1 w w w. e g n y t e. c o m Cloud-enable your Storage with EgnytePlus File Sharing Infrastructure White Paper Revised September 30, 2012
2 Table of Contents Cloud Storage 3 File Sharing and Collaboration 3 Attachments 3 Consumer Cloud Storage Services 4 File Sharing Infrastructure Requirements 4 Traditional File Sharing Infrastructure 5 Next Generation File Sharing Infrastructure 6 EgnytePlus Next Generation File Sharing 6 EgnytePlus Benefits 7 Expanding the Storage Tiering Model 8 Local Tier 9 Mobile Tier 9 Sharing Tier 9 Replication Tier 10 Archive Tier 10 Additional Features of the EgnytePlus 10 Complete Control 10 Permission (ACL) Enforcement 11 Synchronization 11 Granular Folder Selection 11 Enterprise-class Security, Data Protection and Compliance 12 EgnytePlus Summary 12
3 Cloud Storage Over the past decade, the progress of the cloud storage industry has directly tracked the growth of the high-technology industry. The maturation of technology, including cost-effective high speed WANs, high density disk drives, and the standardization of protocols has led to the increasing adoption of the cloud storage industry. File Sharing and Collaboration The advent of Network Attached Storage (NAS) in the mid-1990s to mid-2000s allowed IT departments to satisfy both user and corporate needs of centralized data storage. The commoditization of cloud storage services in the last 5 years has enabled IT departments to both change the economics of data storage as well as change the IT perspective - such that IT departments are now providing storage as a service, regardless of the storage implementation (internal architecture or cloud). Users expect their files to be backed-up and archived when stored under IT storage systems. In addition, various enterprise storage features such as thin provisioning, storage virtualization as well as cloud storage services make it appear to the end-user that the storage system has infinite capacity. This leads to a significant level of confidence in the reliability and availability of their data. However, in today s business world, employees no longer work individually. Collaboration and teamwork is de-rigueur. Thus, simple file storage is insufficient. In order to facilitate collaboration, the sharing of and accessibility of data has become a necessity. Attachments The first and easiest method to share files is through s. Users routinely attach files to s as a means of collaboration. However, this has drastic negative impact on the system. When a user attaches a file to an , the file is stored under the user s sent mail folder, as well as in the recipient s inbox folder. If there are 20 recipients of the attachment, 21 copies of the exact same file are created, clogging the system and taking up valuable storage space.
4 Another restriction of file sharing is file size limitations. Due to the increase in average file sizes, bandwidth limitations and increased risks of harmful attachments, administrators are limiting the size of attachments. The typical restriction is no more than 5 MB. Consumer Cloud Storage Services Consumer cloud storage services offer a limited amount of storage for free, with additional storage upgrades from subscription or referral. Some of these services directly enable file sharing by providing publicly accessible links to files stored in their accounts. Users are also able to share files by making account id and password available to collaborators. These consumer cloud services bypass corporate controls and business policies. The IT department is left with zero visibility, auditability or control over what happens to corporate data. Companies are quickly blocking these services to mitigate their risks. File Sharing Infrastructure Requirements To satisfy user demands, enterprises have five key requirements for scalable file sharing infrastructure: The ability to share many files The ability to share large files The ability to share with many collaborators The ability to share with many offices The ability to access on multiple devices
5 Traditional File Sharing Infrastructure To satisfy today s user requirements for file sharing, many IT departments are still implementing yesterday s technologies. For basic file sharing between sites, IT often deploys a dedicated site-to-site VPN, along with storage mirroring or replication software. This implementation is costly, complex to setup and maintain, and does not scale for large files or large volumes of files. VPNs are also used to provide employees access to files behind the corporate firewall. However, employee VPNs require VPN servers, additional per-user provisioning, and do not scale. In addition, VPNs do not provide the ability for employees to share files with non-employee business partners. For this requirement, IT departments deploy dedicated FTP servers. However, these servers require IT administrators to configure user names and passwords every time a file needs to be shared with a new employee, placing additional burdens on IT. The current toolset available to corporate IT allows for the delivery of a bare minimum level of file sharing support. However, these tools do not scale well, are costly to implement and maintain, and, worst of all, do not support today s plethora of devices.
