
Elastic storage in the cloud session 5224 final v2Elastic storage in the cloud session 5224 final v2
Elastic storage in the cloud session 5224 final v2
 
Yaron Haviv, Iguaz.io - OpenStack and BigData - OpenStack Israel 2015
Yaron Haviv, Iguaz.io - OpenStack and BigData - OpenStack Israel 2015Yaron Haviv, Iguaz.io - OpenStack and BigData - OpenStack Israel 2015
Yaron Haviv, Iguaz.io - OpenStack and BigData - OpenStack Israel 2015
 
Symantec Appliances Strategy Launch
Symantec Appliances Strategy LaunchSymantec Appliances Strategy Launch
Symantec Appliances Strategy Launch
 
Managing Security At 1M Events a Second using Elasticsearch
Managing Security At 1M Events a Second using ElasticsearchManaging Security At 1M Events a Second using Elasticsearch
Managing Security At 1M Events a Second using Elasticsearch
 
Development of concurrent services using In-Memory Data Grids
Development of concurrent services using In-Memory Data GridsDevelopment of concurrent services using In-Memory Data Grids
Development of concurrent services using In-Memory Data Grids
 
SpringPeople - Introduction to Cloud Computing
SpringPeople - Introduction to Cloud ComputingSpringPeople - Introduction to Cloud Computing
SpringPeople - Introduction to Cloud Computing
 

Mehr von Avere Systems

Cloud Bursting 101: What to do When Cloud Computing Demand Exceeds Capacity
Cloud Bursting 101: What to do When Cloud Computing Demand Exceeds CapacityCloud Bursting 101: What to do When Cloud Computing Demand Exceeds Capacity
Cloud Bursting 101: What to do When Cloud Computing Demand Exceeds Capacity
Avere Systems
 
Solving enterprise challenges through scale out storage & big compute final
Solving enterprise challenges through scale out storage & big compute finalSolving enterprise challenges through scale out storage & big compute final
Solving enterprise challenges through scale out storage & big compute final
Avere Systems
 
Deliver Best-in-Class HPC Cloud Solutions Without Losing Your Mind
Deliver Best-in-Class HPC Cloud Solutions Without Losing Your MindDeliver Best-in-Class HPC Cloud Solutions Without Losing Your Mind
Deliver Best-in-Class HPC Cloud Solutions Without Losing Your Mind
Avere Systems
 
Building a Just-in-Time Application Stack for Analysts
Building a Just-in-Time Application Stack for AnalystsBuilding a Just-in-Time Application Stack for Analysts
Building a Just-in-Time Application Stack for Analysts
Avere Systems
 
Rendering Takes Flight
Rendering Takes FlightRendering Takes Flight
Rendering Takes Flight
Avere Systems
 
Three Steps to Modern Media Asset Management with Active Archive
Three Steps to Modern Media Asset Management with Active ArchiveThree Steps to Modern Media Asset Management with Active Archive
Three Steps to Modern Media Asset Management with Active Archive
Avere Systems
 
Scientific Computing in the Cloud: Speeding Access for Drug Discovery
Scientific Computing in the Cloud: Speeding Access for Drug DiscoveryScientific Computing in the Cloud: Speeding Access for Drug Discovery
Scientific Computing in the Cloud: Speeding Access for Drug Discovery
Avere Systems
 
Build a Cloud Render-Ready Infrastructure
Build a Cloud Render-Ready InfrastructureBuild a Cloud Render-Ready Infrastructure
Build a Cloud Render-Ready Infrastructure
Avere Systems
 
4 C’s for Using Cloud to Support Scientific Research
4 C’s for Using Cloud to Support Scientific Research4 C’s for Using Cloud to Support Scientific Research
4 C’s for Using Cloud to Support Scientific Research
Avere Systems
 

Mehr von Avere Systems (19)

