Brocade Establishes Leadership Position in Storage Area Network Security

Secure Fabric OS Expands SAN Security to Support Multi-Tenant SANs And

Enterprise Storage Environments



Apr 10, 2001, 01:00 ET from Brocade Communications Systems, Inc.

    STORAGE NETWORKING WORLD, PALM DESERT, Calif., April 9 /PRNewswire/ --
 Brocade Communications Systems, Inc. (Brocade(R)) (Nasdaq:   BRCD) announced
 today the first comprehensive security solution for storage area networks
 (SANs). Offered as an integrated part of the Brocade Fabric operating system
 (Brocade Fabric OS(TM)), which is the intelligent software platform for
 Brocade-based SANs, Secure Fabric OS(TM) is the industry's first comprehensive
 solution to enable strong security mechanisms in a storage networking
 environment.
     (Photo:  http://www.newscom.com/cgi-bin/prnh/20010409/SFM105-a
              http://www.newscom.com/cgi-bin/prnh/20010409/SFM105-b )
     "As SANs increase in size and are internetworked within shared datacenters
 or over long-distance networks, enabling a highly secure environment for
 business critical data is paramount. New types of storage service providers
 need to deploy a cost-effective SAN infrastructure that is shared among
 multiple clients or 'tenants.' In these multi-tenant environments, SAN
 security is crucial to protect customer data and win customer confidence,"
 Jay Kidd, Brocade vice president of Product Marketing. "For enterprise SANs,
 Secure Fabric OS offers the level of security that is required by any large
 network infrastructure to prevent unauthorized access to data."
     Secure Fabric OS, which will be offered in upcoming versions of the
 Brocade Fabric OS, significantly extends the security features offered in
 current versions of Fabric OS. Secure Fabric OS offers authentication methods
 to support policy-based SAN management and secure access to the fabric at all
 access points, preventing unauthorized access into the storage network. These
 access points include user access to SAN management consoles, management
 console or application level access to the SAN fabric, server access to the
 SAN fabric, and switch access to the fabric.
     Secure Fabric OS uses the industry approved and standard Public Key
 Infrastructure (PKI) based security. These capabilities include the use of
 digital certificates and digital signatures to provide the strongest
 commercially available authentication security in the market today. Secure
 Fabric OS is expected to be generally available from Brocade in CY Q3 2001.
 
     About Secure Fabric OS
     Secure Fabric OS offers the following feature sets to extend security in
 Brocade SANs to support enterprise-class storage applications and services.
 These features include:
 
     -- Designation of "trusted" Brocade switches that are responsible for
        managing the configuration and security parameters of all other
        switches in the fabric. Called Fabric Configuration Servers, these
        trusted switches ensure that only authorized configuration changes are
        applied to the network.
     -- Access control lists and policies to prevent unauthorized access and
        control the SAN environment. Access control lists control the
        following:
        1. Restrict management service access to specific end points, such as
           IP addresses, device ports, or switch worldwide names, ensuring not
           only which management interfaces are enabled within the SAN fabric,
           but also which management consoles can make configuration changes.
        2. Restrict connections to devices by binding individual Host Bus
           Adaptors (HBAs) or servers to a specific port. This eliminates the
           risk of WWN (Worldwide Name) "Spoofing," where an unauthorized
           server impersonates the address of an authorized server to get
           access to restricted data.
        3. Restrict fabric connections to a designated set of switches, as
           identified by worldwide name. When a new switch is connected to a
           switch that is already part of the fabric, the two switches must be
           mutually authenticated before the new switch can join the fabric.
           Secure Fabric OS manages switch to switch operations in-band, so no
           IP communications are required. This capability prevents users from
           arbitrarily adding switches to a fabric. Any new switch must have a
           valid certificate and also appear in the fabric ACL.
     -- Secure management communications between a switch and a management
        console. Elements of the manager-to-switch communication process, such
        as user IDs and passwords, are encrypted to increase security.
 
     The Brocade Intelligent Fabric Services Architecture
     The Secure Fabric OS is a cornerstone of the Brocade Intelligent Fabric
 Services Architecture, also announced today by Brocade. The architecture
 defines a networking foundation to support the requirements of next-generation
 enterprise storage applications, such as resource optimization through server
 and storage consolidation; simplified management through storage
 virtualization and centralized management; and high availability architectures
 such as server clustering and data replication for disaster recovery.
 Together, the Brocade SilkWorm family of fabric switches -- including the new
 SilkWorm 12000 -- and the Fabric OS form the industry standard for
 next-generation enterprise-class SANs. The architecture has received
 industry-wide support from leading companies including ADVA, BMC Software,
 Computer Associates, Compaq, Dell, EMC Corporation, Emulex, Hewlett-Packard,
 IBM, JNI, Microsoft, Micromuse, Nortel Networks, ONI Systems, Oracle, Hitachi
 Data Systems, StorageTek, StorageApps, and VERITAS Software.
 
