Tech Guide: Storage Security Best Practices - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

11:21 AM

Tech Guide: Storage Security Best Practices

Tech GuideThe Storage Networking Industry Association's Storage Security Industry Forum, a trade group devoted to promoting good security techniques, has put together a list of recommended best practices for companies attempting to get a handle on securing networked storage. The association's Web site is at .

Its suggestions include:

  • Identify all interfaces to your storage network.
  • Create a separate, secure infrastructure for management and control interfaces to the storage network.
  • Protect data both when it's moving and at rest.
  • Define storage zones containing the smallest possible number of components.

  • Use all available local area network security tools such as IPSec and virtual LANs.
  • Restrict access to infrastructure configuration functions, specifically to all unused ports.
  • Configure switches so unused ports must be enabled before use.
  • Install software and firmware only from authorized sources, and don't accept firmware upgrades via the storage-network interfaces.
  • Always change default passwords before equipment is connected to a production storage network and ensure that strong pass- words are used.
  • Keep in mind that management ports don't use encryption.
  • Return to main story, How Secure Is Your SAN?

    We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
    Comment  | 
    Print  | 
    More Insights
    11 Things IT Professionals Wish They Knew Earlier in Their Careers
    Lisa Morgan, Freelance Writer,  4/6/2021
    Time to Shift Your Job Search Out of Neutral
    Jessica Davis, Senior Editor, Enterprise Apps,  3/31/2021
    Does Identity Hinder Hybrid-Cloud and Multi-Cloud Adoption?
    Joao-Pierre S. Ruth, Senior Writer,  4/1/2021
    White Papers
    Register for InformationWeek Newsletters
    The State of Cloud Computing - Fall 2020
    The State of Cloud Computing - Fall 2020
    Download this report to compare how cloud usage and spending patterns have changed in 2020, and how respondents think they'll evolve over the next two years.
    Current Issue
    Successful Strategies for Digital Transformation
    Download this report to learn about the latest technologies and best practices or ensuring a successful transition from outdated business transformation tactics.
    Flash Poll