Hedge Fund IT Challenges Financial Survey
Hedge Fund IT Challenges Financial SurveyHedge Fund IT Challenges Financial Survey
Hedge Fund IT Challenges Financial Survey
 
Cloud Bursting 101: What to do When Cloud Computing Demand Exceeds Capacity
Cloud Bursting 101: What to do When Cloud Computing Demand Exceeds CapacityCloud Bursting 101: What to do When Cloud Computing Demand Exceeds Capacity
Cloud Bursting 101: What to do When Cloud Computing Demand Exceeds Capacity
 
Solving enterprise challenges through scale out storage & big compute final
Solving enterprise challenges through scale out storage & big compute finalSolving enterprise challenges through scale out storage & big compute final
Solving enterprise challenges through scale out storage & big compute final
 
Deliver Best-in-Class HPC Cloud Solutions Without Losing Your Mind
Deliver Best-in-Class HPC Cloud Solutions Without Losing Your MindDeliver Best-in-Class HPC Cloud Solutions Without Losing Your Mind
Deliver Best-in-Class HPC Cloud Solutions Without Losing Your Mind
 
Compute Cloud for Rendering
Compute Cloud for RenderingCompute Cloud for Rendering
Compute Cloud for Rendering
 
Building a Just-in-Time Application Stack for Analysts
Building a Just-in-Time Application Stack for AnalystsBuilding a Just-in-Time Application Stack for Analysts
Building a Just-in-Time Application Stack for Analysts
 
Rendering Takes Flight
Rendering Takes FlightRendering Takes Flight
Rendering Takes Flight
 
Three Steps to Modern Media Asset Management with Active Archive
Three Steps to Modern Media Asset Management with Active ArchiveThree Steps to Modern Media Asset Management with Active Archive
Three Steps to Modern Media Asset Management with Active Archive
 
Cloud Computing Gets Put to the Test
Cloud Computing Gets Put to the TestCloud Computing Gets Put to the Test
Cloud Computing Gets Put to the Test
 
Scientific Computing in the Cloud: Speeding Access for Drug Discovery
Scientific Computing in the Cloud: Speeding Access for Drug DiscoveryScientific Computing in the Cloud: Speeding Access for Drug Discovery
Scientific Computing in the Cloud: Speeding Access for Drug Discovery
 
Build a Cloud Render-Ready Infrastructure
Build a Cloud Render-Ready InfrastructureBuild a Cloud Render-Ready Infrastructure
Build a Cloud Render-Ready Infrastructure
 
4 C’s for Using Cloud to Support Scientific Research
4 C’s for Using Cloud to Support Scientific Research4 C’s for Using Cloud to Support Scientific Research
4 C’s for Using Cloud to Support Scientific Research
 
Avere & AWS Enterprise Solution with Special Bundle Pricing Offer
Avere & AWS Enterprise Solution with Special Bundle Pricing OfferAvere & AWS Enterprise Solution with Special Bundle Pricing Offer
Avere & AWS Enterprise Solution with Special Bundle Pricing Offer
 
Enable Enterprise Hybrid Cloud NAS
Enable Enterprise Hybrid Cloud NASEnable Enterprise Hybrid Cloud NAS
Enable Enterprise Hybrid Cloud NAS
 
Avere Cloud NAS
Avere Cloud NASAvere Cloud NAS
Avere Cloud NAS
 
Clouds in Your Coffee Session with Cleversafe & Avere
Clouds in Your Coffee Session with Cleversafe & AvereClouds in Your Coffee Session with Cleversafe & Avere
Clouds in Your Coffee Session with Cleversafe & Avere
 
Are you ready for Avere Cloud NAS?
Are you ready for Avere Cloud NAS?Are you ready for Avere Cloud NAS?
Are you ready for Avere Cloud NAS?
 
Optimizing the Upstreaming Workflow: Flexibly Scale Storage for Seismic Proce...
Optimizing the Upstreaming Workflow: Flexibly Scale Storage for Seismic Proce...Optimizing the Upstreaming Workflow: Flexibly Scale Storage for Seismic Proce...
Optimizing the Upstreaming Workflow: Flexibly Scale Storage for Seismic Proce...
 