     About Brocade Communications Systems, Inc.
     Brocade provides the world's leading intelligent platform for networking
 storage. For more information, visit the Brocade website at www.brocade.com or
 contact the company at info@brocade.com.
 
     NOTE:  Brocade, SilkWorm, SilkWorm Express, Extended Fabrics, Fabric
 Aware, Fabric Integrator, Fabric OS, Fabric Threads, Fabric Watch, Fabric
 Weaver, QuickLoop, and Secure Fabric OS are trademarks or registered
 trademarks of Brocade Communications Systems Inc., in the United States and/or
 in other countries. All other brands, products, or service names are or may be
 trademarks or service marks of, and are used to identify, products or services
 of their respective owners.
 
                                  QUOTE SHEET
 
     Cranel, Inc.
     "SAN security is the top priority in the maturation of Fibre Channel as a
 key enabling infrastructure technology. The Brocade Secure Fabric OS is a
 comprehensive program for secure Fibre Channel SANs on the market today.
 Cranel is committed to implementing SANs that give end-customers the peace of
 mind that comes from knowing their data is not vulnerable to unauthorized
 access," said Mike Cush, Chief Technology Officer of Cranel. "This represents
 a significant value that we can provide our customers."
 
     Emulex Corporation
     "Brocade's introduction of the Secure Fabric OS promises to enable secure
 fabrics for mission-critical, high availability data center environments,"
 said Mike Smith, executive vice president of Worldwide Marketing at Emulex.
 "Our mutual customers will greatly benefit from technology designed to ensure
 higher levels of SAN security."
 
     Hitachi Data Systems
     "The Brocade Secure Fabric OS offers enterprise customers with the types
 of security features required as SANs grow ever larger," said Ron Gervenack,
 general manager, Enterprise Products and Solutions Business Unit, Hitachi Data
 Systems. "Enterprises seek the same levels of security in their SANs that they
 experience in their IP environments, and Brocade has taken a leadership
 position in providing this enterprise-class security to storage area
 networks."
 
     Kanatek
     "Kanatek customers know their information is their most valuable asset.
 Our ability to offer Brocade products, with the added value of the Brocade
 Secure Fabric OS, gives our customers access to industry-leading security
 features not available in any other SAN environment," said Terry Kell,
 president, Kanatek Technologies. "We foresee great customer interest in
 security features like those offered by the new Secure Fabric OS."
 
     StorNet, Inc.
     "Our customers are concerned about security. Brocade has created a
 powerful tool to create secure storage area network SANs that enable customers
 to permit or exclude access reliably," said Derek Gamradt, Chief Technology
 Officer of StorNet. "StorNet endorses the Secure Fabric OS and the platform
 for implementing strong SAN security for our Brocade customers, even in
 challenging enterprises with multiple locations."
 
     XIOtech Corporation
     "As enterprises deploy larger and larger networked storage environments,
 the intelligence provided by the Brocade Secure Fabric OS becomes central to
 providing customers with the tools they need to ensure the security of their
 data. We support the Brocade Fabric OS as the platform for secure and
 manageable SANs," said Richard Blaschke, executive vice president of marketing
 for XIOtech Corporation.
 
 

SOURCE Brocade Communications Systems, Inc.
    STORAGE NETWORKING WORLD, PALM DESERT, Calif., April 9 /PRNewswire/ --
 Brocade Communications Systems, Inc. (Brocade(R)) (Nasdaq:   BRCD) announced
 today the first comprehensive security solution for storage area networks
 (SANs). Offered as an integrated part of the Brocade Fabric operating system
 (Brocade Fabric OS(TM)), which is the intelligent software platform for
 Brocade-based SANs, Secure Fabric OS(TM) is the industry's first comprehensive
 solution to enable strong security mechanisms in a storage networking
 environment.
     (Photo:  http://www.newscom.com/cgi-bin/prnh/20010409/SFM105-a
              http://www.newscom.com/cgi-bin/prnh/20010409/SFM105-b )
     "As SANs increase in size and are internetworked within shared datacenters
 or over long-distance networks, enabling a highly secure environment for
 business critical data is paramount. New types of storage service providers
 need to deploy a cost-effective SAN infrastructure that is shared among
 multiple clients or 'tenants.' In these multi-tenant environments, SAN
 security is crucial to protect customer data and win customer confidence,"
 Jay Kidd, Brocade vice president of Product Marketing. "For enterprise SANs,
 Secure Fabric OS offers the level of security that is required by any large
 network infrastructure to prevent unauthorized access to data."
     Secure Fabric OS, which will be offered in upcoming versions of the
 Brocade Fabric OS, significantly extends the security features offered in
 current versions of Fabric OS. Secure Fabric OS offers authentication methods
 to support policy-based SAN management and secure access to the fabric at all
 access points, preventing unauthorized access into the storage network. These
 access points include user access to SAN management consoles, management
 console or application level access to the SAN fabric, server access to the
 SAN fabric, and switch access to the fabric.
     Secure Fabric OS uses the industry approved and standard Public Key
 Infrastructure (PKI) based security. These capabilities include the use of
 digital certificates and digital signatures to provide the strongest
 commercially available authentication security in the market today. Secure
 Fabric OS is expected to be generally available from Brocade in CY Q3 2001.
 
