SlideShare a Scribd company logo

IBM Storage security and Key differences in FlashSystem 5000 family

P
pbtest

IBM Storage

1 of 26
Download to read offline
IBM duomenų saugyklos Duomenų saugumas įrenginio lygiu Donatas Kudrevicius Technical Sales Consultant Arrow ECS Baltic
Internal IBM Award-Winning Storage Portfolio
Internal Family IBM Flash System MIDRANGE HIGH-END ENTRY Scalability Performance FlashSystem 9500 FlashSystem 9500R FlashSystem 7300 FlashSystem 5300 FlashSystem 5045 SAS FlashSystem 5015 SAS NVMe NVMe NVMe NVMe
Internal Tremendous performance with improved predictability More consistent I/O latency. Significant improvements in real world performance. 1.3x enhancement in bandwidth. Performance management is simpler. Performance metrics FlashSystem 5200 FlashSystem 5300 Improvement Real world IOPS* 270,000 400,000 1.45x Bandwidth - GB/s 21Gb/s 28GB/s 1.3x *16k block size, 70% reads, 30% writes, and a 50% cache hit (numbers subject to change)
Internal Key differences in FlashSystem 5000 family FlashSystem 5015 2U height, AC or DC power SAS control enclosure → 24x SAS SSD / 10k RPM HDD or SAS back-end → 12x NL-SAS HDD 2-core Broadwell DE CPUs 64GB cache max 4x 1GbE on-board ports 8x host ports max – 16Gb FC / 10GbE* / 12Gb SAS 2,048 volumes 2,048 FlashCopy mappings 4PiB FlashCopy capacity Inline threat detection FlashSystem 5300 1U height, AC power NVMe control enclosure → 12x NVMe FCM4 / SSD / SCM Inline compression with FCM 12-core Ice Lake CPUs with QAT 512GB cache max 4x 25/10GBE flexible on-board ports with options: - SFP28, SFP+, RJ45 16x host ports max – 32Gb FC / 10GbE or 8x 64GbFC 8,192 volumes 15,863 Snapshots 10PiB Snapshot capacity Inline threat detection + RTD Encryption + Secure Boot Volume Group Snapshots - Safeguarded copy, Internal Scheduler HyperSwap + PBHA PBR Storage Insights Integration Embedded VASA Provider Vvols replication NVMe over FC or TCP TCT Powered by IBM Storage Virtualize *25GbE will be WFM April 24th on FS5015/FS5045 due to supply constrains FlashSystem 5045 2U height, AC or DC power SAS control enclosure → 24x SAS SSD / 10k RPM HDD or SAS control rnclosure → 12x NL-SAS HDD 6-core Broadwell DE CPUs 64GB cache max 4x 10GbE on-board ports 8 host ports max – 16Gb FC / 10GbE* / 12Gb SAS 8,192 volumes 8,191 Snapshots 4PiB Snapshot capacity Inline threat detection Encryption Volume Group Snapshots - Safeguarded copy, Internal Scheduler HyperSwap
Internal Storage Virtualize: a powerful software stack for modernization Integrated • FlashSystem 5015 • FlashSystem 5035 • FlashSystem 5200 • FlashSystem 7300 • FlashSystem 9500 • FlashSystem 9500R Software Defined storage integrated with storage hardware Appliance • Heterogeneous storage virtualization • Consistent management • Ultimate flexibility • Participate in opportunities where no storage sales exist SAN Volume Controller Software Software Defined Storage (SDS) In the Cloud Removes Pain Points Enables over 500 heterogeneous storage systems to gain a wealth of consistent features • Brings consistent APIs to storage • Easy Tier (AI-based tiering) • All systems gain Compression • All systems gain Deduplication • All systems gain Encryption • All systems gain Replication • All systems gain easy Migration Consistent management and features to over 500 different storage systems for on-prem and in the cloud All systems gain a uniform portal to the cloud
Internal Securing Your Data Security and resilience is built into the FlashSystem Family from the ground up Encryption Hardware encryption of data at rest FIPS 140-3 Level 2 Certified * Safeguarded Copy Create immutable point-in-time copies to quickly recover data after cyber attacks Separation of duties for prevention Unauthorized attempts to delete copies Works on-prem and in the cloud Replication Synchronous, asynchronous, asynchronous with changing volumes, active-active cluster Multi-factor authentication Allows additional user authentication methods through IBM Security Verify and other third-party providers
Internal FlashSystem solutions include replication IBM Storage Virtualize also has a periodic asynchronous replication mode known as Metro Mirror Global Mirror Global Mirror with Change Volumes IBM Storage Virtualize provides synchronous replication known as IBM Storage Virtualize provides asynchronous replication known as
Internal FlashSystem solutions include encryption Encryption of Data at Rest (EDaR) • XTS-AES-256, as defined in the IEEE 1619-2007 • FIPS 140-2 Level 1 compliant • Encryption with USB flash drives • Encryption with key servers Encryption of Data in Flight (EDiF)
Internal FlashSystem solutions include snapshots FlashCopy® function creates a point-in-time copy Crash consistent - copy is created by the disk array, without stopping the application Application consistent - copy that synchronizes the operation of the disk array (flashcopy mechanism) with the application
Internal A breakthrough in cyber resilience
Internal The power of early detection Impact Time Recover fastest Respond fastest Primary Workloads Fastest recovery from hours to minutes Discover fastest 2 days 3 days 1 week 2 weeks 10 hours Seconds Minutes Hours 3 weeks An organization’s exposure from a cyber attack Recovery with Ransomware Threat Detection as data is written and rapid recovery of data IBM FlashSystem Cyber Resilience
Internal The layout of an industry standard commodity SSD Controller/Logic Flash This is a single card (IS SSD) that is typically found in a 7mm form factor. For large IS SSDs they will routinely contain two circuit boards.
Internal The layout of S / M FlashCore Modules NAND Flash Magnetoresistive Random Access Memory (MRAM) DRAM NAND Flash Capacitors for Power Loss Controller/Logic U.2 Connector Top Side Bottom Side
Internal The impressive history of FlashCore Technology 2014 MicroLatency Module Proprietary interface, single- layer cell (SLC) flash, followed up with multi-layer cell (MLC) flash, and in both cases the data path is in hardware Multiple protection features, including ECC error correction, variable stripe RAID data protection, overprovisioning, and three-dimensional (AE3 flash modules) or two- dimensional (AE2 flash modules) flash RAID 2018 FCM1 NVMe interface, re- implemented into a standard 2.5” form factor, triple-layer cell (TLC) flash with inline 2-to-1 data compression and encryption with no performance penalty 2020 FCM2 NVMe interface, quad- layer cell (QLC) flash with better than TLC performance, inline 2-to-1 data compression and encryption with no performance penalty 2022 FCM3 NVMe interface, quad- layer cell (QLC) flash with SLC abilities, optimized with a “Hinting Architecture” to optimize data placement, with up to 3-to-1 inline data compression, encryption with no performance penalty, L and XL modules based on PCIe G4, 2024 FCM4 NVMe interface, quad- layer cell (QLC) flash with SLC abilities, optimized with a “Hinting Architecture” to optimize data placement, with up to 3-to-1 inline data compression and, encryption, with no performance penalty, all modules based on PCIe G4, and Ransomware Threat Detection
Internal Ransomware Threat Detection With FlashCore Module Compression Statistics Encrypted payload detection Chi-Squared LBA Addressing and Sequencing Patterns Changes in Read / Write Throughput Shannon Entropy Processed on EVERY write with ZERO performance impact! 16 30+ data statistics analysed in detection engine
Internal Ransomware Monitoring Architectural Overview IBM FlashCore Modules IBM Storage Virtualize AI Inferencing Engine Granular data analytics Trends / Summary Learn From Data Show Real-Time Data And Trends Storage Insights Pro External Tools Responses / Actions Volume Statistics Responses / Actions SOAR e.g. IBM Storage Defender © 2024 IBM Corporation Reinforcement learning
Internal Can not be mapped to a host Immutable: Can not be written or read by an application Protected Copies of production volumes Thinly-provisioned, space efficient and point-in-time Built on existing FlashCopy snapshot technology Stored in a Safeguarded copy location: • Uses either Child Pool technology or copy resides in same pool as the source volume • Logical separation from other volumes • Capacity control • Access restrictions (separation of duties) Automatically created and deleted based on a predefined schedule Protected Copies of Data: Safeguarded Copy (SGC)
Internal External software (CSM) runs on a client provided Virtual Machine or x86 server (Java App) Storage Virtualize handles automatic deletion of expired backups internally No external APIs on delete for security Safeguarded Policy contains the copy schedule (frequency) and how long to keep each copy (retention) Copy schedule: Minutes, Hourly, Daily, Weekly, Monthly Retention time: X days Safeguarded Copy Automation - IBM Copy Services Manager (CSM) Coordinate and catalog copies across multiple clusters Connects via SSH and uses CLI as Administrator user
Internal Protecting the environment from ransomware Ransomware threat detection looks for potential ransomware attacks Storage Insights Pro analyzes FlashSystem IO statistics in real-time, looking for unexpected changes to IO patterns FlashCore Module 4 technology makes this alerting even faster, giving earlier warning to stop any attack Is there a potential ransomware attack happening? Which volumes are being attacked? Ransomware detection alerts can be received by QRadar QRadar, Defender or other SIEM software can trigger workflows to lockdown an environment
Internal IBM Spectrum Copy Data Management (SCDM) Complete copy automation Create copies Snapshots, copies, clones Track copies Catalog Refresh copies Automated DR and dev-test refresh Use copies Map LUNS, spin up systems Transition copies Test Prod Test to production Delete copies Clean up
Internal IBM CYBER VAULT Automation of recovery processes Recover Quick Data Recovery Safe Recover Point IBM Storage Defender IBM FlashSystem Protect Isolated & Immutable Snapshots (WORM) IBM Cyber Vault Detect IBM Storage Sentinel Automated Ransomware Detection
Ačiū! 23 Donatas Kudrevicius donatas.kudrevicius@arrow.com +37069962183
Internal IBM FlashCore Technology 24 Default read levels Optimal read levels Read Calibration Garbage Collection Health Binning Flash Chips … SLC QLC … … SLC/QLC Tiering Error Correction FlashCore Modules (FCM) • FlashCore Technology drives FCM • FCM are the core building blocks for all NVMe FlashSystem storage arrays NVMe-based FlashSystem At the Heart of Quad Layer Cell (QLC) Enablement Characterization
Internal 1. IBM FlashCore modules collect and analyse detailed ransomware statistics from every I/O with no performance impact 2. IBM Storage Virtualize runs an AI engine on every FlashSystem that is fed ML models developed by IBM Research trained on real-world ransomware The AI engine learns what’s normal for the system and detects threats using data from FCM 3. IBM Storage Insights Pro collects threat information from connected FlashSystems, alerts users and triggers SIEM/SOAR software to initiate a response Statistics are fed back to IBM to improve ML models IBM FlashSystem Ransomware Threat Detection Pipeline IBM Storage Virtualize IBM Storage Insights Pro
Internal Storage Virtualize delivers common capabilities Storage System #1 ▪ Thin provisioning ▪ Snapshots ▪ Mirroring Storage System #2 ▪ Thin provisioning ▪ Flash Storage ▪ Compression Efficiency Features ▪ Thin provisioning ▪ I/O caching ▪ Compression and Deduplication ▪ Flash storage support ▪ Easy Tier ▪ Data migration Protection and DR ▪ FlashCopy ▪ Active-Active Data Center ▪ Synchronous Mirroring ▪ Asynchronous Mirroring ▪ Encryption ▪ Hot Spare Node (SVC) For All Of A Client’s Distributed Storage
Ad

