2.5 - Given a scenario, implement cybersecurity resilience. Flashcards
Redundancy
Geographic dispersal
Redundant array of independent (or
inexpensive) disks (RAID) levels
-ensure data isn’t corrupted or lost (parity)
-ensures that 1+ disk failures can be handled by an array without losing data
-used multiple disks with data Striped or Mirrored
->striped = spread across disks
->mirrored = completely copied
-combine RAID methods to increase redundancy
->RAID 0+1, RAID 1+0, RAID 5+1, ETC
Multipath
Load balancers (Network)
-
Network interface card (NIC) teaming
UPS
Uninterruptible power supply
-SHORT TERM backup power
-EX: blackouts, brownouts, surges
-features;
->auto shutdown
->battery capacity
->outlets
->phone line suppression
-UPS types;
->Offline/Standby UPS
–>Line-interactive UPS
–>On-line/Double-conversion UPS
Generator
Dual power supply
-provide pwr 4 longer outages
-ensure pwr supply failure won’t disable a server
-Redundancy
–>Internal server pwr supplies
–>External pwr circuits
-Each pwr supply can handle 100% of the load (Would normally run at 50% of the load)
-Hot-swappable
–>Replace a faulty pwr supply without powering down
PDUs (Managed power distribution units)
-Provide multiple pwr outlets
–>Usually in a rack
-Often include monitoring and ctrl
->Manage pwr capacity
->Enable/disable individual outlets
Storage area network
VM
On-premises vs. cloud
Full (Backup types)
Incremental (Backup types)
Snapshot (Backup types)
Differential (Backup types)
Tape (Backup types)
Disk (Backup types)
Copy (Backup types)
Network-attached storage (NAS) (Backup types)
Storage area network (Backup types)
Cloud (Backup types)
Image (Backup types)
Online vs. offline (Backup types)
Offsite storage (Backup types)
Distance considerations (Backup types)
Non-persistence
Revert to known state (Non-persistence)
Last known-good configuration (Non-persistence)
Live boot media (Non-persistence)
Scalability (High availability)
Restoration order
Technologies (Diversity)
Vendors (Diversity)
Crypto (Diversity)
Controls (Diversity)
Raid 0
-striping without parity
-data spread across all devices in the array
Advantages
-high performance
-better I/O performance
-all capacity used
Disadvantages
-no fault tolerance
-all data is lost if a drive is lost
Striped
-spread across disks
Mirrored
-completely copied
RAID 1
-mirroring
-all data copied exactly to another drive/s
Advantages
-duplicates data 4 fault tolerance
-high speeds from multiple drives
-data available if a drive fails
Disadvantages
-requires twice the disk space
RAID 5
-striping with parity
-data striped (spread across disks)
-one drive used for parity (check sum) of the data
-parity spread across drives and data
Advantages
-fault tolerant
-only requires an additional disk 4 redundancy
-data reads fast
-data writes a little slower
-drive failures can be rebuilt as long as only one drive fails
Disadvantages
-only tolerates a single drive failure at a time
-rebuilding arrays after a drive loss can be slow + impact performance
RAID 6
-striping with double parity
-like RAID 5 BUT additional parity stored on another drive
Advantages
-like RAID5, BUT allows more than one drive to fail at a time
Disadvantages
-slower write performance than RAID 5
-rebuilding arrays after drive loss can be slow + impact performance
RAID 10
-mirroring and striping
-data striped across 2+ drive, then mirrored to same # of drives
-sometimes written as 1+0
Advantages
-combines advantages disadvantages of RAID 0 and RAID 1
Disadvantages
-combines advantages disadvantages of RAID 0 and RAID 1
Without parity
-data does not have redundancy or fault tolerance