Post on 04-Jan-2016
description
transcript
Email & Business Continuity
Continuity for uninterrupted business operations in any circumstances
2010
Agenda
Introduction Grove SaaS Offering Grove Partners Our Clients Grove continuity Reactive Deployment Proactive Deployment Technical Overview Infrastructure Suppliers Email Software Overview Why Grove Continuity? Q&A
Grove SaaS Offering
The Grove Software-as-a-Service offering is a comprehensive managed suite of services providing customers with protection, innovation, compliance and a proactive support service.
Services Offered: Email Security and Policy Management Http Scanning and Management Corporate Email Branding Email Archiving Business Continuity and DR Automated Penetration Testing Email Encryption and TLS Denial of Service (DDoS) Mitigation Hosted Mail and Collaboration Managed SSL VPN
Grove Partners
Technology Partners Solution Providers Resellers and Distribution
In each of these we look for the best in their field showing characteristics that makes them excel at what they do, whether they are top vendors or premium re-sellers.
Main Technology Partners and Solution Providers:
Our Clients – Dec 08
Grove Continuity
Automatic activation Intuitive user interface Universal web-based access Hot standby / rolling retention Recovery processes and spooling 24 x 7 support and operations centre (NOC) On-demand (hosted) solution for scalability and flexibility
Automatic activation Intuitive user interface Universal web-based access Hot standby / rolling retention Recovery processes and spooling 24 x 7 support and operations centre (NOC) On-demand (hosted) solution for scalability and flexibility
Business Critical
Is email continuity important?
40% of all SMBs will go out of business, if they cannot get to their data in the first 24 hours after a crisis.Gartner
96% [of businesses surveyed] reported that during an e-mail outage, there is a huge drop in productivity, and some employees cannot work at all.ApplicationContinuity.org, King Research Survey (reported on InfoStor.com, May 2007)
“In any given 12-month time period, there is a 75% likelihood of an unplanned e-mail outage … concentration of outages (29%) was between 4 & 24 hours duration”
“More than 43% of the outages lasted longer than 24 hours, a length of time that can lead to significant business disruption and damage”Why E-mail Fails: A Survey of E-mail Outages (IBM Global Technology Services, May 2006)
Business Critical
Grove Continuity
Business continuity management Compliance with government, industry
and corporate continuity requirements Calculate the cost of down-time – lost
opportunities, contract and compliance penalties and tarnished reputation
Is there a gap between the business and IT definition of continuity success?
Take a broad view of vulnerability – e.g.redundancy is good, but homogenous systems remain vulnerable to viruses, published exploits and targeted attacks
More than just disaster recovery Continuity: running the business during and despite disaster & interruption Disaster recovery: rebuilding after a disaster – a static, parallel activity requiring time
and resources to be diverted from day to day business Grove Continuity as part of your business continuity management strategy
More than just disaster recovery Continuity: running the business during and despite disaster & interruption Disaster recovery: rebuilding after a disaster – a static, parallel activity requiring time
and resources to be diverted from day to day business Grove Continuity as part of your business continuity management strategy
Business Continuity Institute – www.thebci.org
Grove Continuity
Continuity Reactive Always-on, hot stand-by mailbox Intuitive web-based user interface universally accessible Email automatically routed to each user mail-box during outages Spooling and recovery processes to deliver mail to corporate systems 24 x 7 support, SLA’s and Network Operations Centre (NOC) monitoring
Continuity Proactive 30 Rolling retention of historic email for 30 days Plus all Reactive features – always on, automatic activation, web interface etc
Continuity Proactive 90 Rolling retention of historic email for 90 days Larger mailbox send/receive capacity Plus all Reactive features – always on, automatic activation, web interface etc
Reactive Deployment
No change to mail flow until a BC scenario occursNo change to mail flow until a BC scenario occurs
Mail is delivered via MX routing to Client Mail System
BC Mail system is on “standby” in event of BC requirement
Google Message Security
Google Message Security
End UserEnd User
Continuity MailboxesContinuity Mailboxes
“On Standby”“On Standby”
End UserEnd User
wwwaccesswww
access
In BC scenario mail is accessed via webmail access to BC mail system
Mail is delivered to BC Mail System via Postini Failover
Google Message Security
Google Message Security
Client Email System
Client Email System
ContinuityMailboxesContinuityMailboxes
Client Email System
Client Email System
Proactive Deployment
Dual delivery, no change to mail flow until a BC scenario occursDual delivery, no change to mail flow until a BC scenario occurs
Mail is delivered to BC Mail Gateway and then to Client Mail System
A copy of Mail is sent to BC Mail System
Client Email System
Client Email System
End UserEnd User
Mail Cloned to Continuity Mailboxes
Mail Cloned to Continuity Mailboxes
Continuity Gateway
Continuity Gateway
End UserEnd User
wwwaccesswww
access
In BC scenario mail is accessed via webmail access to BC mail system
Continuity MailboxesContinuity Mailboxes
ContinuityMailboxesContinuityMailboxes
Google Message Security
