Webinar about the new IBM Cloud Object Storage and how to build an enterprise storage solution with huge collaboration capabilities. Includes a live demo by Jim Liddle from Storage Made Easy. Full video with demo -> https://youtu.be/YeOkIzzyI-8
2016-12-06 IBM Cloud Object Storage as an enterprise file fabric
1. Empower your end users to use
IBM Cloud Object Storage
IBM Cloud Object Storage & Storage Made Easy
Manuel Daza
Cloud Platform Sales
Specialist Europe
IBM Cloud
Jim Liddle
CEO
Storage Made Easy
2. • About IBM Cloud Object Storage
• About Storage Made Easy
• The Challenge
• Joint Solution
- Secure Enterprise File Fabric
- Effects of Shadow IT
- Providing secure experience
- Secure collaboration
- Protect against Ransomware
- What SME brings to the IBM Cloud
• Demo
Agenda
4. IBM Cloud Services has its own network that
connects its data centers.
47 centers WW
Global private network
Free Traffic between DC
IBM Cloud Network
Network map with all IBM Cloud data centers.
14. • Company founded 2009
- First product launched end 2012
• What We Do
- Provide a file fabric to unify, manage and secure private and
public data stores
- Focused on compliance and governance for service providers
and enterprise companies
- Particular focus on making object storage accessible and
usable within the enterprise
Storage Made Easy
-EXAMPLE CUSTOMERS-
100+ Enterprise on-premises
customers & ISP’s
300,000+ users hosted
5,000+ businesses using
hosted SaaS
15. • Object storage is the core component of the next generation of data storage technology.
• With object storage companies will be able to store more data at lower cost.
• In addition to structured data, a vast amount of this data will be unstructured data.
• Unstructured data grows 40-60% every year
• Enterprise are accountable for 80% of that data
Data we create and copy annually will reach 44 zettabytes (ZB) by 2020 (44
trillion gigabytes)
Approximately one-third of this data will pass through the cloud.
The Challenge
16. Enterprises today have a huge challenge with unstructured data growth and corporate governance
and compliance of files.
IBM Cloud and SME solve these challenges:
• Multiple Access Options
• Content Collaboration
• Data Governance
• Security, Data Protection and Compliance
Storage Made Easy brings Enterprise File Governance and Secure Sharing
Services to IBM Cloud Object Storage Environments
Joint Solution
17. Secure Enterprise File Fabric
The effects of Shadow IT and unsanctioned
third-party applications in the enterprise
18. Corporate Data is silod and fragmented
• Company data is spread across silos
- On premise in filesystems and corporate apps
- And now in cloud storage and SaaS applications
- 58% of users use 3rd-party cloud apps for sharing
• Challenge for security & compliance
- Vendors control data security
- No control over physical location of data
- Difficult for IT to enforce policies
- 70% of CIOs are concerned about data security
• Control of data shared outside of company
- 65% of users use unsanctioned file sharing tools
- How does IT enforce encryption, sharing or retention policies?
- How do we track who used, shared or downloaded assets?
Google
Dropbox
Private
cloud
19. Secure Enterprise File Fabric
Providing a consumer grade user
experience but maintaining strict
privacy and security requirements
20. The SME Solution
Unified Access
& Sync
From All Devices
Desktop & Mobile
Off Premise
Providers
Over 55+ Supported
Google
Mobile Apps
+Share from O/S
Desktop Apps
Cloud Drive
Office/Mac Mail
Unify. Synchronize, Backup, Archive
Collaborate. File sharing, Workspaces, Comments, Locking, Expiration
Secure. Encrypt, Secure Workspaces, Restrict by Location, Geo-Location or Device
Audit. Audit watch, all File Events, Geo-Location
Search. Full text search across clouds
Scale-out. Expand storage as amount of data grows
Cost. 85% of enterprises store data in the Private Cloud
Enterprise
Private Cloud
Public CloudEnterprise Apps
21. Secure File Sharing
• Password protected
• Time Expiry
• Limit downloads
User Controlled encryption
• SHA-256Audit
• Excel Compliance hand-off
• Output to Syslog format
Cloud Governance
• Set Policies
• Control all sharing features
• GEO IP Controls
File versioning locking,
trash
Legal Hold
DLP
Data security features
22. Secure Enterprise File Fabric
Secure approaches to providing internal
and external collaborators with file
access
23. Web office editing
Cloud-to-desktop editing
File Commenting
(+ notifications)
Single Sign on Assured
(LDAP / Active Directory)
Secure File and Folder
Sharing (+ versioning &
notifications)
Bookmark links
(& notifications)
Project Workspaces
(virtual collaboration hubs)
Built-in Collaboration
PDF Annotation editing
26. What SME brings to the IBM Cloud
SME can be used with IBM Object Storage to:
• Turn IBM Cloud Object Storage into an enterprise corporate drop box.