Recommended

Spectrum Scale final
Spectrum Scale finalSpectrum Scale final
Spectrum Scale final
Joe Krotz
 
FlashSystem 7300 Midrange Enterprise for Hybrid Cloud L2 Sellers Presentation...
FlashSystem 7300 Midrange Enterprise for Hybrid Cloud L2 Sellers Presentation...FlashSystem 7300 Midrange Enterprise for Hybrid Cloud L2 Sellers Presentation...
FlashSystem 7300 Midrange Enterprise for Hybrid Cloud L2 Sellers Presentation...
ssuserecfcc8
 
IMCSummit 2015 - Day 2 IT Business Track - Drive IMC Efficiency with Flash E...
IMCSummit 2015 - Day 2 IT Business Track - Drive IMC Efficiency with Flash E...IMCSummit 2015 - Day 2 IT Business Track - Drive IMC Efficiency with Flash E...
IMCSummit 2015 - Day 2 IT Business Track - Drive IMC Efficiency with Flash E...
In-Memory Computing Summit
 
FalconStor NSS Presentation
FalconStor NSS PresentationFalconStor NSS Presentation
FalconStor NSS Presentation
rpsprowl
 
IBM FlashSystem 7300 Product Guide.pdf
IBM FlashSystem 7300 Product Guide.pdfIBM FlashSystem 7300 Product Guide.pdf
IBM FlashSystem 7300 Product Guide.pdf
Freelance Architect Informations systems
 
Storwize SVC presentation February 2017
Storwize SVC presentation February 2017Storwize SVC presentation February 2017
Storwize SVC presentation February 2017
Joe Krotz
 
Towards Software Defined Persistent Memory
Towards Software Defined Persistent MemoryTowards Software Defined Persistent Memory
Towards Software Defined Persistent Memory
Swaminathan Sundararaman
 
Sullego Product Overview
Sullego Product OverviewSullego Product Overview
Sullego Product Overview
Mike Lee
 
3PAR and VMWare
3PAR and VMWare3PAR and VMWare
3PAR and VMWare
vmug
 
FS900 Datasheet - TSD03189USEN.PDF
FS900 Datasheet - TSD03189USEN.PDFFS900 Datasheet - TSD03189USEN.PDF
FS900 Datasheet - TSD03189USEN.PDF
Corné Lottering
 
FlashSystem February 2017
FlashSystem February 2017FlashSystem February 2017
FlashSystem February 2017
Joe Krotz
 