Webinar: Untethering Compute from Storage
Webinar: Untethering Compute from StorageWebinar: Untethering Compute from Storage
Webinar: Untethering Compute from Storage
 

Kürzlich hochgeladen

Top Rated Pune Call Girls Bhosari ⟟ 6297143586 ⟟ Call Me For Genuine Sex Ser...
Top Rated Pune Call Girls Bhosari ⟟ 6297143586 ⟟ Call Me For Genuine Sex Ser...Top Rated Pune Call Girls Bhosari ⟟ 6297143586 ⟟ Call Me For Genuine Sex Ser...
Top Rated Pune Call Girls Bhosari ⟟ 6297143586 ⟟ Call Me For Genuine Sex Ser...
Call Girls in Nagpur High Profile
 
Get Premium Budhwar Peth Call Girls (8005736733) 24x7 Rate 15999 with A/c Roo...
Get Premium Budhwar Peth Call Girls (8005736733) 24x7 Rate 15999 with A/c Roo...Get Premium Budhwar Peth Call Girls (8005736733) 24x7 Rate 15999 with A/c Roo...
Get Premium Budhwar Peth Call Girls (8005736733) 24x7 Rate 15999 with A/c Roo...
MOHANI PANDEY
 
Call Girls Nanded City Call Me 7737669865 Budget Friendly No Advance Booking
Call Girls Nanded City Call Me 7737669865 Budget Friendly No Advance BookingCall Girls Nanded City Call Me 7737669865 Budget Friendly No Advance Booking
Call Girls Nanded City Call Me 7737669865 Budget Friendly No Advance Booking
roncy bisnoi
 
VIP Model Call Girls Shikrapur ( Pune ) Call ON 8005736733 Starting From 5K t...
VIP Model Call Girls Shikrapur ( Pune ) Call ON 8005736733 Starting From 5K t...VIP Model Call Girls Shikrapur ( Pune ) Call ON 8005736733 Starting From 5K t...
VIP Model Call Girls Shikrapur ( Pune ) Call ON 8005736733 Starting From 5K t...
SUHANI PANDEY
 
Top Rated Pune Call Girls Dapodi ⟟ 6297143586 ⟟ Call Me For Genuine Sex Serv...
Top Rated Pune Call Girls Dapodi ⟟ 6297143586 ⟟ Call Me For Genuine Sex Serv...Top Rated Pune Call Girls Dapodi ⟟ 6297143586 ⟟ Call Me For Genuine Sex Serv...
Top Rated Pune Call Girls Dapodi ⟟ 6297143586 ⟟ Call Me For Genuine Sex Serv...
Call Girls in Nagpur High Profile
 
Call Girls Chakan Call Me 7737669865 Budget Friendly No Advance Booking
Call Girls Chakan Call Me 7737669865 Budget Friendly No Advance BookingCall Girls Chakan Call Me 7737669865 Budget Friendly No Advance Booking
Call Girls Chakan Call Me 7737669865 Budget Friendly No Advance Booking
roncy bisnoi
 
celebrity 💋 Agra Escorts Just Dail 8250092165 service available anytime 24 hour
celebrity 💋 Agra Escorts Just Dail 8250092165 service available anytime 24 hourcelebrity 💋 Agra Escorts Just Dail 8250092165 service available anytime 24 hour
celebrity 💋 Agra Escorts Just Dail 8250092165 service available anytime 24 hour
Call Girls in Nagpur High Profile
 
(NEHA) Call Girls Nagpur Call Now 8250077686 Nagpur Escorts 24x7
(NEHA) Call Girls Nagpur Call Now 8250077686 Nagpur Escorts 24x7(NEHA) Call Girls Nagpur Call Now 8250077686 Nagpur Escorts 24x7
(NEHA) Call Girls Nagpur Call Now 8250077686 Nagpur Escorts 24x7
Call Girls in Nagpur High Profile Call Girls
 
