Digital Evidence in the Datacenter · Adding cloud-integrated backup . Cold storage target . Archival storage target . Backup server Backup server. PBBA . Tape . Archive or DB server

Digital Evidence in the Datacenter

Matt Parnofiello & Kathy Rekers May 19, 2016

EMPLOYMENT

PUBLICATIONS

SPEAKING ENGAGEMENTS

http://www.linkedin.com/in/mattparnofiello http://blog.cdw.com/author/matthew-parnofiello

Matt Parnofiello Public Safety Business Development Manager [email protected]

EDUCATION

CERTIFICATIONS

http://www.linkedin.com/in/mattparnofiello

http://blog.cdw.com/author/matthew-parnofiello



mailto:[email protected]


• Level Set

• Today’s Digital Evidence Ecosystem

• Forward Looking Statements

• Storage Discussion

OH H.B. 407

Presenter

Presentation Notes

Would require PD’s that utilize BWV to adopt and make public their use policy. Does not define said policy, or provide guidance, it only requires it. This presents an opportunity to collaborate with your LE colleagues to affect the digital evidence coming into your datacenter.

Level Set

CDWG.com | 800.800.4239 CDWG | Confidential 6

25% of law enforcement agencies nationwide have body-cam’s in production 80% are evaluating Video evidence = A clear and accurate representation of events We’re talking about evidence, not just data Chain of custody, and Federal CJIS Security Policy applies to entire digital evidence lifecycle It is unacceptable to lose evidence

Level Set

Presenter

Presentation Notes

These numbers are very conservative. In my experience, every agency in the country either has or is evaluating digital evidence management technologies. … It’s the equivalent to losing a bloody knife out of the evidence room.


Sources of video evidence • In-car video • Body-worn video • Interview room video

Use cases • Compliance • Safety • Training • Litigation • Situational awareness

Level Set

Presenter

Presentation Notes

AKA

CDWG.com | 800.800.4239 CDWG | Confidential

This is a politically and socially charged topic with public accountability and transparency implications, and it’s spilling into our datacenters. There is a threat of allowing political and social pressure to spur the adoption of cameras ahead of evidentiary procedures, user training, and IT systems.

8

Presenter

Presentation Notes

Let them read… we all see the police cam videos on the news and YouTube, after every event goes viral communications light up between elected officials and their Chiefs of Police and Sheriff's asking where we are on body-cam’s. I won’t ask for a raise of hands of agreement on the second point.

Today’s Digital Evidence Environment


Convergence of digital evidence sources resulting in exponential unstructured data production Federal CJIS Policy requirements Network impact Body cam use policies are in beta

Digital Evidence Dynamics

Presenter

Presentation Notes

Not just in-car, BWV, and IRV, but there’s convergence across legacy security and surveillance systems too. State and Federal auditors are the interpreters and enforcers of the Policy CJIS covers all CJI, in its physical and logical forms LAN/WAN/WLAN/WWAN We are still discovering the implications and results


Video classification Retention policy applied to video classifications • Citation and non-evidence – 90 days (90% of videos) • Misdemeanor – 365 days (5% of videos) • Felony – 1825 days (4% of videos) • Internal Affairs, Officer Involved Shooting, Death in Custody – permanent (1% of videos)

A Day in the Life of a LEO

Presenter

Presentation Notes

Walk them through it


• Use policy • Retention policies • Technical settings: video quality, prerecord

Keys to IT Systems Impact

Presenter

Presentation Notes

Patrol might run video at 360 or 480 resolution, tactical scenarios (serving warrant, kicking in doors) might warrant 1080p

Looking Forward


Continued acceleration of video adoption More…

• cameras in the cars • types of cars • types of agencies

Crystal Ball

Presenter

Presentation Notes

As the vendors, policies, procedures, and infrastructure catch up with user and the public’s expectations


Video Evidence Growth

13 minutes - average evidentiary in-car video Two hours - average total video evidence collected per vehicle shift Body-worn video can easily surpass in-car stat’s