High Performance Object Storage in 30 Minutes with Supermicro and MinIO
High Performance Object Storage in 30 Minutes with Supermicro and MinIOHigh Performance Object Storage in 30 Minutes with Supermicro and MinIO
High Performance Object Storage in 30 Minutes with Supermicro and MinIO
Rebekah Rodriguez
 
How do you pick the right Storage vendor?
How do you pick the right Storage vendor?How do you pick the right Storage vendor?
How do you pick the right Storage vendor?
Violin Memory
 
FS900 Data Sheet.PDF
FS900 Data Sheet.PDFFS900 Data Sheet.PDF
FS900 Data Sheet.PDF
Michael Martin
 
Storage Cloud and Spectrum deck March 2016
Storage Cloud and Spectrum deck March 2016Storage Cloud and Spectrum deck March 2016
Storage Cloud and Spectrum deck March 2016
Joe Krotz
 
Ibm spectrum virtualize 101
Ibm spectrum virtualize 101 Ibm spectrum virtualize 101
Ibm spectrum virtualize 101
xKinAnx
 
[db tech showcase Tokyo 2018] #dbts2018 #B17 『オラクル パフォーマンス チューニング - 神話、伝説と解決策』
[db tech showcase Tokyo 2018] #dbts2018 #B17 『オラクル パフォーマンス チューニング - 神話、伝説と解決策』[db tech showcase Tokyo 2018] #dbts2018 #B17 『オラクル パフォーマンス チューニング - 神話、伝説と解決策』
[db tech showcase Tokyo 2018] #dbts2018 #B17 『オラクル パフォーマンス チューニング - 神話、伝説と解決策』
Insight Technology, Inc.
 
optimizing_ceph_flash
optimizing_ceph_flashoptimizing_ceph_flash
optimizing_ceph_flash
Vijayendra Shamanna
 
Технологии работы с дисковыми хранилищами и файловыми системами Windows Serve...
Технологии работы с дисковыми хранилищами и файловыми системами Windows Serve...Технологии работы с дисковыми хранилищами и файловыми системами Windows Serve...
Технологии работы с дисковыми хранилищами и файловыми системами Windows Serve...
Виталий Стародубцев
 
Watson christofer j_180208
Watson christofer j_180208Watson christofer j_180208
Watson christofer j_180208
IBM Sverige
 
IBM System Storage TS7650G ProtecTIER Deduplication Gateway
IBM System Storage TS7650G ProtecTIER Deduplication GatewayIBM System Storage TS7650G ProtecTIER Deduplication Gateway
IBM System Storage TS7650G ProtecTIER Deduplication Gateway
IBM India Smarter Computing
 
3487570
34875703487570
3487570
solarisyougood
 
Oracle Exec Summary 7000 Unified Storage
Oracle Exec Summary 7000 Unified StorageOracle Exec Summary 7000 Unified Storage
Oracle Exec Summary 7000 Unified Storage
David R. Klauser
 
Hands-on Lab: How to Unleash Your Storage Performance by Using NVM Express™ B...
Hands-on Lab: How to Unleash Your Storage Performance by Using NVM Express™ B...Hands-on Lab: How to Unleash Your Storage Performance by Using NVM Express™ B...
Hands-on Lab: How to Unleash Your Storage Performance by Using NVM Express™ B...
Odinot Stanislas
 
FlashSystems 2016 update
FlashSystems 2016 updateFlashSystems 2016 update
FlashSystems 2016 update
Joe Krotz
 
FlashSystem Portfolio Overview April 2016 w/ A9000
FlashSystem Portfolio Overview April 2016 w/ A9000FlashSystem Portfolio Overview April 2016 w/ A9000
FlashSystem Portfolio Overview April 2016 w/ A9000
Joe Krotz
 
FlashMemorySummit_2015_NVMFS
FlashMemorySummit_2015_NVMFSFlashMemorySummit_2015_NVMFS
FlashMemorySummit_2015_NVMFS
Dhananjoy ( Joy ) Das
 
Storage Cloud and Spectrum deck 2017 June update
Storage Cloud and Spectrum deck 2017 June updateStorage Cloud and Spectrum deck 2017 June update
Storage Cloud and Spectrum deck 2017 June update
Joe Krotz
 
Veeam Backup Directly to Object Storage.pptx
Veeam Backup Directly to Object Storage.pptxVeeam Backup Directly to Object Storage.pptx
Veeam Backup Directly to Object Storage.pptx
pbtest
 
INTRODUCING Red Hat ANSIBLE Automation Platform
INTRODUCING Red Hat ANSIBLE Automation PlatformINTRODUCING Red Hat ANSIBLE Automation Platform
INTRODUCING Red Hat ANSIBLE Automation Platform
pbtest
 
Ad

More Related Content

Similar to IBM Storage security and Key differences in FlashSystem 5000 family (20)

3PAR and VMWare
3PAR and VMWare3PAR and VMWare
3PAR and VMWare
vmug
 
FS900 Datasheet - TSD03189USEN.PDF
FS900 Datasheet - TSD03189USEN.PDFFS900 Datasheet - TSD03189USEN.PDF
FS900 Datasheet - TSD03189USEN.PDF
Corné Lottering
 
FlashSystem February 2017
FlashSystem February 2017FlashSystem February 2017
FlashSystem February 2017
Joe Krotz
 
High Performance Object Storage in 30 Minutes with Supermicro and MinIO
High Performance Object Storage in 30 Minutes with Supermicro and MinIOHigh Performance Object Storage in 30 Minutes with Supermicro and MinIO
High Performance Object Storage in 30 Minutes with Supermicro and MinIO
Rebekah Rodriguez
 
How do you pick the right Storage vendor?
How do you pick the right Storage vendor?How do you pick the right Storage vendor?
How do you pick the right Storage vendor?
Violin Memory
 
FS900 Data Sheet.PDF
FS900 Data Sheet.PDFFS900 Data Sheet.PDF
FS900 Data Sheet.PDF
Michael Martin
 
Storage Cloud and Spectrum deck March 2016
Storage Cloud and Spectrum deck March 2016Storage Cloud and Spectrum deck March 2016
Storage Cloud and Spectrum deck March 2016
Joe Krotz
 
Ibm spectrum virtualize 101
Ibm spectrum virtualize 101 Ibm spectrum virtualize 101
Ibm spectrum virtualize 101
xKinAnx
 
[db tech showcase Tokyo 2018] #dbts2018 #B17 『オラクル パフォーマンス チューニング - 神話、伝説と解決策』
[db tech showcase Tokyo 2018] #dbts2018 #B17 『オラクル パフォーマンス チューニング - 神話、伝説と解決策』[db tech showcase Tokyo 2018] #dbts2018 #B17 『オラクル パフォーマンス チューニング - 神話、伝説と解決策』
[db tech showcase Tokyo 2018] #dbts2018 #B17 『オラクル パフォーマンス チューニング - 神話、伝説と解決策』
Insight Technology, Inc.
 
optimizing_ceph_flash
optimizing_ceph_flashoptimizing_ceph_flash
optimizing_ceph_flash
Vijayendra Shamanna
 
