Executive summary

Storadera is a fast, secure and affordable solution for Cloud Storage. You can use Storadera for a variety of purposes including primary storage for cloud or on-premise workloads, secondary storage for backup and recovery or archival storage for long term data retention.

Storadera is engineered to meet strong security requirements to keep customer data safe at all times.

Physical security

Storadera uses data center services provided by Wavecom Ltd. and is located in Tallinn, Estonia.

The data center is TIER 3 and ISKE compliant and has ISO:9001 and ISO 27001 certificates.

It has all the standard triple internet connection and duplicated power delivery with generators.

Data center has an ultramodern access system, like those you’ve probably only seen in movies: it includes fingerprint and finger vein ID as well as facial recognition.

Every possible corner is covered with digital, microwave and infrared sensors, and, with the help of facial recognition, the modern system makes sure that people only move in the areas of the building where they are permitted. The security system that is being installed meets FBI quality assurance standards. The equipment cabinets  are equipped with locks and sensors, and the alarm system can only be disarmed using RFID cards.

Data Privacy and Security

Storadera supports a comprehensive set of data privacy and security capabilities to prevent

unauthorized access. Strong user authentication features guard access to

stored data. 

All data stored on Storadera is encrypted by default to protect data at rest.

All communications with Storadera are transmitted using HTTPS to protect data in transit.

Data Durability and Protection

Storadera storage is engineered for very high data durability and integrity. Data is always protected with triple parity to protect against media errors and hardware failures.

We use Erasure Coding (EC) to protect data integrity. EC works by splitting object (or file) into fragments (data blocks) and creating additional fragments (parity blocks). For each parity fragment, the EC algorithm calculates parity fragments based on original data fragments.

If any of data fragments become unavailable, then the parity fragments can be used to rebuild the data unit without experiencing data loss.

In Storadera we save each data and parity fragment on separate drive, so we have a notion of data drives and parity drives. Parity drive can be used instead of any of the data drive. If customer requests data and a data drive fails to read data fragment then our software automatically reads data from parity drive instead, re-generates original data and sends to customer. It is seamless and fast.

In case of any drive failure, we start re-generating the data to a stand-by drive. And as said, during the rebuild, data is available to customer and without noticeable performance impact. In case of drive failure, data is also safe because we have multiple parity drives.

At the moment of writing we have drive pools of 6 drives and we have divided it into 3 data drives and 3 parity drives.

To protect against pit-rot or any other forms of storage media silent failure, data integrity is re-checked every 30 days.

Additional layer of integrity protection we have 3 level of hash checks on every file read and periodical re-check. First we have hash check on fragment read from hard drive. Then we have hash check of segment – it is a sub-part of the file, around 4 to 20 MB. And finally hash of the whole file. In any case of hash failure, we use parity fragments to restore original content and stream it to customer without delay or noticeable slowdown. Problematic fragments will be marked and restored using EC parity.

Customer Responsibilities

Customers typically interface with Storadera using third-party backup applications and file management tools. Customers must ensure that they have strong security practices and systems in place to safeguard other parts of their infrastructure. 

Customers also must ensure keeping all security credentials and keys safe and private at all times.

Summary

Storadera is engineered to meet strong data security and privacy requirements.

The service is built and managed according to security best practices and standards, and employs a defense-in-depth approach to protect against a wide array of threats. To locate our service infrastructure we use only data centers with strong authentication and access control measures in place. Our service encrypts data at rest and in transit to protect privacy and prevent unauthorized access and disclosure.

Storadera is typically used in conjunction with other on-premise or cloud services. IT organizations must institute strong security to ensure data privacy and protection across all enterprise assets.

Most incumbent service providers make use of their services attractive, but later you might end up with high costs as there are hidden fees that could have been overlooked in the first place. We at Storadera believe that simplicity and cost predictability is key to solve this problem, which is why lots of companies are afraid of cloud storage services. Our mission is to provide scalable service and at the same time provide very simple and predictable pricing.

Next Steps




Privacy Policy | Terms and Conditions | Copyright 2021 | Storadera Ltd.