Video Evidence Growth

0

50

100

150

200

Year 0 Year 1 Year 2 Year 3 Year 4 Year 5

25 Video-equipped Carsper Shift100 Video-equipped Carsper Shift

Terabytes

Presenter

Presentation Notes

Speak towards trends

STORAGE TRENDS 2016 OCITA

17

Kathy Rekers

Field Solutions Architect

Data Center Solutions

Kathy Rekers

Field Solutions Architect

Data Center Solutions

CDW-G

| Confidential | | Confidential |

AGENDA

Enabling the Cloud

Gartner/IDS/Trends Consolidation Virtualization Standardization Automation Optimization Where are you CDW’s “Private Cloud Optimization”

process Next Steps – How Can CDW help

1) Transitions 2) Priorities for I.T. 3) Flash Storage 4) Converged &

HyperConverged Infrastructures

5) Backup, D.R., & Cloud

TRANSITIONS IN IT

19

DISRUPTION ERUPTION

20 | Data Center Solutions

Send help


DATA CENTER MODERNIZATION

21

Diagram Source: Gartner, Data Center Modernization and Consolidation Key Initiative Overview, 3/4/15

PRIORITIES FOR STATE & LOCAL GOVERNMENT I.T.

22

2016 TOP PRIORITIES FOR CITY & COUNTY TECHNOLOGY EXECUTIVES*

*From a survey by PTI (Public Technology Institute)

1. Security and Risk Management

2. Enterprise Vision & Roadmap for I.T.

3. Legacy Modernization

4. Disaster Recovery / Business Continuity

5. Budget & Cost Control

6. Business Intelligence and Data Analytics

7. Human Resources / Talent Management

8. Cloud Services

9. Consolidation / Optimization

10. Agile & Incremental Software Delivery

FLASH STORAGE

| © CDW LLC 2015 24


THE SHIFT TO HYBRID AND ALL-FLASH ARRAYS

25

Application demands are increasing Business Analytics/Intelligence, OLTP, VDI …

CPUs are constantly waiting … again In some ways, we’re right back where we were in

the ’90s Storage access needs to keep pace with computing

Spinning disks on the decline It is the slowest resource in the data center Say goodbye to the 15K RPM drive … now Say goodbye to SAS drives … tomorrow


THE FEAR-UNCERTAINTY-DOUBT OF FLASH

26

There’s a finite number of writes True, however wear leveling helps extend the life We still utilize data protection, ECC Bad cells are bypassed and drives are

overprovisioned You can still read from these cells

Flash is unreliable Enterprise flash drives can be up to twice as

reliable is spinning disk drives The are covered under maintenance just like any

other drive You use flash every day Cameras, phones, USB drives all use flash Almost all NetApp arrays (FlashCache and/or

FlashPool) for the past 4 years and almost all EMC arrays (FAST Cache and/or FAST VP) for the last 2 years have been sold with some kind of Flash

Drive Type MTBF SSD (SLC/eMLC) 2,000,000 hours

FC 1,600,000 hours SAS 10K 1,600,000 hours SAS 15K 1,600,000 hours

SATA 1,200,000 hours NetApp Storage Subsystem Technical FAQ

Feb, 2014


FLASH STORAGE CREATES A SHIFT IN THE DATACENTER THOUGHT PROCESS

27

• Daily or weekly performance tuning is a thing of the past

• Noisy storage neighbors go away

• Simplification of storage requirements and architecture

• The storage bottleneck moves upstream to network bandwidth and compute

• Flash improves IT’s ability to service user needs

• https://www.linkedin.com/pulse/flash-storage-performance-isnt-real-story-chris-gibes?trk=prof-post

• A study posted on 2/26/16 by Google proves that Flash Storage reliability and durability supersedes expectations

• http://hexus.net/tech/news/storage/90920-google-datacentre-ssd-study-offers-surprising-conclusions/

https://www.linkedin.com/pulse/flash-storage-performance-isnt-real-story-chris-gibes?trk=prof-post

https://www.linkedin.com/pulse/flash-storage-performance-isnt-real-story-chris-gibes?trk=prof-post

http://hexus.net/tech/news/storage/90920-google-datacentre-ssd-study-offers-surprising-conclusions/

http://hexus.net/tech/news/storage/90920-google-datacentre-ssd-study-offers-surprising-conclusions/