Технологии работы с дисковыми хранилищами и файловыми системами Windows Serve...
Технологии работы с дисковыми хранилищами и файловыми системами Windows Serve...Технологии работы с дисковыми хранилищами и файловыми системами Windows Serve...
Технологии работы с дисковыми хранилищами и файловыми системами Windows Serve...
Виталий Стародубцев
 
Watson christofer j_180208
Watson christofer j_180208Watson christofer j_180208
Watson christofer j_180208
IBM Sverige
 
IBM System Storage TS7650G ProtecTIER Deduplication Gateway
IBM System Storage TS7650G ProtecTIER Deduplication GatewayIBM System Storage TS7650G ProtecTIER Deduplication Gateway
IBM System Storage TS7650G ProtecTIER Deduplication Gateway
IBM India Smarter Computing
 
3487570
34875703487570
3487570
solarisyougood
 
Oracle Exec Summary 7000 Unified Storage
Oracle Exec Summary 7000 Unified StorageOracle Exec Summary 7000 Unified Storage
Oracle Exec Summary 7000 Unified Storage
David R. Klauser
 
Hands-on Lab: How to Unleash Your Storage Performance by Using NVM Express™ B...
Hands-on Lab: How to Unleash Your Storage Performance by Using NVM Express™ B...Hands-on Lab: How to Unleash Your Storage Performance by Using NVM Express™ B...
Hands-on Lab: How to Unleash Your Storage Performance by Using NVM Express™ B...
Odinot Stanislas
 
FlashSystems 2016 update
FlashSystems 2016 updateFlashSystems 2016 update
FlashSystems 2016 update
Joe Krotz
 
FlashSystem Portfolio Overview April 2016 w/ A9000
FlashSystem Portfolio Overview April 2016 w/ A9000FlashSystem Portfolio Overview April 2016 w/ A9000
FlashSystem Portfolio Overview April 2016 w/ A9000
Joe Krotz
 
FlashMemorySummit_2015_NVMFS
FlashMemorySummit_2015_NVMFSFlashMemorySummit_2015_NVMFS
FlashMemorySummit_2015_NVMFS
Dhananjoy ( Joy ) Das
 
Storage Cloud and Spectrum deck 2017 June update
Storage Cloud and Spectrum deck 2017 June updateStorage Cloud and Spectrum deck 2017 June update
Storage Cloud and Spectrum deck 2017 June update
Joe Krotz
 
3PAR and VMWare
3PAR and VMWare3PAR and VMWare
3PAR and VMWare
vmug
 
FS900 Datasheet - TSD03189USEN.PDF
FS900 Datasheet - TSD03189USEN.PDFFS900 Datasheet - TSD03189USEN.PDF
FS900 Datasheet - TSD03189USEN.PDF
Corné Lottering
 
FlashSystem February 2017
FlashSystem February 2017FlashSystem February 2017
FlashSystem February 2017
Joe Krotz
 
High Performance Object Storage in 30 Minutes with Supermicro and MinIO
High Performance Object Storage in 30 Minutes with Supermicro and MinIOHigh Performance Object Storage in 30 Minutes with Supermicro and MinIO
High Performance Object Storage in 30 Minutes with Supermicro and MinIO
Rebekah Rodriguez
 
How do you pick the right Storage vendor?
How do you pick the right Storage vendor?How do you pick the right Storage vendor?
How do you pick the right Storage vendor?
Violin Memory
 
FS900 Data Sheet.PDF
FS900 Data Sheet.PDFFS900 Data Sheet.PDF
FS900 Data Sheet.PDF
Michael Martin
 
Storage Cloud and Spectrum deck March 2016
Storage Cloud and Spectrum deck March 2016Storage Cloud and Spectrum deck March 2016
Storage Cloud and Spectrum deck March 2016
Joe Krotz
 
Ibm spectrum virtualize 101
Ibm spectrum virtualize 101 Ibm spectrum virtualize 101
Ibm spectrum virtualize 101
xKinAnx
 
[db tech showcase Tokyo 2018] #dbts2018 #B17 『オラクル パフォーマンス チューニング - 神話、伝説と解決策』
[db tech showcase Tokyo 2018] #dbts2018 #B17 『オラクル パフォーマンス チューニング - 神話、伝説と解決策』[db tech showcase Tokyo 2018] #dbts2018 #B17 『オラクル パフォーマンス チューニング - 神話、伝説と解決策』
[db tech showcase Tokyo 2018] #dbts2018 #B17 『オラクル パフォーマンス チューニング - 神話、伝説と解決策』
Insight Technology, Inc.
 
optimizing_ceph_flash
optimizing_ceph_flashoptimizing_ceph_flash
optimizing_ceph_flash
Vijayendra Shamanna
 
Технологии работы с дисковыми хранилищами и файловыми системами Windows Serve...
Технологии работы с дисковыми хранилищами и файловыми системами Windows Serve...Технологии работы с дисковыми хранилищами и файловыми системами Windows Serve...
Технологии работы с дисковыми хранилищами и файловыми системами Windows Serve...
Виталий Стародубцев
 
Watson christofer j_180208
Watson christofer j_180208Watson christofer j_180208
Watson christofer j_180208
IBM Sverige
 
IBM System Storage TS7650G ProtecTIER Deduplication Gateway
IBM System Storage TS7650G ProtecTIER Deduplication GatewayIBM System Storage TS7650G ProtecTIER Deduplication Gateway
IBM System Storage TS7650G ProtecTIER Deduplication Gateway
IBM India Smarter Computing
 
3487570
34875703487570
3487570
solarisyougood
 
Oracle Exec Summary 7000 Unified Storage
Oracle Exec Summary 7000 Unified StorageOracle Exec Summary 7000 Unified Storage
Oracle Exec Summary 7000 Unified Storage
David R. Klauser
 
Hands-on Lab: How to Unleash Your Storage Performance by Using NVM Express™ B...
Hands-on Lab: How to Unleash Your Storage Performance by Using NVM Express™ B...Hands-on Lab: How to Unleash Your Storage Performance by Using NVM Express™ B...
Hands-on Lab: How to Unleash Your Storage Performance by Using NVM Express™ B...
Odinot Stanislas
 
FlashSystems 2016 update
FlashSystems 2016 updateFlashSystems 2016 update
FlashSystems 2016 update
Joe Krotz
 
FlashSystem Portfolio Overview April 2016 w/ A9000
FlashSystem Portfolio Overview April 2016 w/ A9000FlashSystem Portfolio Overview April 2016 w/ A9000
FlashSystem Portfolio Overview April 2016 w/ A9000
Joe Krotz
 
FlashMemorySummit_2015_NVMFS
FlashMemorySummit_2015_NVMFSFlashMemorySummit_2015_NVMFS
FlashMemorySummit_2015_NVMFS
Dhananjoy ( Joy ) Das
 
Storage Cloud and Spectrum deck 2017 June update
Storage Cloud and Spectrum deck 2017 June updateStorage Cloud and Spectrum deck 2017 June update
Storage Cloud and Spectrum deck 2017 June update
Joe Krotz
 

More from pbtest (9)

Veeam Backup Directly to Object Storage.pptx
Veeam Backup Directly to Object Storage.pptxVeeam Backup Directly to Object Storage.pptx
Veeam Backup Directly to Object Storage.pptx
pbtest
 