• Enhance IBM Cloud Object Storage with business level auditing and governance.
• Enable IBM Cloud Object Storage to be accessed over WebDAV, FTP, SFTP and S3.
• Integrate IBM Cloud Object Storage with Active Directory and LDAP for Single-Sign-On.
• Integrate content search of all unstructured data ie. stored documents, video and audio.
• Provide an integrated desktop experience with drives, office and outlook integration
28. Key Contacts
Manuel Daza @dabarsm
Cloud Platform Sales Specialist Europe
IBM Cloud
manuel.daza@ie.ibm.com
Giada Ligato
Sales Director
Storage Made Easy
giada@storagemadeeasy.com
Key Takeaway:
IBM Cloud is uniquely designed to be the platform for business innovation and cognitive solutions
Speaking Points:
We have five guiding principles that shape the design of our cloud that we believe are essential for your cloud success:
DevOps Productivity to give you the speed to innovate, experiment and continuously deliver the things you need
Hybrid Integration to build on what you have today & only change what needs to change
Powerful, Accessible Data & Analytics to get closer to the customer and to make smarter decisions in real time.
Cognitive Solutions to go to the next level in natural human engagement and deeper understanding of dark data
Choice with Consistency because where and how you develop and deploy data and apps does matter
Asking what is a cloud platform is like asking what is an airplane.
An airplane is a lot of things: engines, cockpit, control systems, etc.
Put together it’s a device to fly from point A to point B safely.
So when you talk about IBM’s cloud platform
Bluemix is the cockpit - It’s where you fly the cloud
If you are a developer and you wanted to use any of these capabilities, you access them through Bluemix which is our development environment
Just like a pilot has to know their cockpit, a developer has to know Bluemix to be successful with our cloud.
What does Bluemix let you access?
First there is the infrastructutre layer.
Like all cloud providers we have multiple data centers – over 45 data centers around the world,
We have our own network that we wrote from layer 3 up – meaning we buy lit fiber and we right the rest of the network.
And you can go and access compute, storage, networking,
Many people talk about how commoditized infrastructure is, but infrastructure does matter.
How you design your data center and your cloud data center has significant impact on the performance of different types of workloads.
There is a lot of design thinking going on in infrastructure to provide the options that optimally meet the needs of different types of workloads.
That’s the first part of the cloud and everything rests on that.
The second part is the DevOps tooling where we let you build applications the way you should build applications in the cloud which is not just agile, it is agile, not just through Devops, it is with DevOps, but it’s continuous integration and continuous deployment and microservices architectures.
One of the many features here is something called “active deploy” which is a capability to let the developer put the next version of their software into production without taking anything down and without any breaks or downtime.
Next is integration and hybrid
It is your ability to get from your cloud app to anywhere else you want to go.
If you want to go behind your firewall, it will go behind your firewall. We have APIs of ours, we have APIs of our business partners,
For example APIs that allow you to access data on a z system behind the firewall from within the cloud because that’s where the data is.
Another example. You have a mobile app written in the cloud. The DB you need to access is behind your firewall. You need to get to that data – how do you do it? You invoke the capabilities in the integration and API management area to do it.
