DataCenterNews Asia Pacific logo
Specialist data center news for Asia Pacific
Story image

Managing data privacy and cyber security with StruxureOn

By Contributor
Thu 30 Mar 2017
FYI, this story is more than a year old

In my recent blogs I've taken the opportunity to write about the features and benefits of StruxureOn – our new cloud-based service for data center monitoring.

This new introduction proactively minimises downtime and reduces break-fix resolution time through smart alarming, remote troubleshooting and visibility into device lifecycles.

Because this is a cloud-based offering, I promised that I would write something about the security and privacy aspects of the service.

This is not only because it's one of the first questions to be raised when we introduce the service to customers, but because it's a subject which I believe we've paid special attention to getting right.

Anyway, it's time to make good on my promise.

Today practically every headline about the IoT seems to be associated either with some sort of cyber vulnerability or the potential for hacking.

And talking to those designing and managing everything from hyper-scale data centers to small server rooms, with so much emphasis on real and imagined threat, security has become one of their biggest concerns.

We've therefore considered the architecture of StruxureOn, as well as how it collects, processes, stores and transmits data. Since the stories are out there, we have proactively built a practice around cyber security inside Schneider Electric.

This means that our core DevOps team are given training in ethical hacking, so that applications being delivered as a service or on-premise can be secured in such a way as to avoid penetration.

The StruxureOn system is continuously monitored and scanned for potential security vulnerabilities or privacy issues and the team is on-call 24/7 and able to react really, really fast to newly discovered threats or issues.

The StruxureOn solution has been architected in such a way that doesn't expose the devices providing data to the internet. This is a major step forward for security.

We've had intelligent devices in the data center for over a decade – plant such as cooling equipment, UPSs and PDUs have been routinely connected to the internet for services such as firmware upgrades and so-on.

Ensuring the security of individual devices is a massive and complex undertaking, which StruxureOn has rationalised and simplified.

With StruxureOn we aggregate all device data on-site and have one secure, highly encrypted communication gateway to the Schneider Cloud. This is a one-way, outgoing connection only.

There's no inbound route to allow a malicious attacker get in and gain control of connected devices.

Connections from the gateway are validated using an industry standard 2048 bit RSA certificate and data is encrypted in transit using 128 bit AES encryption.

A single, cyber-secure connection provides improved security for all infrastructure devices and greater peace of mind for the data center manager.

At the same time we have also enabled wide governance options around data privacy – allowing the customer to set policies for the way we treat their machine data and what do we use it for, as well as according privileges about who has access to what throughout their ecosystem.

It's my belief that digital services like StruxureOn could improve the cyber security of data centers, while bringing together all the machine data which forms the basis of operational insights and analytics to reduce equipment running costs.

For example, we can monitor and report which firmware is running on what device, whether it's the latest version or in need of upgrading. We can also see who has accessed devices and when they logged in.

This is really helpful reporting for customers who are worried about security or attacks on their internal systems. In addition to secure collection of data and privacy around that, Schneider also ensures secure data processing and storage within the cloud engine.

Protected by state-of-the-art firewalls, the cloud network is configured to only allow access from specific sources (using Access Control Lists), and only a limited set of authorised personnel have access – and only through multi-factor authentication.

The cloud engine is fault tolerant and runs in a redundant configuration to ensure that no data is ever lost.

Data is tagged according to source, and customers can only access what's theirs – the system always knows which data belongs to who, and a complete audit trail is maintained of all data received and being processed.

Data is transmitted to the appropriate customer via the StruxureOn app using HTTPS TLS 1.2.

And just to cover all the bases, logging in to the app requires either a specifically generated one-time code sent to the mobile number, or using the device's biometric security features.