6 Next Generation File Sharing Infrastructure Corporate IT departments are now tasked with meeting requirements from multiple constituencies: CIO ensure data integrity and reliability; prevent data loss or leakage Corporate IT easy to implement, easy to monitor, easy to audit and administer; scales instantly with changes in the business Finance low financial impact, especially when scaling Employees any time, any place, any device any size file sharing across multiple sites with multiple users both inside and outside the firewall To satisfy this diverse constituency requires implementing the next generation file sharing infrastructure. EgnytePlus Next Generation File Sharing The EgnytePlus platform is comprised of two components: Cloud File Server and Local Cloud enabled storage system.
7 The Cloud File Server is an infinitely scalable file storage and sharing service. Files can be accessed using any standard web browser (Internet Explorer, Firefox, Safari, and Chrome). Through the Egnyte web browser interface, users have access to a wide range of features, such as collaboration, content management, file sharing and backup. Those same features are available using the Egnyte mobile app for the iphone, ipad, Android, Windows Mobile, and webos devices. Advanced access to Egnyte s public cloud service is provided on both PC and Mac computers through mapped drives, which make the public cloud service, appear as a local drive. Users interact with their files using their native drag-and-drop and click-to-edit interface. Users can use an optional desktop sync service which provides full access to files even when Internet connectivity isn't available. When Internet connectivity is restored, files are automatically and seamlessly synchronized between your computer and the cloud file server. Egnyte Local Cloud is a thin enablement layer that communicates with local storage systems. Local Cloud replicates data between local storage and the cloud. Files on the Local Cloud are automatically synchronized with the Cloud File Server, providing users with flexible remote file access or fast local network access. Local Cloud is delivered as a VMware virtual storage appliance. Capable of running on either VMware vsphere 4 and 5 or VMware ESXi 4 and 5 on any existing or new storage system. Local Cloud requires two VMware virtual disks (vmdk). The first virtual disk contains the core applications, log files, and synchronization engine. The second virtual disk contains data synchronized to the cloud and exported locally via CIFS. The virtual disks can reside on any storage that is mountable by VMware, including locally attached, iscsi attached, Fibre Channel attached and NFS storage systems. Egnyte Local Cloud is provided as an installable OVA file. Once installed, configuration and management is performed through a simple web interface. Within minutes of installation, synchronization of files in the cloud begins, and users can mount the Local Cloud data drive via CIFS. EgnytePlus Benefits EgnytePlus with cloud-enabled storage provides: In-the-office experience from anywhere uninterrupted (online or offline) access, real-time collaboration across multiple teams and offices
8 Enterprise-class security 256 bit AES encryption during transmission and at rest, SSAE 16 compliant data facilities, audit reports, and robust multi-level file access and permissioning Focus on mobility and reliability mobile access, VPN -free environments, remote replication, data redundancy and disaster recovery Mobile Archive Sharing Storage (office 1) Storage (office 2) Expanding the Storage Tiering Model Historically, storage tiering was viewed through the lens of access speed, capacity and price. A tiered storage system contained a small, high performing, high cost tier (tier 1, fast cache), a larger, medium speed, medium cost tier (tier 2, on-line access), and a large, slow speed, low priced tier (tier 3, near-line access). EgnytePlus expands the tiering model of enterprise storage. Rather than considering speed of access as the main differentiator of the tiers, EgnytePlus considers the use of the tier as the major differentiator of storage tiers. The new tiering model then includes: Local Tier local access to the storage system from behind the corporate firewall (subdivided into speed of access) Mobile Tier sharing of files with mobile devices