Another example. I want to talk to another cloud – how do I do that? You invoke the capabilities there as well. We have connectors to all the major clouds. So your developer can just invoke that capability and talk to another cloud.
And then there is the domain services – a rich catalog of applications and data services.
Unlike most of our competitors, we don’t just provide tools, we provide tools and more.
We provide solutions. Watson health is a solution. If you want to be a more efficient provider of health services. If you want your radiologist to be able to process more and more accurately a number of patients, you access that capability prebuilt in our cloud at that layer.
It’s not, “go build it yourself, here’s the instruction packet,” for things we consider differentiation, in particular business process areas, we have the solution in the cloud.
We have things like blockchain, Blockchain is applicable to logistics and finance for example. We will have not just that blockchain capability for you to build whatever you’d like, but we’ll have the capability for blockchain to do trade finance.
That’s the picture of the cloud platform, while it is complicated under the covers we make it simple and easy to use and tap into all the capabilities through Bluemix
How to the five principles apply to the IBM cloud platform.
Choice with consistency – do you want to run in your datacenter, do you want to run dedicated in our data center, or do you want to run shared public in our datacenter?
It’s going to be OpenStack, OpenStack, OpenStack
Cloud Foundry, Cloud Foundry, Cloud Foundry
Bluemix, Bluemix, Bluemix
Your developers sitting behind your firewall deploying applications in your private cloud are going to work in the same exact way as a developer in our public cloud deploying shared applications
Choice – you put it wherever you want it, Consistency – it’s the same environment no matter where you put it so your developers don’t have to learn multiple environments.
Hybrid integration. 95% of the applications you will build in the cloud, unless it’s just a dev/test environment for you are going to end up having to access something behind your firewall. We’ve made it easy to do that. We’ve pre-written the connectors. If you want to write your own connectors – go ahead, but it’s usually easier just to tap into the connectors we’ve already built.
DevOps Productivity – we’ve talked about the ability of these tools that are mostly open source products that allow you to build microservice-based architected applications.
Powerful accessible analytics gets to the domain services layer. We have a data scientist experience. It’s a way you can do collaborate data science work between data scientists.
Finally, cognitive solutions – there is a reason it’s right in the middle.
We think more than anything else, where we break from the pack in our ability to provide solutions to our customers is around cognitive - with the understanding that you must have all of the rest of this…. You know if you have a great cockpit in your airplane and your engines fail, you are not going to be in good shape. You have to have the whole airplane – and the special sauce we have is cognitive.
4
Today, as companies take actions to drive Digital Transformation - technologies like Cloud, Mobile, IOT, Social, Analytics and Cognitive will generate content like we have never witnessed before. And that content will invariably be unstructured content – audio, images, video, scans, office documents. To understand that simply look at your mobile device. Think of applications like instragram, snap chat, facebook, your banking application. They are all providing interaction with unstructured content. And lest we think this is a “consumer” issue. Enterprises want to build engagement with employees, with clients, with partners. So this will lead to even more unstructured content to manage and to leverage.
Driven by market forces of cloud, mobile, IoT, social engagement, every organization is undergoing a digital disruption that is revolutionizing every interaction.
•Front-line decision making: Mobile apps have moved decision making power to the point and moment of interaction
•Insight-driven processes: Non-traditional data create new business moments and opportunities
•API economy: Services are being composed across a broader ecosystem
So data – unstructured data is at the heart of your business. It represents the IP the capital of your business.
How you manage it, store it, access it, employee it is essential.
Organizations need a storage architect tuned to the needs of business. They need a modern architecture, not hindered by “heavy” models of the past.
So what’s wrong with what we have today?
What’s wrong with just using the storage solutions that we have used for years?
Simple
Those systems were not designed for the scale, for the content diversity, for the speed and for the economic realities of business today.