INTRODUCING Red Hat ANSIBLE Automation Platform
INTRODUCING Red Hat ANSIBLE Automation PlatformINTRODUCING Red Hat ANSIBLE Automation Platform
INTRODUCING Red Hat ANSIBLE Automation Platform
pbtest
 
Technical introduction to Red Hat Ansible
Technical introduction to Red Hat AnsibleTechnical introduction to Red Hat Ansible
Technical introduction to Red Hat Ansible
pbtest
 
final-technical-roadmap-aap-2 ansible redhat
final-technical-roadmap-aap-2 ansible redhatfinal-technical-roadmap-aap-2 ansible redhat
final-technical-roadmap-aap-2 ansible redhat
pbtest
 
final-red-hat-te-2023-gaurav-midha open to world
final-red-hat-te-2023-gaurav-midha open to worldfinal-red-hat-te-2023-gaurav-midha open to world
final-red-hat-te-2023-gaurav-midha open to world
pbtest
 
rhte-2023-myths-about-openshift-virtualization-joachim-von-thadden.pptx
rhte-2023-myths-about-openshift-virtualization-joachim-von-thadden.pptxrhte-2023-myths-about-openshift-virtualization-joachim-von-thadden.pptx
rhte-2023-myths-about-openshift-virtualization-joachim-von-thadden.pptx
pbtest
 
NBU Flex Container Hardware Overview Presentation
NBU Flex Container Hardware Overview PresentationNBU Flex Container Hardware Overview Presentation
NBU Flex Container Hardware Overview Presentation
pbtest
 
What's new in System Recovery 22.pptx
What's new in System Recovery 22.pptxWhat's new in System Recovery 22.pptx
What's new in System Recovery 22.pptx
pbtest
 
Tanzu Partner Competencies Overview EN.pptx
Tanzu Partner Competencies Overview EN.pptxTanzu Partner Competencies Overview EN.pptx
Tanzu Partner Competencies Overview EN.pptx
pbtest
 
Veeam Backup Directly to Object Storage.pptx
Veeam Backup Directly to Object Storage.pptxVeeam Backup Directly to Object Storage.pptx
Veeam Backup Directly to Object Storage.pptx
pbtest
 
INTRODUCING Red Hat ANSIBLE Automation Platform
INTRODUCING Red Hat ANSIBLE Automation PlatformINTRODUCING Red Hat ANSIBLE Automation Platform
INTRODUCING Red Hat ANSIBLE Automation Platform
pbtest
 
Technical introduction to Red Hat Ansible
Technical introduction to Red Hat AnsibleTechnical introduction to Red Hat Ansible
Technical introduction to Red Hat Ansible
pbtest
 
final-technical-roadmap-aap-2 ansible redhat
final-technical-roadmap-aap-2 ansible redhatfinal-technical-roadmap-aap-2 ansible redhat
final-technical-roadmap-aap-2 ansible redhat
pbtest
 
final-red-hat-te-2023-gaurav-midha open to world
final-red-hat-te-2023-gaurav-midha open to worldfinal-red-hat-te-2023-gaurav-midha open to world
final-red-hat-te-2023-gaurav-midha open to world
pbtest
 
rhte-2023-myths-about-openshift-virtualization-joachim-von-thadden.pptx
rhte-2023-myths-about-openshift-virtualization-joachim-von-thadden.pptxrhte-2023-myths-about-openshift-virtualization-joachim-von-thadden.pptx
rhte-2023-myths-about-openshift-virtualization-joachim-von-thadden.pptx
pbtest
 
NBU Flex Container Hardware Overview Presentation
NBU Flex Container Hardware Overview PresentationNBU Flex Container Hardware Overview Presentation
NBU Flex Container Hardware Overview Presentation
pbtest
 
What's new in System Recovery 22.pptx
What's new in System Recovery 22.pptxWhat's new in System Recovery 22.pptx
What's new in System Recovery 22.pptx
pbtest
 
Tanzu Partner Competencies Overview EN.pptx
Tanzu Partner Competencies Overview EN.pptxTanzu Partner Competencies Overview EN.pptx
Tanzu Partner Competencies Overview EN.pptx
pbtest
 
Ad

Recently uploaded (20)

Noah Loul Shares 5 Steps to Implement AI Agents for Maximum Business Efficien...
Noah Loul Shares 5 Steps to Implement AI Agents for Maximum Business Efficien...Noah Loul Shares 5 Steps to Implement AI Agents for Maximum Business Efficien...
Noah Loul Shares 5 Steps to Implement AI Agents for Maximum Business Efficien...
Noah Loul
 
Designing Low-Latency Systems with Rust and ScyllaDB: An Architectural Deep Dive
Designing Low-Latency Systems with Rust and ScyllaDB: An Architectural Deep DiveDesigning Low-Latency Systems with Rust and ScyllaDB: An Architectural Deep Dive
Designing Low-Latency Systems with Rust and ScyllaDB: An Architectural Deep Dive
ScyllaDB
 
The Evolution of Meme Coins A New Era for Digital Currency ppt.pdf
The Evolution of Meme Coins A New Era for Digital Currency ppt.pdfThe Evolution of Meme Coins A New Era for Digital Currency ppt.pdf
The Evolution of Meme Coins A New Era for Digital Currency ppt.pdf
Abi john
 
Quantum Computing Quick Research Guide by Arthur Morgan
Quantum Computing Quick Research Guide by Arthur MorganQuantum Computing Quick Research Guide by Arthur Morgan
Quantum Computing Quick Research Guide by Arthur Morgan
Arthur Morgan
 
Linux Support for SMARC: How Toradex Empowers Embedded Developers
Linux Support for SMARC: How Toradex Empowers Embedded DevelopersLinux Support for SMARC: How Toradex Empowers Embedded Developers
Linux Support for SMARC: How Toradex Empowers Embedded Developers
Toradex
 
Role of Data Annotation Services in AI-Powered Manufacturing
Role of Data Annotation Services in AI-Powered ManufacturingRole of Data Annotation Services in AI-Powered Manufacturing
Role of Data Annotation Services in AI-Powered Manufacturing
Andrew Leo
 
Big Data Analytics Quick Research Guide by Arthur Morgan
Big Data Analytics Quick Research Guide by Arthur MorganBig Data Analytics Quick Research Guide by Arthur Morgan
Big Data Analytics Quick Research Guide by Arthur Morgan
Arthur Morgan
 
ThousandEyes Partner Innovation Updates for May 2025
ThousandEyes Partner Innovation Updates for May 2025ThousandEyes Partner Innovation Updates for May 2025
ThousandEyes Partner Innovation Updates for May 2025
ThousandEyes
 
Generative Artificial Intelligence (GenAI) in Business
Generative Artificial Intelligence (GenAI) in BusinessGenerative Artificial Intelligence (GenAI) in Business
Generative Artificial Intelligence (GenAI) in Business
Dr. Tathagat Varma
 