VIP Model Call Girls Narhe ( Pune ) Call ON 8005736733 Starting From 5K to 25...
VIP Model Call Girls Narhe ( Pune ) Call ON 8005736733 Starting From 5K to 25...VIP Model Call Girls Narhe ( Pune ) Call ON 8005736733 Starting From 5K to 25...
VIP Model Call Girls Narhe ( Pune ) Call ON 8005736733 Starting From 5K to 25...
SUHANI PANDEY
 
Night 7k to 12k Call Girls Service In Navi Mumbai 👉 BOOK NOW 9833363713 👈 ♀️...
Night 7k to 12k Call Girls Service In Navi Mumbai 👉 BOOK NOW 9833363713 👈 ♀️...Night 7k to 12k Call Girls Service In Navi Mumbai 👉 BOOK NOW 9833363713 👈 ♀️...
Night 7k to 12k Call Girls Service In Navi Mumbai 👉 BOOK NOW 9833363713 👈 ♀️...
aartirawatdelhi
 

Kürzlich hochgeladen (20)

Postal Ballots-For home voting step by step process 2024.pptx
Postal Ballots-For home voting step by step process 2024.pptxPostal Ballots-For home voting step by step process 2024.pptx
Postal Ballots-For home voting step by step process 2024.pptx
 
PPT Item # 4 - 231 Encino Ave (Significance Only)
PPT Item # 4 - 231 Encino Ave (Significance Only)PPT Item # 4 - 231 Encino Ave (Significance Only)
PPT Item # 4 - 231 Encino Ave (Significance Only)
 
Top Rated Pune Call Girls Bhosari ⟟ 6297143586 ⟟ Call Me For Genuine Sex Ser...
Top Rated Pune Call Girls Bhosari ⟟ 6297143586 ⟟ Call Me For Genuine Sex Ser...Top Rated Pune Call Girls Bhosari ⟟ 6297143586 ⟟ Call Me For Genuine Sex Ser...
Top Rated Pune Call Girls Bhosari ⟟ 6297143586 ⟟ Call Me For Genuine Sex Ser...
 
Get Premium Budhwar Peth Call Girls (8005736733) 24x7 Rate 15999 with A/c Roo...
Get Premium Budhwar Peth Call Girls (8005736733) 24x7 Rate 15999 with A/c Roo...Get Premium Budhwar Peth Call Girls (8005736733) 24x7 Rate 15999 with A/c Roo...
Get Premium Budhwar Peth Call Girls (8005736733) 24x7 Rate 15999 with A/c Roo...
 
Government e Marketplace GeM Presentation
Government e Marketplace GeM PresentationGovernment e Marketplace GeM Presentation
Government e Marketplace GeM Presentation
 
Call Girls Nanded City Call Me 7737669865 Budget Friendly No Advance Booking
Call Girls Nanded City Call Me 7737669865 Budget Friendly No Advance BookingCall Girls Nanded City Call Me 7737669865 Budget Friendly No Advance Booking
Call Girls Nanded City Call Me 7737669865 Budget Friendly No Advance Booking
 
VIP Model Call Girls Shikrapur ( Pune ) Call ON 8005736733 Starting From 5K t...
VIP Model Call Girls Shikrapur ( Pune ) Call ON 8005736733 Starting From 5K t...VIP Model Call Girls Shikrapur ( Pune ) Call ON 8005736733 Starting From 5K t...
VIP Model Call Girls Shikrapur ( Pune ) Call ON 8005736733 Starting From 5K t...
 