Traditional on prem systems – RAID, Block, Storage – were and continue to be optimized for structured content. They have key purpose. But when you start to employ them for workloads, and content that they were not to designed for – thigs start to go sideways. These systems become prohibitively expensive and rigid.
On the other hand – we have the cloud, and storage on the cloud. Simple Storage. And although this category of solutions are attractive. They have issues as well. For example – cloud services are easy to procure (swipe a credit card and go), they have seemingly infinite scale… But they are challanged with a lack of transpraency. Where is your data? Do you know? Does it matter? What country is it in? And for some applications that’s OK. But for others - where knowing where data is storred - that is an issue.
Another issues is that a pure cloud storage solution is not built to support the diversity of content, the diversity of compliance requirements, the performance demands that are required. They are a ONE SIZE FITS ALL approach that offers little to NO choice!!
And they proprietary – and as it’s oftentimes hard to get data into the cloud – the barriers to exit lock you in.
So both models are challanged to handle the requirements of business today.
Object storage is the optimal way to store, manage, and protect unstructured content. Unstructured data represents the content that we use in many of our favorite applications – Think of Instagram, Pinterest, - Mobile, Collaborative applications – where we share pictures, videos, audio, etc. All of those require object storage.
Common use cases include archive, back-up, large content repository for video/images, born-on-cloud social and mobile workloads, , advanced analytics and IoT and cognitive app workloads.
Enter IBM Cloud Object Storage, which can give you all the benefits of private, secure on-premises storage with the economics of the public cloud. And the choice to deploy as private, public or hybrid network depending on your needs.
IBM Cloud Object Storage employs the phenomenal technology that came into IBM via the acquisition of Cleversafe in 2015. Cleversafe made a name for itself on prem. It was and continues to be deployed to address peta and exabyte scale – and to do so in an efficient, secure, reliable manner.
As IBM Cloud Object Storage we offer the technology across a spectrum of deployment options. Whether it’s within your data center for applications that require higher performance or for applications and data that require that they be in your data center, managed by your staff, and adherent to your IT processes, or government requirements.
Additionally IBM Cloud Object Storage is delivered across the ever-expanding network of IBM Cloud data centers around the world – for born—on-the-cloud applications that need the data in close proximity to the compute, or for applications that need cost effective active archiving.
And IBM Cloud Object Storage is inherently hybrid. So you can mix and match location across on and off prem – to dial in the exact characteristics that make sense for your enterprise.
All this translates into a modern object storage technology – designed for the applications of today and tomorrow. IBM Cloud Object Storage is Flexible. Scalable. Simple.
Key Takeaway:
IBM Cloud Object storage offers the most comprehensive portfolio of offerings as any vendor in the industry and the flexibility to deploy on-premise, cloud and/or hybrid for specific workloads for your business
Speaking Notes:
Starting with On-Premise which is designed for single tenant deployments in the client’s datacenters. This offering provides software and either IBM hardware or qualified 3rd party hardware in the client’s datacenter. The On-premise offering provides the client total control of the object storage system and can be designed to deliver specific performance and durability requirements. The client’s applications are connected to the object storage system via REST based APIs over the clients network.
The Dedicated offering provides clients with a single tenant model in the many IBM Cloud datacenters worldwide. This offering is ideal for clients that require specific performance for a cloud based solution or have a compliance requirement for a single tenant offering. Of the major cloud providers, only IBM offers the Dedicated model which allows clients to manage the system or have IBM manage the system for ultimate flexibility. The Dedicated model offers a OPEX business model which may be attractive for large clients that have that need.
The Public cloud offering is a multi-tenant offering that enables clients to pay for storage as they consume it. This offering provides clients with the ultimate flexibility for consuming storage in various locations around the world and with flexible resiliency models including Regional and Cross Regional models. For those clients that utilize IBM Cloud datacenters for compute, analytics or other services, the Public offerings offer direct connectivity to the object storage in multiple locations. The Public offerings are fully managed by IBM personnel.