COST DIFFERENTIAL BETWEEN SPINNING AND FLASH DISK

28

2017 is the Break-Even Point! * Graph data provided by NetApp

2:1 Dedupe/Compression closes this gap

In 12 months, raw SSD can be cheaper than SAS


VERY RAPID EVOLUTION OF FLASH

29 | © CDW LLC 2014

2016 Predictions • 8TB and 16TB TLC Capacity Flash Drives released

• SAN/NAS management software will continue to deliver more storage efficiencies continuing to compact existing data

• Intel 3D Xpoint - Optane Technology integrated into Flash Storage

2017 Predictions • 32TB and 64TB TLC Capacity Flash Drives released

• With such large capacity flash drives and non-volatile storage – what does the future hold for traditional spinning disk – if it has a future?


HOW DOES FLASH FIT INTO LOCAL GOVERNMENT?

30

• Data Analytics • Databases • VDI • Home-grown apps

And Not so much for: • Video • Public Safety • Archival storage

| Confidential |

SOME FLASH VENDORS

31 Strategic Partners

Tactical Partners

| © CDW LLC 2014

CONVERGED AND HYPER-CONVERGED INFRASTRUCTURES

32


CONVERGENCE IN THE DATACENTER TODAY

33 | CDW — Proprietary and Confidential. Copying Restricted.

Traditional Infrastructure

Reference Architecture

Converged Infrastructure

Hyper-Converged Infrastructure =

| Confidential |

CONVERGED INFRASTRUCTURE = REFERENCE ARCHITECTURE


• Built on traditional shared infrastructure components

• Manufacturers design and validate the solution

• Time to design and deploy solution is significantly reduced, burden of risk is on the manufacturer

• Multi vendor solutions have cooperative support

• A Reference Architecture is a Blueprint

• Blueprint can be very detailed, down to a specific use case, such as VDI or an ERP application



Network, Compute, Storage, Hypervisor


BENEFITS OF A CONVERGED INFRASTRUCTURE

35 Converged Infrastructure

Hardware Standardization Less Disparity Supported Configurations Upgrade Path Compatibility Matrices

Collaborative Support Model Manufacturer Collaboration Single Point of Contact Beginning-To-End Support Software Validation

Infrastructure Simplification Faster Provisioning Software Defined

Infrastructure Eliminate Silos


CONVERGED INFRASTRUCTURE – USE CASES


• Manufacturers build and document solutions for specific use cases – further speeding the design and implementation processes

• ERP Applications

• VDI

• Database

• Secure Multi-tenancy

• Big Data




SOME CONVERGED INFRASTRUCTURE SOLUTIONS

37


HYPER-CONVERGED INFRASTRUCTURE


Hyper-Converged Infrastructure

• Significant departure from the other infrastructure models

• Software defined resources built on commodity hardware – appliances with set compute, network and storage resources

• End result functions similar to shared resource infrastructure

| Confidential |

HYPER-CONVERGED INFRASTRUCTURE - BENEFITS


Hyper-Converged Infrastructure

• Simplicity, simplicity, simplicity – it usually takes about 15 minutes from racking to provisioning

• Ease of scale – scale out by adding more appliances

• Orchestration is more inherent in the solution – no need to layer orchestration software on top of discrete shared hardware components


HYPERCONVERGED INFRASTRUCTURE – USE CASES


• ERP Applications

• VDI

• Database

• Secure Multi-tenancy

• Big Data


SOME HYPERCONVERGED SOLUTIONS

41

VMware

EMC

HP Enterprise

with

BACKUP, DISASTER RECOVERY, AND CLOUD SOLUTIONS

42


Hybrid cloud will be the dominant model

THE OPPORTUNITY

IN CLOUD

Cloud is compelling for certain use cases

I.T. - Meeting the needs of the Government

Leveraging resources leads to innovation


WORKLOADS TO MOVE TO THE CLOUD

44 N=327, multiple responses accepted Source: ESG, 2015

49% 38%

35% 34%

32% 31%

30% 27% 27%

25% 25%

Data backup and archiveTest and development

Disaster recoveryPimary storage for files

Web serversHigh-performance computing

Business intelligenceTemporary projects

Internal production appsApplication bursting

Workload spikes

For which of the following purposes does/did your organization use cloud infrastructure services?


