Preventing S3 Data Leaks With a NAS

It seems like every week there is news of another Amazon S3 Bucket being left wide open and its data exposed to anyone that figures out the bucket’s URL. Companies experiencing these data leaks include large Fortune 500 organizations and government agencies. The primary reason for creating the S3 Bucket, disabling its security and exposing the data to the world, was nothing nefarious. The primary excuse given is the user was looking for an easy way to share large files to a large group of users. Essentially most of the trouble comes from users wanting to build a do it yourself file sync and share solution.

Are File Sync and Share Solutions to the S3 Bucket Problem?

If the primary reason given for opening up S3 buckets is to share large files, then a file sync and share solution might seem like the solution. These solutions will allow the sharing of data between users inside and outside of an organization. They even let the originator of the share set an expiration date on the folder or files shared, limiting exposure. Enterprise file sync and share solutions will even provide administrative oversight so IT can see who is sharing what and with whom.

The problem is that these solutions still require the use of the cloud, which means the purchase of cloud storage, the copying of data from on-premises storage to the cloud and the sharing of the file or directory. Another problem is the user could still, go outside of the file sync and share solution and share a file or folder with the world, and IT may not know about it.

What IT Needs is a NAS with FSS

Why not provide FSS from the organization’s Network Attached Storage System (NAS) instead of creating an additional store in the cloud? Internal distribution between offices can be done, if the NAS system can synchronize data between locations and resolve file conflicts. With internal sharing between NAS systems no external sharing software is required, and even if security is left wide open, the only exposure is within the organization.

If the users need to share data with individuals outside of the organization, then the NAS system should have enterprise file sync and share capabilities built right into it. Users should not need to copy data to the cloud for sharing; they should be able to share right off the existing NAS, not having to buy additional cloud-based storage and not expose the organization’s data.

The advantage of the NAS with built-in file sync and share is the centralization of all sharing and collaboration activities. IT can set the system so it prohibits the blanket sharing of data. IT can also require that when a file or folder is externally shared, each person who is sharing data must authenticate; and also enforce a blanket expiration date on shares allowing for only a short period of exposure.

StorageSwiss Take

A NAS with file sync and share capabilities eliminates a storage silo that many IT professionals may not consider a storage silo since the storage the file sync and share uses is not necessarily in the data center. But consolidating file sync and share and traditional file sharing is just one advantage of a modern storage system. Watch our on demand webinar “Three Steps to Eliminating Storage Silos” and learn how to consolidate all your storage use cases to a single system.

Watch On Demand

George Crump is the Chief Marketing Officer of StorONE. Prior to StorONE, George spent almost 14 years as the founder and lead analyst at Storage Switzerland, which StorONE acquired in March of 2020. In his spare time, he continues to write blogs on Storage Switzerland to educate IT professionals on all aspects of data center storage. He is the primary contributor to Storage Switzerland and is a heavily sought-after public speaker. With over 30 years of experience designing storage solutions for data centers across the US, he has seen the birth of such technologies as RAID, NAS, SAN, Virtualization, Cloud, and Enterprise Flash. Prior to founding Storage Switzerland, he was CTO at one of the nation's largest storage integrators where he was in charge of technology testing, integration, and product selection.

Tagged with: , , , , , , , ,
Posted in Blog

Enter your email address to follow this blog and receive notifications of new posts by email.

Join 21,785 other followers
Blog Stats
%d bloggers like this: