In the ever-evolving landscape of cybersecurity, organizations face an array of threats and trends that demand robust solutions. The National Institute of Standards and Technology (NIST) has provided a fundamental framework for cybersecurity, consisting of five pillars: Identify, Protect, Detect, Respond, and Recover. Dell PowerStore, a cutting-edge storage solution, stands as a formidable ally in this digital battleground, strategically aligning with each of these pillars to provide comprehensive security measures.
In this article we will explore how PowerStoreOS 3.6 (the latest version at the time of writing this article) helps organizations Identifies and Protects against threats, in ways that exceed even the most stringent requirements of the U.S. Federal Government and Department of Defense (DoD). Its features enable an authentic, quick and seamless Zero Trust experience, resulting in the highest level of Cyber-resilience with data.
As we will see, PowerStore products are backed by the most stringent corporate compliance and security regulatory requirements including FIPS 140-2 validation, Common Criteria, STIG hardening (Security Technical Implementation Guides), and the U.S. Department of Defense Approved Products List certification to name a few.
Authentication Features
PowerStore adopts a multi-faceted approach to authentication, recognizing the critical role it plays in overall cybersecurity. Role-Based Access Control (RBAC) permits certain actions based on user type as opposed to certain access to files. Challenge Handshake Authentication Protocol (CHAP) enhances the security of data transmission, preventing unauthorized interception. File Level Retention adds an extra layer of protection by allowing organizations to control the lifespan of individual files, ensuring sensitive data isn’t retained longer than necessary.
Advanced Data Security
The cornerstone of PowerStore’s data security lies in its robust encryption mechanisms. With support for both in-flight and at-rest encryption, the system ensures that data is safeguarded throughout its lifecycle. More specifically, Data at Rest Encryption (D@RE) in PowerStore uses FIPS 140-2 validated self-encrypting drives (SEDs) by respective drive vendors for primary storage (NVMe SSD, NVMe SCM, and SAS SSD).
PowerStoreOS 3.x also supports FIPS 140-2 on the NVMe NVRAM write-cache drives. With PowerStoreOS 3.0 and above, all PowerStore models are FIPS 140-2 compliant.
Secure snapshots and recovery mechanisms provide a safety net against data loss, allowing organizations to revert to a previous state in the event of a cyber incident. This capability not only aids in recovery but also serves as a proactive measure against ransomware attacks, mitigating potential damage.
Transmission/Communication of Data
PowerStore prioritizes secure data transmission through protocols such as Secure File Transfer Protocol (SFTP) and Secure Shell (SSH – not enabled by default and not recommended but still supported for certain contingencies). These protocols encrypt data during transit, safeguarding it from potential eavesdropping or interception. Additionally, PowerStore supports secure replication, allowing organizations to replicate their data securely across geographically dispersed locations without compromising its integrity.
Auditing/Secure-Remote Logging
Maintaining visibility into system activities is crucial for early threat detection. PowerStore facilitates this through robust auditing and secure remote logging features. Organizations can monitor and audit user activities, providing insights into potential security breaches. The ability to securely log events remotely enhances the system’s transparency, allowing security teams to analyze logs without being physically present at the data center.
Enhancing Security in more demanding scenarios
PowerStore further extends its security capabilities by integrating with CloudIQ, a cloud-based analytics platform. CloudIQ provides real-time performance metrics, enabling organizations to monitor the health and performance of their PowerStore infrastructure. Capacity anomaly detection ensures timely identification of unusual storage patterns, potentially indicative of security incidents. By leveraging CloudIQ, organizations can enhance their overall security posture, gaining actionable insights into their storage environment’s performance and potential threats.
To increase resiliency even if data is compromised, PowerStore’s new PowerProtect DD integration lets users create PowerStore snapshots directly on both cloud-based or on-prem versions of Dell’s PowerProtect DD series appliances, the industry’s leading data protection solution. PowerStore’s secure snapshots and PowerProtect DD integration give you great ransomware protection right out of the box.
The above impressive array of security and compliance features is now in complete alignment with the Common Criteria (CC) set of guidelines and specifications of the US Department of Defense Information Network Approved Products List (DoDIN APL), ensuring our products meet the highest security standard for government and critical infrastructure deployments.
Robust Security Features Increase your PowerStore Value Proposition
Dell PowerStore stands as a reliable guardian of data in the face of evolving cybersecurity threats. It ensures a holistic approach to cybersecurity – from identifying potential risks to recovering from unforeseen incidents. Its emphasis on secure snapshots, data encryption, and robust authentication features fortifies organizations against an array of cyber threats.
The integration with CloudIQ elevates PowerStore’s security capabilities, providing organizations with a comprehensive solution that not only safeguards their data but also empowers them with insights into their storage environment. In the digital age where data is a prized asset, PowerStore emerges not only as a storage solution but as a strategic partner in navigating the complex terrain of cybersecurity, ultimately increasing its value proposition for organizations seeking a secure and resilient storage infrastructure.
Cyber-attacks will continue to be a threat to businesses, but with Dell Technologies you can have peace of mind that your data and IT assets are secure, protected, and available. We stop at nothing to help thwart threats with intrinsically secure infrastructure and devices, comprehensive detection and response, data protection, and cyber-recovery.
A multifaceted approach to protecting your data
Discover the PowerStore product lineup here.
Read further: Use Dell Storage to Safeguard Your Infrastructure from Ransomware and Cyber Threats
Watch here: Accelerate Zero Trust Cybersecurity Adoption with PowerStore