9 Sharing Tier sharing files within teams, both behind and outside the corporate firewall Replication Tier multiple site-to-site replication Archive Tier file backup and archiving for historical use and regulatory compliance Local Tier The EgnytePlus platform maintains the Local Tier via Local Cloud. Local storage can be single-tiered or multi-tiered, which Local Cloud will interoperate appropriately. Mobile Tier The EgnytePlus platform delivers the Mobile Tier, enabling mobile device to access corporate data. All data that resides on Egnyte s Cloud File Server can be accessed by mobile devices through the Internet. Egnyte currently supports Apple ios devices (iphone, ipad), Google Android devices (Phones, Xoom, Galaxy, Nook, Kindle, etc.), Microsoft Windows Mobile devices and HP WebOS (Touchpad). As new mobile devices are released, or mobile operating systems are revised, Egnyte s expert mobile device team keeps the mobile device apps up-to-date, eliminating the need for IT departments to limit mobile support to specific devices and versions. Egnyte also has partnered with leading mobile app developers such as QuickOffice, Office 2 Plus, Readdle, GoodReader, and Apple to integrate Egnyte s cloud file sharing service with mobile apps. Users can share files, download files directly to the mobile device, edit and print office and other documents as well as upload files from the mobile device to the cloud. Sharing Tier The EgnytePlus platform delivers the Sharing Tier, enabling employees to share files among themselves or with business partners. Employees can share links to any file and folders they have permission over. Links can be expired by time or number of clicks, preventing inadvertent data leak. Users of Microsoft Outlook can use an extension that automatically captures attachments, transferring the attachment to the cloud and sending the recipient a link to the file.
10 Replication Tier Implementing Egnyte Local Cloud at two sites automatically delivers site-to-site replication, enabling the Replication Tier. No additional VPN configuration, mirroring or replication software is required. Each Local Cloud instance synchronizes to Egnyte s Cloud File Server. The Cloud File Server becomes the master, and each instance can synchronize only the subset of files necessary at that site. Archive Tier The EgnytePlus platform automatically enables both backup and archive in the Cloud File Server. Egnyte's Cloud File Server is hosted in world-class SSAE 16 compliant data centers. All data is encrypted using 256-bit AES encryption over SSL during transfer and at rest. Egnyte's architecture has built-in redundancy, maintaining multiple copies of your data to protect against hardware failures and disasters. In the case of disaster recovery, all your files, including past versions, can be instantly retrieved from the cloud. In addition, with Local Cloud, files are replicated to local storage, and are available even in the absence of Internet connectivity. The Cloud File Server never overwrites files. Instead, whenever a file is modified, a new version is stored on the Cloud File Server. Previous versions of files are easily retrieved, and system administrators can control versioning and data retention policies. With the EgnytePlus platform, the IT department never has to implement a separate backup and archive system. Instead, IT can rely on the Archive Tier delivered by EgnytePlus. Additional Features of the EgnytePlus Complete Control EgnytePlus enables the administrator to control user access levels and monitor file usage with real-time audit reports. User permissions and authentication are synced locally and in the cloud, ensuring that only the right users have access to the right files. For organizations with Single Sign-on (SSO) authentication, Egnyte integrates with VMware Horizon, OneLogin, Ping Identity, and Citrix CloudGateway. SAML 2.0 compliance enables integration with SSO solutions that utilize this standard. E gnyte also enables directory service integration with Active Directory and LDAP for centralized authentication management behind the firewall.