Article by Henrik Leerberg, Schneider Electric Data Center Blog 

Related stories
Top stories
Story image
Artificial Intelligence
ASUS Servers announce AI developments at NVIDIA GTC
The Taiwanese multinational now offers NVIDIA-certified servers with H100 Tensor Core GPU and AI enterprise software suite.
Story image
No-code
Eradicating ‘App Fatigue’ and retention problems through implementing no-code ITSM
Almost always, simplicity is best. Intuitive designs and practical workflows are the keys to preventing fatigue.
Story image
Sustainable IT
Equinix partners NUS to use hydrogen tech in data centres
The partners will develop hydrogen fuel technologies for green data centres in tropical climates, and for use in Equinix’s global network.
Story image
IT infrastructure
Bentley Systems announces finalists for the 2022 Going Digital Awards in Infrastructure
The company says that this annual awards program honours the work of Bentley software users who are advancing infrastructure design, construction, and operations throughout the world.
Story image
IT Automation
Juniper Networks announces expansion of Apstra Software with Apstra Freeform
The newly announced Apstra Freeform technology will give customers the ability to manage and automate operations for data centers regardless of the architecture.
Story image
Software-as-a-Service
Honeywell launches Data Center Suite for business outcomes
Honeywell has launched its Data Center Suite, a portfolio of outcome-based software offerings to help data centre managers and owners.
Story image
Cloud
SoftIron announces its newest flagship offering, HyperCloud
SoftIron has announced HyperCloud, the world's first full turnkey, completely integrated and supported Intelligent Cloud Fabric and the company's newest flagship offering.
Story image
Digital Transformation
NTT launches its Cyberjaya 6 data center in Malaysia
NTT expands its hyperscaler footprint in Malaysia with its sixth data center facility, supporting the growing digital economy.
Story image
Network Infrastructure
Vertiv launches solutions to better manage edge computing
Vertiv has introduced new power and cooling solutions for the edge of the network, including the addition of lithium-ion models to a leading on-line UPS family.
Story image
Hyperscale
Growth in hyperscale data centres to increase shortage of IT workers
New Zealand's tech worker capacity is set to come under increasing pressure as the number of hyperscale data centres grows.
Story image
Melbourne
Equinix invests $23m to expand ME2 data centre in Melbourne
Equinix has completed the second phase expansion of its ME2 International Business Exchange data centre, located in Port Melbourne.
Story image
Edge Computing
NTT launches Edge-as-a-Service to accelerate automation
"Minimum latency, maximum processing power, and global coverage are exactly what enterprises need to accelerate their digital transformation journeys.”
Story image
Digital Transformation
Nanyang Technological University Singapore builds digital brand presence
Leveraging the customisation features of Sitefinity DX, non-technical users could upload content and create design pages and boost work productivity. 
Story image
Data Centre Maintenance / Management
Vertiv releases update to Smart InfraSight platform
Vertiv has unveiled an update to its Smart InfraSight data centre management platform, featuring improved intelligence and the ability to manage multiple IT devices.
Story image
Storage
Seagate announces next gen advanced storage arrays
The new Exos X systems feature up to twice the performance of the previous generation and enhanced enterprise-class durability, the company states.
Story image
Update
InterSystems releases updates to its IRIS data platform
Provider of next-generation solutions InterSystems has announced a series of new releases to its award-winning InterSystems IRIS data platform.
Story image
Public Cloud
How hyperscalers are shaping Australia’s enterprise cloud landscape future
Australia’s public cloud market encompasses both global and domestic players and there has been widespread adoption of cloud technology across public and private sectors.
Story image
Sustainable IT
Empyrion DC announces 40MW green data center in South Korea
Empyrion DC has announced it is developing a 40MW green data center in Gangnam, Seoul, South Korea (GDC).
Story image
Multi-cloud
VMware advances multi-cloud management with VMware Aria
Managing apps and infrastructure in a multi-cloud, especially public cloud, and multi-technology environment is complex.
Story image
Data center
Australia’s data centre pioneer still leading after 22 years