Google Message Security
Google Message Security
Google Message Security
Continuity Gateway
Continuity Gateway
Client Email System
Client Email System
Technical Overview
First class redundant and resilient facilities
N + 1 redundant design as standard – high capacity mailbox servers clustered into ‘mailbox nodes’ – servers take over from any failures without data loss or delay
Connectivity through physically diverse fibre connections (includes Mistral, Level 3, MFN) and internally protected by firewalls, intrusion detection and monitoring systems
24 x 7 network monitoring and intervention by Network Operations Centre (NOC)
Secure and scalable email technology
Zimbra email server and client designed for secure use in the absence of a VPN – ideal for a disaster scenario when VPN infrastructure may be inoperative
TLS and SSL used throughout and client authentication tokens used (cryptographically secure) to prevent data-injection attacks on the server
Unlike many webmail solutions, no data or software is stored by the browser so it is suitable for use at kiosks and home during a disaster scenario
Tier IV: Multiple active power and cooling distribution paths, redundant components, fault-tolerant, providing 99.995% availability
Tier III: Multiple active power and cooling distribution paths but only one path active, redundant components, concurrently maintainable, providing 99.982% availability
Tier II: A single path for power and cooling distribution, with redundant components, providing 99.741% availability
Tier I: A single path for power and cooling distribution, without redundant components, providing 99.671% availability
Source: Datacentre Management November 2006
Data Centre
Tier 1
Tier 3
Tier 2
Tier 4
Perf
orm
an
ce &
R
eliab
ilit
y
GlobalSwitch
Internet Connectivity
Tier 1
Tier 3
Tier 2
MistralKingston
Tier IV: Multiple active power and cooling distribution paths, redundant components, fault-tolerant, providing 99.995% availability
Tier III: Multiple active power and cooling distribution paths but only one path active, redundant components, concurrently maintainable, providing 99.982% availability
Tier II: A single path for power and cooling distribution, with redundant components, providing 99.741% availability
Tier I: A single path for power and cooling distribution, without redundant components, providing 99.671% availability
Source: Datacentre Management Magazine November 2006
Infrastructure Suppliers
Infrastructure Suppliers
GlobalSwitch (data centres) GlobalSwitch is a leading Global provider with some of the
largest facilities and highest level of infrastructure, including outstanding 24x7 M&E support, neutral access and immediate proximity to multiple carriers and service providers, and high quality power suppliers. Global Switch was the first vendor-independent data centre operator to have been certified to the ISO 27001 standard.
Mistral (connectivity) Mistral's solutions are backed by an industry leading service
level guarantee with an expert team providing 24/7 technical support. Mistral upgrades network components when they reach 70% utilisation. Mistral, as a member of LINX, has peering agreements with major international networks. Mistral has achieved ISO 9001, Investors in People and BS7799 accreditations.
International transit is provided by AboveNet and Level3 with close (less than 3 ‘hop’) LINX connectivity.
Procedures and facilities are audited and independently verifiable.
Email Software Overview
Zimbra (a Yahoo! company) Leader in open source, next-generation messaging and collaboration software, now an
independent business unit of Yahoo! after acquisition in Sept 2007 for $350 million Version 5.0 released Feb 5th 2008 (after Microsoft bid) - according to Zimbra CTO Scott
Dietzen, "the most significant release the Zimbra team has ever made" Key customers include service providers, higher education institutions, and Fortune 1000
enterprises (includes Comcast, Raytheon and internet star Digg)
Superior Email Server and Client Technology All communications (browser server / server browser) are encrypted (TLS/SSL),
including the XML/JSON HTTP of the web-client and any POP, IMAP, SMTP requests. All client/server invocations require an cryptographically secure authentication token to
prevent data-injection attacks on the server and snooping of the network or client disk Uses the security advantages Ajax and mitigates concerns:
Dynamic Ajax client download only when a user logs-in No software is left on the client machine No persistent client-side caching as there is with traditional web mail clients No server-side interpretation of JavaScript or other client-submitted code (vanilla XML requests accepted only) No JavaScript execution on the server so there is no way for a hostile Zimbra Ajax client to inject malicious code Limited client-side JavaScript within user data with filtering and blocking of “risky” HTML (server and client side) Only benign URLs are allowed - GET-based REST and URL-based APIs are read-only and do not modify data
Highly scalable and resilient, deployed as clustered mailbox servers on SAN
Why Grove Continuity
Service Business success despite outages, interruptions and disasters Scalable service to meet current and future needs Support and monitoring for business continuity management
System Leading web-based email technology for end users Server technology designed for security in distributed environments High availability, redundant, high performance infrastructure
Support 24/7/365 Support Monitoring by Network Operations Centre Administrative documentation and training
Questions and Answers