Increasing Retail Store Efficiency How can Planograms Save Time and Money.pptx
Increasing Retail Store Efficiency How can Planograms Save Time and Money.pptxIncreasing Retail Store Efficiency How can Planograms Save Time and Money.pptx
Increasing Retail Store Efficiency How can Planograms Save Time and Money.pptx
Anoop Ashok
 
Massive Power Outage Hits Spain, Portugal, and France: Causes, Impact, and On...
Massive Power Outage Hits Spain, Portugal, and France: Causes, Impact, and On...Massive Power Outage Hits Spain, Portugal, and France: Causes, Impact, and On...
Massive Power Outage Hits Spain, Portugal, and France: Causes, Impact, and On...
Aqusag Technologies
 
Cyber Awareness overview for 2025 month of security
Cyber Awareness overview for 2025 month of securityCyber Awareness overview for 2025 month of security
Cyber Awareness overview for 2025 month of security
riccardosl1
 
TrustArc Webinar: Consumer Expectations vs Corporate Realities on Data Broker...
TrustArc Webinar: Consumer Expectations vs Corporate Realities on Data Broker...TrustArc Webinar: Consumer Expectations vs Corporate Realities on Data Broker...
TrustArc Webinar: Consumer Expectations vs Corporate Realities on Data Broker...
TrustArc
 
Splunk Security Update | Public Sector Summit Germany 2025
Splunk Security Update | Public Sector Summit Germany 2025Splunk Security Update | Public Sector Summit Germany 2025
Splunk Security Update | Public Sector Summit Germany 2025
Splunk
 
Mobile App Development Company in Saudi Arabia
Mobile App Development Company in Saudi ArabiaMobile App Development Company in Saudi Arabia
Mobile App Development Company in Saudi Arabia
Steve Jonas
 
Transcript: #StandardsGoals for 2025: Standards & certification roundup - Tec...
Transcript: #StandardsGoals for 2025: Standards & certification roundup - Tec...Transcript: #StandardsGoals for 2025: Standards & certification roundup - Tec...
Transcript: #StandardsGoals for 2025: Standards & certification roundup - Tec...
BookNet Canada
 
HCL Nomad Web – Best Practices and Managing Multiuser Environments
HCL Nomad Web – Best Practices and Managing Multiuser EnvironmentsHCL Nomad Web – Best Practices and Managing Multiuser Environments
HCL Nomad Web – Best Practices and Managing Multiuser Environments
panagenda
 
AI Changes Everything – Talk at Cardiff Metropolitan University, 29th April 2...
AI Changes Everything – Talk at Cardiff Metropolitan University, 29th April 2...AI Changes Everything – Talk at Cardiff Metropolitan University, 29th April 2...
AI Changes Everything – Talk at Cardiff Metropolitan University, 29th April 2...
Alan Dix
 
Special Meetup Edition - TDX Bengaluru Meetup #52.pptx
Special Meetup Edition - TDX Bengaluru Meetup #52.pptxSpecial Meetup Edition - TDX Bengaluru Meetup #52.pptx
Special Meetup Edition - TDX Bengaluru Meetup #52.pptx
shyamraj55
 
IEDM 2024 Tutorial2_Advances in CMOS Technologies and Future Directions for C...
IEDM 2024 Tutorial2_Advances in CMOS Technologies and Future Directions for C...IEDM 2024 Tutorial2_Advances in CMOS Technologies and Future Directions for C...
IEDM 2024 Tutorial2_Advances in CMOS Technologies and Future Directions for C...
organizerofv
 
Noah Loul Shares 5 Steps to Implement AI Agents for Maximum Business Efficien...
Noah Loul Shares 5 Steps to Implement AI Agents for Maximum Business Efficien...Noah Loul Shares 5 Steps to Implement AI Agents for Maximum Business Efficien...
Noah Loul Shares 5 Steps to Implement AI Agents for Maximum Business Efficien...
Noah Loul
 
Designing Low-Latency Systems with Rust and ScyllaDB: An Architectural Deep Dive
Designing Low-Latency Systems with Rust and ScyllaDB: An Architectural Deep DiveDesigning Low-Latency Systems with Rust and ScyllaDB: An Architectural Deep Dive
Designing Low-Latency Systems with Rust and ScyllaDB: An Architectural Deep Dive
ScyllaDB
 
The Evolution of Meme Coins A New Era for Digital Currency ppt.pdf
The Evolution of Meme Coins A New Era for Digital Currency ppt.pdfThe Evolution of Meme Coins A New Era for Digital Currency ppt.pdf
The Evolution of Meme Coins A New Era for Digital Currency ppt.pdf
Abi john
 
Quantum Computing Quick Research Guide by Arthur Morgan
Quantum Computing Quick Research Guide by Arthur MorganQuantum Computing Quick Research Guide by Arthur Morgan
Quantum Computing Quick Research Guide by Arthur Morgan
Arthur Morgan
 
Linux Support for SMARC: How Toradex Empowers Embedded Developers
Linux Support for SMARC: How Toradex Empowers Embedded DevelopersLinux Support for SMARC: How Toradex Empowers Embedded Developers
Linux Support for SMARC: How Toradex Empowers Embedded Developers
Toradex
 
Role of Data Annotation Services in AI-Powered Manufacturing
Role of Data Annotation Services in AI-Powered ManufacturingRole of Data Annotation Services in AI-Powered Manufacturing
Role of Data Annotation Services in AI-Powered Manufacturing
Andrew Leo
 
Big Data Analytics Quick Research Guide by Arthur Morgan
Big Data Analytics Quick Research Guide by Arthur MorganBig Data Analytics Quick Research Guide by Arthur Morgan
Big Data Analytics Quick Research Guide by Arthur Morgan
Arthur Morgan
 
ThousandEyes Partner Innovation Updates for May 2025
ThousandEyes Partner Innovation Updates for May 2025ThousandEyes Partner Innovation Updates for May 2025
ThousandEyes Partner Innovation Updates for May 2025
ThousandEyes
 
Generative Artificial Intelligence (GenAI) in Business
Generative Artificial Intelligence (GenAI) in BusinessGenerative Artificial Intelligence (GenAI) in Business
Generative Artificial Intelligence (GenAI) in Business
Dr. Tathagat Varma
 
Increasing Retail Store Efficiency How can Planograms Save Time and Money.pptx
Increasing Retail Store Efficiency How can Planograms Save Time and Money.pptxIncreasing Retail Store Efficiency How can Planograms Save Time and Money.pptx
Increasing Retail Store Efficiency How can Planograms Save Time and Money.pptx
Anoop Ashok
 
Massive Power Outage Hits Spain, Portugal, and France: Causes, Impact, and On...
Massive Power Outage Hits Spain, Portugal, and France: Causes, Impact, and On...Massive Power Outage Hits Spain, Portugal, and France: Causes, Impact, and On...
Massive Power Outage Hits Spain, Portugal, and France: Causes, Impact, and On...
Aqusag Technologies
 
Cyber Awareness overview for 2025 month of security
Cyber Awareness overview for 2025 month of securityCyber Awareness overview for 2025 month of security
Cyber Awareness overview for 2025 month of security
riccardosl1
 