Finally, only IBM offers a truly Hybrid configuration that enables clients to mix on-premise and dedicated to enable a flexible configuration for clients that need additional datacenter space and site fault tolerance. The Hybrid configuration enables clients to take advantage of multiple IBM datacenter locations to easily expand their footprint and have a fully managed solution from IBM.
Speaker Notes:
With traditional storage, a single 1TB object is replicated three times in order to ensure data protection.
Three complete copies of the object, plus overhead are distributed and maintained in separate locations in case of failure and disaster. Rsulting in 3.6 TB of total storage consumed.
With IBM COS, there is no need to store and replicate data in different systems. A single 1 TB of object storage is encrypted, sliced but never replicated.
Slices are distributed geographically for durability and availability.You can lose some number of slices due to failure or disaster, and still quickly recover 100% of your data.
IBM COS requires less than half of the storage capacity and up to 70% lower TCO.
Key Takeaway:
Bottom line, IBM COS is just as reliable, less complex and more cost-efficient than traditional storage.
Key Takeaway:
Bottom line, IBM COS is just as reliable, less complex and more cost-efficient than traditional storage.
Scalability: IBM COS software has been tried and tested at web-scale with production deployments exceeding up to 100 PBs of capacity at multiple customers, and the ability to scale to Exabytes (EB) while maintaining reliability, availability, manageability, and remaining more cost-effective. Whether your current needs are less than a Petabyte (PB), 10 PBs, or hundreds of PBs, the IBM COS solution can help meet that requirement due to the following capabilities.
Security: From built-in encryption of data at rest and in motion to a range of authentication and access control options, the IBM COS solution includes a wide range of capabilities designed to help you meet your security requirements. These security capabilities have been implemented to help enable better security without compromising scalability, availability, ease of management, or economic efficiency.
Transmission and storage of data is inherently private and is designed with security. No copy of the data resides in any single disk, node, or location. Data is encrypted in motion using TLS and at rest using SecureSlice encryption.
Reliability & Availability: In an IBM COS System, the reliability and availability characteristics of the system are configurable. For extremely demanding applications, reliability of 16 nines and availability of 8 nines can be provided. More commonly, customers can configure for more typical levels of reliability and availability and potentially achieve economic savings as a result. The configurability of the IBM COS System allows you to choose the combination of reliability, availability, and economic efficiency that best suits your requirements. Data durability is designed to be maintained over time by built-in integrity checking and self-repair capabilities.
The IBM COS Information Dispersal Algorithm (IDA) is designed to enable durable storage, helping provide reliability and availability without storing multiple copies of the data. Availability and reliability are maintained in spite of a potential failure of hard drives and other components, complete failure of IBM COS System nodes, and site outage or destruction.
Manageability: The manageability of an IBM COS System helps enable storage administrators to handle up to 15X the storage capacity, freeing time for them to invest in other tasks. The IBM COS System is designed to provide always-on availability and can continue to serve storage applications while completing tasks that would require scheduled downtime in the majority of traditional storage systems. Software upgrades, hardware maintenance, storage capacity expansion, hardware refresh and physical relocation of the storage system are all supported with virtually zero downtime.
Efficiency: AS IS IN THE SLIDE
15
16
https://www.dataprivacyandsecurityinsider.com/2016/10/the-state-of-file-sync-and-share
32% have no cloud-sharing standards70% of CIOs say Cloud Data Security is a major concern.– Goldman Sachs Equity Research
Security
Vendor controls security
No control over physical location of data
IT Control
No single sign on (risk on employment termination)
IT can’t enforce policies over for example encryption, sharing or retention
Compliance
Mixed corporate and personal data
Can’t trace who used, shared or downloaded assets
SME offers a “blanket” that enterprises can privately apply to wrap around all their data: on premises or on a third party software vendors’ cloud. Research shows that majority of the enterprises use private cloud for sync & share storage.
SME integrated w/ IBM Cloud scale-out storage appliance provides a purposefully build, collaborative, secure, searchable, scalable and cost efficient synch & share solution.