11 Permission (ACL) Enforcement With the EgnytePlus infrastructure, it is crucial that permissions are uniformly enforced both in the cloud and through local storage. All EgnytePlus solutions offer strict permission enforcement from any user access point, a capability unique to Egnyte. Permissions set in the cloud are enforced locally by the synchronization engine. All permissions rules allowed in the cloud (inheritance, exclusion, user and group level access) are seamlessly mirrored to the local storage. EgnytePlus effects permission changes in the cloud by receiving and processing change events (e.g. a permission level was changed from read/write to read only). ACL enforcement is achieved by a patented permission enforcement module that traps all file system access. Synchronization The synchronization engine selectively compresses files based on type and size to minimize bandwidth. The amount of reduction is based on the compression ratio (e.g % with Office documents) and overhead incurred to compress the file. After the initial sync, all subsequent synchronizations process only the events that have occurred since the prior synchronization. Since event processing is proportional to the number of outstanding events, the synchronization time is independent of the data set size. Administrators have the ability to configure the synchronization frequency of each Local Cloud instance. This allows every office to customize the sync rate according to their needs. The synchronization frequency can be set at a defined schedule such as after business hours to optimize bandwidth, or at intervals ranging from several minutes to real time. Granular Folder Selection Egnyte provides administrators with the ability to select which folders are synced with the local storage at each office location (each Local Cloud instance). This allows for efficient file sync of folders and subfolders at any level of data hierarchy, so only the important files are replicated for online and offline use.
12 Enterprise-class Security, Data Protection and Compliance Egnyte is focused on complete end-to-end data protection through the five stages of security: Physical, Network, Transmission, Access, and Data. In addition to providing maximum security under each category, Egnyte continually maintains state-of-the-art technology and performs ongoing threat management. Regardless of the access method, all users must go through the authentication process before accessing their files. Once authenticated and authorized, user permissions are granularly enforced at every folder and sub-folder level, ensuring only the right users have access to the right files. Egnyte has adopted the transmission practices of the most secure institutions in the world by using 256- bit AES encryption to encode data during transmission and at rest. In order to police traffic between public networks and the servers where company data resides, Egnyte employs ICSA-certified firewalls and a Network Intrusion Detection System that monitors and blocks hackers, worms, phishing, and other infiltration methods. Egnyte offers FINRA compliant online storage solution with complete end-to-end data protection. Egnyte enables full compliance under SEC 17a, 31a, 204 Recordkeeping regulations for confidential data storage, retention, digitalization and accessibility. Egnyte understands the importance of the confidentiality and protection of an individual's Protected Health Information (PHI). Egnyte's comprehensive data security enables HIPAA compliance for healthcare, pharmaceutical and biomedical businesses. Egnyte complies with the EU Safe Harbor framework as set forth by the Department of Commerce regarding the collection, use, and retention of data from the European Union. EgnytePlus Summary EgnytePlus is the next generation file sharing infrastructure that delivers these requirements, combining the accessibility and flexibility of cloud storage with the "in-the-office" experience and performance of local storage. With this "best of both worlds" approach, files on local storage are made available for sharing. Files can be stored, shared, and accessed from anywhere, with any computer or mobile device. EgnytePlus transforms local storage into a central collaboration hub, allowing multiple teams, offices and business partners to easily work together as if they re in one location, and delivers file sharing at scale.
13 About Egnyte Over 1 billion files are shared daily by businesses using Egnyte. Egnyte s unique technology provides the speed and security of local storage with the accessibility of the cloud. Users can easily store, share, access and backup files, while IT has the centralized administration and control to enforce business policies. Egnyte, founded 2007, is based in Mountain View, California and is a privately held company backed by venture capital firms Google Ventures, Kleiner Perkins Caufield & Byers, Floodgate Fund, and Polaris Venture Partners. For more information, please visit or call EGNYTE. Contact us to learn more about EgnytePlus.