The NAP process & South-South peer learning
The NAP process & South-South peer learningThe NAP process & South-South peer learning
The NAP process & South-South peer learning
 
Financing strategies for adaptation. Presentation for CANCC
Financing strategies for adaptation. Presentation for CANCCFinancing strategies for adaptation. Presentation for CANCC
Financing strategies for adaptation. Presentation for CANCC
 
The Economic and Organised Crime Office (EOCO) has been advised by the Office...
The Economic and Organised Crime Office (EOCO) has been advised by the Office...The Economic and Organised Crime Office (EOCO) has been advised by the Office...
The Economic and Organised Crime Office (EOCO) has been advised by the Office...
 
World Press Freedom Day 2024; May 3rd - Poster
World Press Freedom Day 2024; May 3rd - PosterWorld Press Freedom Day 2024; May 3rd - Poster
World Press Freedom Day 2024; May 3rd - Poster
 
Expressive clarity oral presentation.pptx
Expressive clarity oral presentation.pptxExpressive clarity oral presentation.pptx
Expressive clarity oral presentation.pptx
 
Top Rated Pune Call Girls Dapodi ⟟ 6297143586 ⟟ Call Me For Genuine Sex Serv...
Top Rated Pune Call Girls Dapodi ⟟ 6297143586 ⟟ Call Me For Genuine Sex Serv...Top Rated Pune Call Girls Dapodi ⟟ 6297143586 ⟟ Call Me For Genuine Sex Serv...
Top Rated Pune Call Girls Dapodi ⟟ 6297143586 ⟟ Call Me For Genuine Sex Serv...
 
2024 Zoom Reinstein Legacy Asbestos Webinar
2024 Zoom Reinstein Legacy Asbestos Webinar2024 Zoom Reinstein Legacy Asbestos Webinar
2024 Zoom Reinstein Legacy Asbestos Webinar
 
Call Girls Chakan Call Me 7737669865 Budget Friendly No Advance Booking
Call Girls Chakan Call Me 7737669865 Budget Friendly No Advance BookingCall Girls Chakan Call Me 7737669865 Budget Friendly No Advance Booking
Call Girls Chakan Call Me 7737669865 Budget Friendly No Advance Booking
 
celebrity 💋 Agra Escorts Just Dail 8250092165 service available anytime 24 hour
celebrity 💋 Agra Escorts Just Dail 8250092165 service available anytime 24 hourcelebrity 💋 Agra Escorts Just Dail 8250092165 service available anytime 24 hour
celebrity 💋 Agra Escorts Just Dail 8250092165 service available anytime 24 hour
 
CBO’s Recent Appeals for New Research on Health-Related Topics
CBO’s Recent Appeals for New Research on Health-Related TopicsCBO’s Recent Appeals for New Research on Health-Related Topics
CBO’s Recent Appeals for New Research on Health-Related Topics
 
(NEHA) Call Girls Nagpur Call Now 8250077686 Nagpur Escorts 24x7
(NEHA) Call Girls Nagpur Call Now 8250077686 Nagpur Escorts 24x7(NEHA) Call Girls Nagpur Call Now 8250077686 Nagpur Escorts 24x7
(NEHA) Call Girls Nagpur Call Now 8250077686 Nagpur Escorts 24x7
 
VIP Model Call Girls Narhe ( Pune ) Call ON 8005736733 Starting From 5K to 25...
VIP Model Call Girls Narhe ( Pune ) Call ON 8005736733 Starting From 5K to 25...VIP Model Call Girls Narhe ( Pune ) Call ON 8005736733 Starting From 5K to 25...
VIP Model Call Girls Narhe ( Pune ) Call ON 8005736733 Starting From 5K to 25...
 
Night 7k to 12k Call Girls Service In Navi Mumbai 👉 BOOK NOW 9833363713 👈 ♀️...
Night 7k to 12k Call Girls Service In Navi Mumbai 👉 BOOK NOW 9833363713 👈 ♀️...Night 7k to 12k Call Girls Service In Navi Mumbai 👉 BOOK NOW 9833363713 👈 ♀️...
Night 7k to 12k Call Girls Service In Navi Mumbai 👉 BOOK NOW 9833363713 👈 ♀️...
 