WHY HYBRID CLOUD STORAGE FOR BACKUP AND ARCHIVE?

45 *Source: Enterprise Strategy Group, 2014.

0

0.02

0.04

0.06

0.08

0.1

0.12

0.14

0.16

0.18

Storage Pricing/GB/month

AWS S3

AWS Glacier

49% of organizations that

use cloud infrastructure use it for data backup

and archive*

Azure

Google Cloud Storage

2010 2011 2012 2013 2014 2015 Google Nearline

| Confidential |

HOW YOUR PEERS USE CLOUD FOR BACKUP AND ARCHIVE

46 © 2015 NetApp, Inc. All rights reserved. NetApp Confidential – Limited Use

Backup modernization Adding cloud-integrated backup

Archival storage target Cold storage target

VTL

Backup server Tape Backup server

PBBA

Archive or DB server Tape

Filestore Enterprise

Vault

File store

Public or private cloud

#1 #2

#3 #4

| Confidential |





Backup server Backup server

PBBA



Vault

File store


Cloud-integrated storage appliance

| Confidential |






PBBA



Vault

File store


Cloud-integrated storage appliance Cloud-integrated

storage appliance

| Confidential |






PBBA



Vault


Cloud-integrated storage appliance Cloud-integrated

storage appliance


| Confidential |






PBBA

Archive or DB server

Enterprise Vault






| Confidential |

CLOUD CAN HELP WITH DISASTER RECOVERY AS WELL


Recover on-premises workloads in the cloud

Backup server Cloud-integrated storage

appliance

Recover to another site through the cloud

Backup server Cloud-integrated storage

appliance

DR site


Public cloud

| Confidential |

CLOUD CAN HELP WITH DISASTER RECOVERY AS WELL


Recover on-premises workloads in the cloud

Backup server

Recover to another site via the cloud

Backup server

DR site

Cloud-based storage appliance

Cloud-based backup server

Virtual storage appliance


Public cloud Cloud-integrated storage

appliance



SOME CLOUD SOLUTIONS

53

EMC DataDomain w/ CloudBoost

CommVault

NetApp AltaVault Symantec


KING COUNTY, WA

54 Secure, Taxpayer‐friendly Data Protection in the Cloud

Business Challenge Simplify operations and enhance ability to efficiently

serve residents by replacing disk-to-disk-to-tape backup

Solution Cut costs and speed secure backup and recovery with

integrated NetApp AltaVault, Veeam, and AWS solution

Benefits Avoids more than $1.0M infrastructure refresh and

spends 70% less on the new solution Saves another $300,000 annually by eliminating tape

and expensive on-premises backup appliances and by using deduplication, compression, and cloud storage

Provides instant recovery for 98% of restoration requests

Cuts backup window in half while speeding up to 15TB of data per night to AWS

© 2015 NetApp, Inc. All rights reserved.

“We now have an enterprise-class data protection and recovery solution that helps us provide more affordable services to our residents and protect their data.” Bob Micielli, Senior Enterprise Technology Manager, King County

About the County King County, a major hub of business and culture in Washington state, serves over 2 million residents.


AGENDA

Enabling the Cloud

Gartner/IDS/Trends Consolidation Virtualization Standardization Automation Optimization Where are you CDW’s “Private Cloud Optimization”

process Next Steps – How Can CDW help

1) Transitions 2) Priorities for I.T. 3) Flash Storage 4) Converged &

HyperConverged Infrastructures

5) Backup, D.R., & Cloud

THANK YOU


Matt Parnofiello & Kathy Rekers May 19, 2016

Documents

Digital Evidence in the Datacenter · Adding cloud-integrated backup . Cold storage target . Archival storage target . Backup server Backup server. PBBA . Tape . Archive or DB server