TrustArc Webinar: Consumer Expectations vs Corporate Realities on Data Broker...
TrustArc Webinar: Consumer Expectations vs Corporate Realities on Data Broker...TrustArc Webinar: Consumer Expectations vs Corporate Realities on Data Broker...
TrustArc Webinar: Consumer Expectations vs Corporate Realities on Data Broker...
TrustArc
 
Splunk Security Update | Public Sector Summit Germany 2025
Splunk Security Update | Public Sector Summit Germany 2025Splunk Security Update | Public Sector Summit Germany 2025
Splunk Security Update | Public Sector Summit Germany 2025
Splunk
 
Mobile App Development Company in Saudi Arabia
Mobile App Development Company in Saudi ArabiaMobile App Development Company in Saudi Arabia
Mobile App Development Company in Saudi Arabia
Steve Jonas
 
Transcript: #StandardsGoals for 2025: Standards & certification roundup - Tec...
Transcript: #StandardsGoals for 2025: Standards & certification roundup - Tec...Transcript: #StandardsGoals for 2025: Standards & certification roundup - Tec...
Transcript: #StandardsGoals for 2025: Standards & certification roundup - Tec...
BookNet Canada
 
HCL Nomad Web – Best Practices and Managing Multiuser Environments
HCL Nomad Web – Best Practices and Managing Multiuser EnvironmentsHCL Nomad Web – Best Practices and Managing Multiuser Environments
HCL Nomad Web – Best Practices and Managing Multiuser Environments
panagenda
 
AI Changes Everything – Talk at Cardiff Metropolitan University, 29th April 2...
AI Changes Everything – Talk at Cardiff Metropolitan University, 29th April 2...AI Changes Everything – Talk at Cardiff Metropolitan University, 29th April 2...
AI Changes Everything – Talk at Cardiff Metropolitan University, 29th April 2...
Alan Dix
 
Special Meetup Edition - TDX Bengaluru Meetup #52.pptx
Special Meetup Edition - TDX Bengaluru Meetup #52.pptxSpecial Meetup Edition - TDX Bengaluru Meetup #52.pptx
Special Meetup Edition - TDX Bengaluru Meetup #52.pptx
shyamraj55
 
IEDM 2024 Tutorial2_Advances in CMOS Technologies and Future Directions for C...
IEDM 2024 Tutorial2_Advances in CMOS Technologies and Future Directions for C...IEDM 2024 Tutorial2_Advances in CMOS Technologies and Future Directions for C...
IEDM 2024 Tutorial2_Advances in CMOS Technologies and Future Directions for C...
organizerofv
 
