Storage Services Managed by the Division of IT


In this article

Primary storage services

Primary storage services can be used for storing and managing University data such as office files, structured data, media, research data, etc. There are various use cases for each primary storage service. Each requires reviewing data access methods, approved data categorization information, data protection methods and other workflow requirements to determine the best fit for your data.

Primary Storage Services and Properties

Centralized Data Center Storage Network Storage Service UMD Box UMD Google Drive
Use Case Highly transactional workflows, databases, applications, BI analysis and supporting tools.

This service is available to campus departments through the on-prem VSH service.

File storage, system processing data, media editing, system data repositories File storage, endpoint access, mobile access, collaboration For storage of a moderate amount of high-risk data with a need for limited communication and collaboration. File storage, endpoint access, mobile access, collaboration.

 For storage of a high amount of low or moderate risk data with a need for extensive, flexible collaboration.

Storage Capacity Variable upon request Variable upon request Subject to change in 2022 Subject to change in 2022
Supported File Types Any

Any

Supported file types

Supported file types
Approved UMD Data Classification Types

High

High

High

Moderate
Access Controls

Access per VSH machine

NFS Network ACL

SMB AD user or group

UMD User ID

UMD User ID

Supported Protocols

Native fibre-channel or iSCSI block access

NFS 3 and NFS 4

SMB 3

HTTPS and Native Applications

HTTPS and Native Applications

Mobile Access Support

No

VPN Access through SMB;3

Web and Native Application Access

Web and Native Application Access

Encryption at Rest

Yes

Yes

Yes

Yes

Encryption in Transit

No, dedicated private storage network

NFS 4 and NFS 3 - No

SMB 3 - Yes

Yes

Yes

Backup Services Included with managed VSH support otherwise, not included

Included and defaults to 14 days.  Can be updated upon request.

14 days via UMD Box Policy

Included for faculty, staff and graduate assistants

Service Cost

$.03 / GB provisioned / month + VSH costs

$0.018 / GB used / month

Subject to change in 2022

Subject to change in 2022

For more information about these services review the links below.

Top

Backup storage services

DIT managed backup services can be used to back up data if the underlying service does not natively provide data protection (Datacenter Block Storage Service) or can be used to back up customer-managed storage devices (native servers, hard drives, laptops, desktops). Backup services will generally do these things listed below.

Backup Storage Services and Properties

UMD Data Protection Service VM Backup Service - Veeam Cloud Protection Manager
Available to Hosts

On-Prem and Cloud

On-Prem VSH Service

AWS Compute Server

Use Case

Backup file systems for most any data. It provides a variety of retention policies and is compliant with USM standards. Can natively backup popular database systems.

Virtual Machine protection for VM's hosted in DIT VMware environments. Crash-consistent backups only.

Snapshot protection for EC2 instances in the Cloud VSH environment. Crash-consistent backups only.

Retention Policies

14, 30, 90 or 180 days

14 days

14 or 30 days

Scheduled Backup Times

Daily between 20:00 and 16:00

Daily between 20:00 and 00:00

Two times per day 12:00 and 00:00

Estimated Recovery Time From Restore Initiation

13 minutes per TB

13 minutes per TB

13 minutes per TB

Backup Locations

Two copies with > 25-mile geographic distance

Single copy in separate location

Single copy in the same Availability Zone as instance

Encryption at Rest

Yes, AES 256-bit Encryption at Rest

Yes, AES 256-bit Encryption at Rest

Yes , Data volume snapshots are encrypted

Encryption in Transit

Yes, SSL Encryption in Transit

No, dedicated private backup network

Yes, AES 256-bit Encryption

Approved UMD Data Classification Types

High

Moderate

High

Cost

$.10 / GB protected / month

Included with VSH managed service

Charged at storage rate for snapshot data per machine

For more information about these services review the links below.

Top

Archive and long-term retention storage services

Archive and Long-term Retention Storage services are also primary storage services, but due to the nature of the data, provide a measurably reduced time to store and retrieve data. Archive data can be subject to expiration dates depending on business policy as well. However, the services below will not enforce retention policies. It will be up to the customer to develop a mechanism to enforce retention according to the University records schedule.

When selecting an Archive or Long-term Retention Storage Service, select a service that best meets your workflow and cost requirements. Cloud archive services such as Amazon S3 Glacier Deep Archive often require manual workflows and reduced access times that may cost more in administration and management than a tiered storage services such as the Networked Storage Service. Similarly, the Networked Storage Service may be cost prohibitive for large datasets that would benefit from manual efforts to move static data to more cost-effective services.

Archive and Long-term Retention Storage Services and Properties

Networked Storage Service AWS S3 Glacier Deep Archive UMD Google Shared Drive
Use Case

Automated tiered archiving for production workflows for any data type. Recommended for data that needs to be accessed spontaneously and for customers who are constantly referencing data sets.

If your department has an AWS account, you can setup S3 buckets to archive to Glacier Deep Archive. This is recommended for large, static data sets.

Departmental users can also archive data using Google Shared Drives. Individual Google Drives are not recommended. Use this for static data and data previously used for collaboration.

Available via

Networked Storage Service

Departmental AWS Accounts

DIT-Managed Google Domain

Encryption at Rest

Yes

Yes, configurable

Yes

Encryption in Transit

Yes, SMB3 only

Yes, configurable

Yes

Tiered Service

Yes

Configurable

No, manual management

Expected Retrieval Times

Approx. 10ms per read with 20 Gbps throughput

Approx. 48 hrs for bulk retrieve

Approx. 12 hrs for standard retrieve

Approx. 1 Gbps or endpoint throughput

For more information about these services review the links below.

Top