Scaling Security Workflows in Government Agencies

  • 1. Scaling Security Workflows in Government Agencies September 28, 2017 | 11:00 AM ET WEBINAR
  • 2. Housekeeping 2 • Recording • Today’s Slides • Attachments • Questions • Feedback
  • 3. Our Presenters 3 Keith Ober Systems Engineer Avere Systems Bernie Behn Principal Product Engineer Avere Systems
  • 4. What’s the problem? Data, Data Everywhere
  • 6. Security Analysis Workflow • Acquire and Aggregate Inputs • Normalize Data • Archive Raw / Archive Normalized Data • Analyze for Patterns • Alert or Remediate
  • 7. Types of Inputs • Network Equipment: routers, switches, firewalls, VPN appliances, etc. • IT: physical servers, VM infrastructure, virtual machines, directory services, end user desktops/laptops • Application Layer: log files, access logs for applications, web servers • Miscellaneous: sensor data
  • 8. Typical Ingest Workflow Ingest Node(s) Normalize/Filter Storage Analyze data Report/Alert Logs, streamed to Ingest Nodes
  • 9. Typical Ingest Workflow Ingest Node(s) Normalize/Filter Storage I/O at scale can slow down storage, backing up entire workflow
  • 10. Typical Ingest Workflow Ingest Node(s) Normalize/Filter Storage Analyze data Report/Alert If analysis is not co-located, latency can impede analysis
  • 11. Typical Analysis Workflow Ingest Node(s) Normalize/Filter Storage Analyze data Report/Alert If analysis is not co-located, latency can impede analysis
  • 12. The meta-problem: Log File Ingest and Processing 12 All router1 log files from the beginning of time...well, from when we started gathering them... All log files from firewall 1 All log files from server 1Time and Volume NET: A lot of historical data over time, applying pressure both in terms of storage and processing
  • 13. Log Ingest Writ Large TheTrue Scale of Enterprise Ingest!
  • 14. Five Big Challenges Let’s Break It Down.
  • 15. 5 challenges when engineering security workflows 15 1. Ingest Latency and Throughput 2. Vendor Lock-In 3. Life Cycle Management 4. Data Availability and Redundancy 5. Cloud Integration
  • 16. Challenge 1: Ingest Latency and Throughput Ingest Node Normalize/Filter Storage I/O at scale can slow down storage, backing up entire workflow
  • 17. Ingest Latency Scales Too Storage The scale forces multiple storage sites, and on some products requires a replication mechanism, introducing more cost, overhead and latency. Ingest Node(s) Normalize/Filter Storage Storage Storage Storage Volume of inputs will drive the number of ingest nodes required. IOT devices are increasing the amount of log data being generated and ingested.
  • 18. Challenge 2: Vendor Lock-In Storage Ingest Node(s) Normalize/Filter Storage Storage Storage Storage As solution scales: 1. Additional demand for storage increases costs, and lowers performance. 2. Deficiencies in current storage solution amplifies as deployment grows, longer upgrade outages. 3. Vendors often limit interoperability with other products when it comes to replication and tiering.
  • 19. Vendor Lock-In Ability to transfer data to new solution is difficult: • Business Continuity -- How do you stop ingesting and processing logs? • Interoperability -- How do you ensure that your new/proposed storage solution will work well in a high-performance environment : Ingest performance : Read performance : Scale
  • 20. Challenge 3: Data Lifecycle Management Storage Ingest Node(s) Normalize/Filter Storage Storage StorageMore Expensive Storage Value of the data 1. Lowering the cost to store means you can store more and derive greater value. 2. New analytic methods/tools bring a fresh round of analysis and burst workloads. 3. How can we begin to build AI based workloads? Cheaper Storage Warm Data Cold Data
  • 21. Lifecycle Management Storage Performance • Ingest & analysis requires higher performance storage = More expensive storage • Over time simply too much data to store in performance tier • Deletion of older data possible?