Ad

IBM Storage security and Key differences in FlashSystem 5000 family

  • 1. IBM duomenų saugyklos Duomenų saugumas įrenginio lygiu Donatas Kudrevicius Technical Sales Consultant Arrow ECS Baltic
  • 3. Internal Family IBM Flash System MIDRANGE HIGH-END ENTRY Scalability Performance FlashSystem 9500 FlashSystem 9500R FlashSystem 7300 FlashSystem 5300 FlashSystem 5045 SAS FlashSystem 5015 SAS NVMe NVMe NVMe NVMe
  • 4. Internal Tremendous performance with improved predictability More consistent I/O latency. Significant improvements in real world performance. 1.3x enhancement in bandwidth. Performance management is simpler. Performance metrics FlashSystem 5200 FlashSystem 5300 Improvement Real world IOPS* 270,000 400,000 1.45x Bandwidth - GB/s 21Gb/s 28GB/s 1.3x *16k block size, 70% reads, 30% writes, and a 50% cache hit (numbers subject to change)
  • 5. Internal Key differences in FlashSystem 5000 family FlashSystem 5015 2U height, AC or DC power SAS control enclosure → 24x SAS SSD / 10k RPM HDD or SAS back-end → 12x NL-SAS HDD 2-core Broadwell DE CPUs 64GB cache max 4x 1GbE on-board ports 8x host ports max – 16Gb FC / 10GbE* / 12Gb SAS 2,048 volumes 2,048 FlashCopy mappings 4PiB FlashCopy capacity Inline threat detection FlashSystem 5300 1U height, AC power NVMe control enclosure → 12x NVMe FCM4 / SSD / SCM Inline compression with FCM 12-core Ice Lake CPUs with QAT 512GB cache max 4x 25/10GBE flexible on-board ports with options: - SFP28, SFP+, RJ45 16x host ports max – 32Gb FC / 10GbE or 8x 64GbFC 8,192 volumes 15,863 Snapshots 10PiB Snapshot capacity Inline threat detection + RTD Encryption + Secure Boot Volume Group Snapshots - Safeguarded copy, Internal Scheduler HyperSwap + PBHA PBR Storage Insights Integration Embedded VASA Provider Vvols replication NVMe over FC or TCP TCT Powered by IBM Storage Virtualize *25GbE will be WFM April 24th on FS5015/FS5045 due to supply constrains FlashSystem 5045 2U height, AC or DC power SAS control enclosure → 24x SAS SSD / 10k RPM HDD or SAS control rnclosure → 12x NL-SAS HDD 6-core Broadwell DE CPUs 64GB cache max 4x 10GbE on-board ports 8 host ports max – 16Gb FC / 10GbE* / 12Gb SAS 8,192 volumes 8,191 Snapshots 4PiB Snapshot capacity Inline threat detection Encryption Volume Group Snapshots - Safeguarded copy, Internal Scheduler HyperSwap
  • 6. Internal Storage Virtualize: a powerful software stack for modernization Integrated • FlashSystem 5015 • FlashSystem 5035 • FlashSystem 5200 • FlashSystem 7300 • FlashSystem 9500 • FlashSystem 9500R Software Defined storage integrated with storage hardware Appliance • Heterogeneous storage virtualization • Consistent management • Ultimate flexibility • Participate in opportunities where no storage sales exist SAN Volume Controller Software Software Defined Storage (SDS) In the Cloud Removes Pain Points Enables over 500 heterogeneous storage systems to gain a wealth of consistent features • Brings consistent APIs to storage • Easy Tier (AI-based tiering) • All systems gain Compression • All systems gain Deduplication • All systems gain Encryption • All systems gain Replication • All systems gain easy Migration Consistent management and features to over 500 different storage systems for on-prem and in the cloud All systems gain a uniform portal to the cloud
  • 7. Internal Securing Your Data Security and resilience is built into the FlashSystem Family from the ground up Encryption Hardware encryption of data at rest FIPS 140-3 Level 2 Certified * Safeguarded Copy Create immutable point-in-time copies to quickly recover data after cyber attacks Separation of duties for prevention Unauthorized attempts to delete copies Works on-prem and in the cloud Replication Synchronous, asynchronous, asynchronous with changing volumes, active-active cluster Multi-factor authentication Allows additional user authentication methods through IBM Security Verify and other third-party providers
  • 8. Internal FlashSystem solutions include replication IBM Storage Virtualize also has a periodic asynchronous replication mode known as Metro Mirror Global Mirror Global Mirror with Change Volumes IBM Storage Virtualize provides synchronous replication known as IBM Storage Virtualize provides asynchronous replication known as
  • 9. Internal FlashSystem solutions include encryption Encryption of Data at Rest (EDaR) • XTS-AES-256, as defined in the IEEE 1619-2007 • FIPS 140-2 Level 1 compliant • Encryption with USB flash drives • Encryption with key servers Encryption of Data in Flight (EDiF)
  • 10. Internal FlashSystem solutions include snapshots FlashCopy® function creates a point-in-time copy Crash consistent - copy is created by the disk array, without stopping the application Application consistent - copy that synchronizes the operation of the disk array (flashcopy mechanism) with the application
  • 11. Internal A breakthrough in cyber resilience
  • 12. Internal The power of early detection Impact Time Recover fastest Respond fastest Primary Workloads Fastest recovery from hours to minutes Discover fastest 2 days 3 days 1 week 2 weeks 10 hours Seconds Minutes Hours 3 weeks An organization’s exposure from a cyber attack Recovery with Ransomware Threat Detection as data is written and rapid recovery of data IBM FlashSystem Cyber Resilience
  • 13. Internal The layout of an industry standard commodity SSD Controller/Logic Flash This is a single card (IS SSD) that is typically found in a 7mm form factor. For large IS SSDs they will routinely contain two circuit boards.
  • 14. Internal The layout of S / M FlashCore Modules NAND Flash Magnetoresistive Random Access Memory (MRAM) DRAM NAND Flash Capacitors for Power Loss Controller/Logic U.2 Connector Top Side Bottom Side
  • 15. Internal The impressive history of FlashCore Technology 2014 MicroLatency Module Proprietary interface, single- layer cell (SLC) flash, followed up with multi-layer cell (MLC) flash, and in both cases the data path is in hardware Multiple protection features, including ECC error correction, variable stripe RAID data protection, overprovisioning, and three-dimensional (AE3 flash modules) or two- dimensional (AE2 flash modules) flash RAID 2018 FCM1 NVMe interface, re- implemented into a standard 2.5” form factor, triple-layer cell (TLC) flash with inline 2-to-1 data compression and encryption with no performance penalty 2020 FCM2 NVMe interface, quad- layer cell (QLC) flash with better than TLC performance, inline 2-to-1 data compression and encryption with no performance penalty 2022 FCM3 NVMe interface, quad- layer cell (QLC) flash with SLC abilities, optimized with a “Hinting Architecture” to optimize data placement, with up to 3-to-1 inline data compression, encryption with no performance penalty, L and XL modules based on PCIe G4, 2024 FCM4 NVMe interface, quad- layer cell (QLC) flash with SLC abilities, optimized with a “Hinting Architecture” to optimize data placement, with up to 3-to-1 inline data compression and, encryption, with no performance penalty, all modules based on PCIe G4, and Ransomware Threat Detection
  • 16. Internal Ransomware Threat Detection With FlashCore Module Compression Statistics Encrypted payload detection Chi-Squared LBA Addressing and Sequencing Patterns Changes in Read / Write Throughput Shannon Entropy Processed on EVERY write with ZERO performance impact! 16 30+ data statistics analysed in detection engine
  • 17. Internal Ransomware Monitoring Architectural Overview IBM FlashCore Modules IBM Storage Virtualize AI Inferencing Engine Granular data analytics Trends / Summary Learn From Data Show Real-Time Data And Trends Storage Insights Pro External Tools Responses / Actions Volume Statistics Responses / Actions SOAR e.g. IBM Storage Defender © 2024 IBM Corporation Reinforcement learning
  • 18. Internal Can not be mapped to a host Immutable: Can not be written or read by an application Protected Copies of production volumes Thinly-provisioned, space efficient and point-in-time Built on existing FlashCopy snapshot technology Stored in a Safeguarded copy location: • Uses either Child Pool technology or copy resides in same pool as the source volume • Logical separation from other volumes • Capacity control • Access restrictions (separation of duties) Automatically created and deleted based on a predefined schedule Protected Copies of Data: Safeguarded Copy (SGC)
  • 19. Internal External software (CSM) runs on a client provided Virtual Machine or x86 server (Java App) Storage Virtualize handles automatic deletion of expired backups internally No external APIs on delete for security Safeguarded Policy contains the copy schedule (frequency) and how long to keep each copy (retention) Copy schedule: Minutes, Hourly, Daily, Weekly, Monthly Retention time: X days Safeguarded Copy Automation - IBM Copy Services Manager (CSM) Coordinate and catalog copies across multiple clusters Connects via SSH and uses CLI as Administrator user
  • 20. Internal Protecting the environment from ransomware Ransomware threat detection looks for potential ransomware attacks Storage Insights Pro analyzes FlashSystem IO statistics in real-time, looking for unexpected changes to IO patterns FlashCore Module 4 technology makes this alerting even faster, giving earlier warning to stop any attack Is there a potential ransomware attack happening? Which volumes are being attacked? Ransomware detection alerts can be received by QRadar QRadar, Defender or other SIEM software can trigger workflows to lockdown an environment
  • 21. Internal IBM Spectrum Copy Data Management (SCDM) Complete copy automation Create copies Snapshots, copies, clones Track copies Catalog Refresh copies Automated DR and dev-test refresh Use copies Map LUNS, spin up systems Transition copies Test Prod Test to production Delete copies Clean up
  • 22. Internal IBM CYBER VAULT Automation of recovery processes Recover Quick Data Recovery Safe Recover Point IBM Storage Defender IBM FlashSystem Protect Isolated & Immutable Snapshots (WORM) IBM Cyber Vault Detect IBM Storage Sentinel Automated Ransomware Detection
  • 24. Internal IBM FlashCore Technology 24 Default read levels Optimal read levels Read Calibration Garbage Collection Health Binning Flash Chips … SLC QLC … … SLC/QLC Tiering Error Correction FlashCore Modules (FCM) • FlashCore Technology drives FCM • FCM are the core building blocks for all NVMe FlashSystem storage arrays NVMe-based FlashSystem At the Heart of Quad Layer Cell (QLC) Enablement Characterization
  • 25. Internal 1. IBM FlashCore modules collect and analyse detailed ransomware statistics from every I/O with no performance impact 2. IBM Storage Virtualize runs an AI engine on every FlashSystem that is fed ML models developed by IBM Research trained on real-world ransomware The AI engine learns what’s normal for the system and detects threats using data from FCM 3. IBM Storage Insights Pro collects threat information from connected FlashSystems, alerts users and triggers SIEM/SOAR software to initiate a response Statistics are fed back to IBM to improve ML models IBM FlashSystem Ransomware Threat Detection Pipeline IBM Storage Virtualize IBM Storage Insights Pro
  • 26. Internal Storage Virtualize delivers common capabilities Storage System #1 ▪ Thin provisioning ▪ Snapshots ▪ Mirroring Storage System #2 ▪ Thin provisioning ▪ Flash Storage ▪ Compression Efficiency Features ▪ Thin provisioning ▪ I/O caching ▪ Compression and Deduplication ▪ Flash storage support ▪ Easy Tier ▪ Data migration Protection and DR ▪ FlashCopy ▪ Active-Active Data Center ▪ Synchronous Mirroring ▪ Asynchronous Mirroring ▪ Encryption ▪ Hot Spare Node (SVC) For All Of A Client’s Distributed Storage