We look at the fascinating success of Macquarie data centre's over its 22 year life span and how they continue to innovate in a highly contested sector.
Story image
Data Protection
iseek secures Queensland Government data centre contract
iseek secures the Queensland Government's core network data centre as-a-service contract after a competitive procurement process undertaken by the CITEC.
Story image
Cloud
DCI plans to build new cloud edge data centre in Canberra
DCI is one of the first to commit to the Precinct which has a focus on defence, space, cybersecurity and high-tech manufacturing sectors.
Story image
Superloop
Stellar financial result after major strategic moves by Superloop
We get a glimpse under the hood at the financial results from 2022 for the connectivity giant Superloop.
Story image
Software Defined Wide Area Network
Axiata, Versa Networks partner for enterprise SASE in Asia
Axiata has partnered with Versa Networks to deliver Secure Access Service Edge (SASE) technology to rapidly digitalising Asian enterprises.
Story image
Partnerships
NCS, FPT Software launch Strategic Delivery Centre in Vietnam
The new partnership is designed to support increasing demand for high quality digital services across the region.
Story image
Software-as-a-Service
Iron Mountain InSight SaaS platform extends capabilities on AWS
Company deepens work with AWS, helps customers to accelerate their journey from physical to digital on a global scale.
Story image
Software-as-a-Service
ManageEngine unveils SaaS availability of Analytics Plus
ManageEngine's Analytics Plus is now available as a software as a service (SaaS) offering, enabling users to set up a completely functional and integrated analytics platform anywhere in under a minute.
Story image
Machine learning
Oracle announces MySQL HeatWave for Amazon Web Services
MySQL HeatWave is a service that combines OLTP, analytics, machine learning, and machine learning-based automation. 
Story image
Firewall
Fortinet unveils compact firewall for hyperscale data centres, 5G networks
"Fortinet’s dedication to pushing the boundaries of what is possible in security performance has yielded the most powerful compact firewall yet."
AWS Marketplace
Whitepaper: A practical guide for mitigating risk in today’s modern applications
Link image
Story image
Gartner
SnapLogic named Visionary in two Magic Quadrant categories
SnapLogic has announced that it is the only iPaaS (Integrated Platform as a Service) vendor to be named a Visionary in two Magic Quadrant categories.
Aws Marketplace
Learn how to implement a backup and recovery plan for a new generation of Kubernetes-based modern applications
Link image
Story image
5G
Worldwide 5G mobile data traffic exploding - report
"With 5G, there is a wider range of deployment scenarios, forcing vendors to provide comprehensive solutions to support every need."
Story image
Storage
DCI Data Centers breaks ground on AKL02 center
DCI Data Centers has commenced construction on Auckland's largest data center.
Story image
Startup
Zetaris is changing the way we think about data virtualisation
Zetaris was launched on the Microsoft Marketplace and Ingram Micro Cloud Marketplace in Australia in 2020 and has since expanded into nine global markets.
Story image
Google Cloud Platform
Google Cloud to open first cloud region in NZ - among others
Google Cloud has announced plans to bring three new cloud regions, one each in New Zealand, Malaysia and Thailand.
Story image
Software-as-a-Service
Cloudera launches all-in-one data lakehouse cloud service
CDP One makes it faster, easier and less risky for businesses to move to the cloud and migrate existing workloads to a modern data architecture.
Story image
Data
Talend announces support for Amazon Redshift Serverless
Talend has announced its support for Amazon Redshift Serverless, with the company saying the integration reinforces its commitment and leadership in supporting businesses.
Story image
Data center
Macquarie Asset Management acquires stake in ST Telemedias VIRTUS Data Centres
"We will further strengthen VIRTUS' focus on sustainability by backing investment in its technology and enhancing the lifecycle management of its equipment."
Story image
Data Centre Maintenance / Management
Schneider Electric backs new Leading Edge data centre in Australia
As a result of the new project, regional Australian businesses and communities will likely have greater access to distributed cloud networks.
Story image
Microsoft
VMware extends collaboration with Microsoft for enterprise workloads in Azure
Mutual customers will have the choice to purchase Azure VMware Solution through the VMware Cloud Universal program.