  • 22. Challenge 4: Data Availability and Redundancy Ingest Node Normalize/Filter Storage Ingest Node Normalize/Filter Ingest Node Normalize/Filter Storage Storage Reporting and Processing Node Reporting and Processing Node Reporting and Processing Node
  • 23. Data Availability and Redundancy • Performance at scale requires distributing the reporting/analysis • Geographical location of ingest may also be distributed • Critical data: can’t lose it so avoid single point of failure • Large data sets with streaming data are extremely difficult to backup with traditional methods and are cost prohibitive
  • 24. Challenge 5: Cloud Integration: Storage Storage Ingest Node(s) Normalize/Filter Storage Storage Storage Storage 1. How to start archiving data to Cloud Storage, in order to lower cost? 2. How can businesses leverage cloud-based AI workloads against the same data they have today?
  • 25. Cloud Integration: Storage Cloud Storage Pros • Cloud Storage can be very inexpensive • Reduces the need to own and maintain additional IT assets • Public clouds have built-in redundancy Cloud Storage Cons • Cloud storage is eventually consistent...a query immediately after a write may not succeed • Lowest-cost storage is object, and requires S3-compliant application access
  • 26. And, so, what do we do? Cache It If You Can
  • 27. How can Avere address those challenges? 27 Challenges Avere Solution Ingest Latency and Throughput Avere write caching Avere FXT NVRAM 10GB+ Bandwidth Vendor Lock-In Global Namespace Flash Move & Mirror Life Cycle Management Data Availability and Redundancy HA, Clustering Flash Move & Mirror Cloud Integration Avere vFXT compute-based appliance Avere FlashCloud for AWS S3 and GCS
  • 28. Speed Ingest via write-behind caching • Gather writes (ack’ing clients immediately) and flushing in parallel • Hardware: NVRAM for write protection and caching • Clustered caching solution distributes writes across multiple nodes Accelerate read performance with distributed, read-ahead caching • Read-ahead a request (read a bit more than what was requested) • Cache requests for other readers (typical in analytic workloads) • Writes cached as written, speeding analysis workloads The Power of High-Performance Caching
  • 29. Caching Basic Architecture Ingest Node Normalize/Filter Storage ● Ingest nodes write to NFS mount points distributed across a caching layer Ingest Node Normalize/Filter Ingest Node Normalize/Filter ● Writes are flushed to storage over time, smoothing the ingest ● Writes are protected within the cluster via HA mirror Reporting / Analysis Node(s) ● Reporting / Analysis nodes access data via the cluster. ● Reads are cached, eventually aged ● Written data in the near term is cached and available Avere FXT Cluster
  • 30. Data Placement Ingest Node Normalize/Filter Storage Ingest Node Normalize/Filter Ingest Node Normalize/Filter Avere can Mirror data to cloud storage for longer- term archiving Data is accessible through the cluster, as though it were on the primary storage Reporting Analysis Node(s)
  • 31. Does this Really Work? From the Field Use Case
  • 32. Avere Security Workflow FXT Cluster DMZ Network Central Control Container based applications to Normalize data DATA Syslog/NetFlow/… DATA Streaming data to Avere with no direct access Core Filers Splunk Configure Splunk to eat data from separate vServer (isolating traffic) Splunk Data Consumers Web access to visualize data ingested and analyzed by Splunk Mirror/Migrate/Cloud Core Filers
  • 33. 33 SC17 November 12-17, 2017 Denver, Colorado AIRI 2017 October 1-4, 2017 Washington DC AWS re:Invent Nov. 27- Dec. 1, 2017 Las Vegas, Nevada
  • 34. Contact Us! 34 Keith Ober Systems Engineer Avere Systems kober@averesystems.com Bernie Behn Principal Product Engineer Avere Systems bbehn@averesystems.com AvereSystems.com 888.88 AVERE askavere@averesystems.com Twitter: @AvereSystems