Egnyte Cloud File Server White Paper Revised July, 2013 Egnyte Cloud File Server Introduction Egnyte Cloud File Server (CFS) is the software as a service layer that powers online file sharing and storage
www.egnyte.com The Hybrid Cloud Advantage White Paper www.egnyte.com 2012 by Egnyte Inc. All rights reserved. Revised June 21, 2012 Why Hybrid is the Enterprise Cloud of Tomorrow All but the smallest of
Enterprise Mobility Management: A Data Security Checklist Executive Summary Secure file sharing, syncing and productivity solutions enable mobile workers to access the files they need from any source at
IBM Software Thought Leadership White Paper June 2012 Enable and protect business-ready cloud infrastructures IBM Tivoli Storage Manager and Front-safe Portal enable security-rich, cloud-based data protection
Moving to the Cloud: What Every CIO Should Know CONTACT SALES US: 1.877.734.6983 UK: +44 (0)845.528.0588 www.egnyte.com WHITEPAPER Overview Enterprise data storage needs are growing exponentially, doubling
VMware Horizon 6.0 This document supports the version of each product listed and supports all subsequent versions until the document is replaced by a new edition. To check for more recent editions of this
Acronis Backup & Recovery 11 Next Generation Physical, Virtual, Cloud Backup, Disaster Recovery, and Data Protection Solution from Acronis An Acronis White Paper Copyright Acronis, Inc., 2000 2011 Table
Product Overview for Windows Small Business Server 2011 December 2010 Abstract Microsoft offers Windows Small Business Servers as a business solution for small businesses by providing a simplified setup,
G00250008 Critical Capabilities for Mobile Device Management Software Published: 23 May 2013 Analyst(s): Phillip Redman The critical capabilities for MDM take a deep look at the top technologies in MDM
VirtuousIT Ltd 1 Table of Contents 1 Introduction 3 The Data Explosion 3 The Importance of Rapid System Recovery 3 2 The VirtuousIT Solution 4 3 RecoveryShield - Solutions 5 Large Business 5 Small Medium
One Stop Data & Networking Solutions PREVENT DATA LOSS WITH REMOTE ONLINE BACKUP SERVICE Prevent Data Loss with Remote Online Backup Service The U.S. National Archives & Records Administration states that
REMOTE BACKUP-WHY SO VITAL? Any time your company s data or applications become unavailable due to system failure or other disaster, this can quickly translate into lost revenue for your business. Remote
THE BENEFITS OF CLOUD NETWORKING 1 White Paper The Benefits of Cloud Networking Enable cloud networking to lower IT costs & boost IT productivity 2 THE BENEFITS OF CLOUD NETWORKING Table of Contents Introduction
Security Architecture Guide A holistic approach to service virtualization A Soonr White Paper Dedicated Geo-Redundant Data Center Infrastructure Soonr takes a holistic approach towards security, incorporating
Service Overview Business Cloud Backup Techgate s Business Cloud Backup service is a secure, fully automated set and forget solution, powered by Attix5, and is ideal for organisations with limited in-house
THE NEXUS IDENTITY WHITE MANAGEMENT PAPER SYSTEM NEXUS The RSA Security Identity Management System A Technical Vision for Identity and Access Management WHITE PAPER The RSA Security Identity Management
Redefining Microsoft SQL Server Data Management APRIL Actifio 11, 2013 PAS Specification Table of Contents Introduction.... 3 Background.... 3 Virtualizing Microsoft SQL Server Data Management.... 4 Virtualizing
Introduction to Windows Storage Server 2003 Architecture and Deployment Microsoft Corporation Published: July 2003 Abstract Microsoft Windows Storage Server 2003 is the latest version of Windows Powered
The Definitive Guide tm To Cloud Computing Ch apter 10: Key Steps in Establishing Enterprise Cloud Computing Services... 185 Ali gning Business Drivers with Cloud Services... 187 Un derstanding Business
Microsoft Corporation and HP Using Network Attached Storage for Reliable Backup and Recovery Microsoft Corporation Published: March 2010 Abstract Tape-based backup and restore technology has for decades
QLIKVIEW AND THE CLOUD A QlikView Technology White Paper July 2012 qlikview.com Table of Contents Overview 4 Who Is This Paper For? 4 Cloud Terminology and QlikView 5 Software as a Service - SaaS 6 QlikView
Cloud Computing Tutorial CLOUD COMPUTINGTUTORIAL by tutorialspoint.com tutorialspoint.com i ABOUT THE TUTORIAL Cloud Computing Tutorial Cloud Computing provides us a means by which we can access the applications
The Critical Security Controls for Effective Cyber Defense Version 5.0 1 Introduction... 3 CSC 1: Inventory of Authorized and Unauthorized Devices... 8 CSC 2: Inventory of Authorized and Unauthorized Software...