     About Secure Fabric OS
     Secure Fabric OS offers the following feature sets to extend security in
 Brocade SANs to support enterprise-class storage applications and services.
 These features include:
 
     -- Designation of "trusted" Brocade switches that are responsible for
        managing the configuration and security parameters of all other
        switches in the fabric. Called Fabric Configuration Servers, these
        trusted switches ensure that only authorized configuration changes are
        applied to the network.
     -- Access control lists and policies to prevent unauthorized access and
        control the SAN environment. Access control lists control the
        following:
        1. Restrict management service access to specific end points, such as
           IP addresses, device ports, or switch worldwide names, ensuring not
           only which management interfaces are enabled within the SAN fabric,
           but also which management consoles can make configuration changes.
        2. Restrict connections to devices by binding individual Host Bus
           Adaptors (HBAs) or servers to a specific port. This eliminates the
           risk of WWN (Worldwide Name) "Spoofing," where an unauthorized
           server impersonates the address of an authorized server to get
           access to restricted data.
        3. Restrict fabric connections to a designated set of switches, as
           identified by worldwide name. When a new switch is connected to a
           switch that is already part of the fabric, the two switches must be
           mutually authenticated before the new switch can join the fabric.
           Secure Fabric OS manages switch to switch operations in-band, so no
           IP communications are required. This capability prevents users from
           arbitrarily adding switches to a fabric. Any new switch must have a
           valid certificate and also appear in the fabric ACL.
     -- Secure management communications between a switch and a management
        console. Elements of the manager-to-switch communication process, such
        as user IDs and passwords, are encrypted to increase security.
 
     The Brocade Intelligent Fabric Services Architecture
     The Secure Fabric OS is a cornerstone of the Brocade Intelligent Fabric
 Services Architecture, also announced today by Brocade. The architecture
 defines a networking foundation to support the requirements of next-generation
 enterprise storage applications, such as resource optimization through server
 and storage consolidation; simplified management through storage
 virtualization and centralized management; and high availability architectures
 such as server clustering and data replication for disaster recovery.
 Together, the Brocade SilkWorm family of fabric switches -- including the new
 SilkWorm 12000 -- and the Fabric OS form the industry standard for
 next-generation enterprise-class SANs. The architecture has received
 industry-wide support from leading companies including ADVA, BMC Software,
 Computer Associates, Compaq, Dell, EMC Corporation, Emulex, Hewlett-Packard,
 IBM, JNI, Microsoft, Micromuse, Nortel Networks, ONI Systems, Oracle, Hitachi
 Data Systems, StorageTek, StorageApps, and VERITAS Software.
 
     About Brocade Communications Systems, Inc.
     Brocade provides the world's leading intelligent platform for networking
 storage. For more information, visit the Brocade website at www.brocade.com or
 contact the company at info@brocade.com.
 
     NOTE:  Brocade, SilkWorm, SilkWorm Express, Extended Fabrics, Fabric
 Aware, Fabric Integrator, Fabric OS, Fabric Threads, Fabric Watch, Fabric
 Weaver, QuickLoop, and Secure Fabric OS are trademarks or registered
 trademarks of Brocade Communications Systems Inc., in the United States and/or
 in other countries. All other brands, products, or service names are or may be
 trademarks or service marks of, and are used to identify, products or services
 of their respective owners.
 
                                  QUOTE SHEET
 
     Cranel, Inc.
     "SAN security is the top priority in the maturation of Fibre Channel as a
 key enabling infrastructure technology. The Brocade Secure Fabric OS is a
 comprehensive program for secure Fibre Channel SANs on the market today.
 Cranel is committed to implementing SANs that give end-customers the peace of
 mind that comes from knowing their data is not vulnerable to unauthorized
 access," said Mike Cush, Chief Technology Officer of Cranel. "This represents
 a significant value that we can provide our customers."
 
     Emulex Corporation
     "Brocade's introduction of the Secure Fabric OS promises to enable secure
 fabrics for mission-critical, high availability data center environments,"
 said Mike Smith, executive vice president of Worldwide Marketing at Emulex.
 "Our mutual customers will greatly benefit from technology designed to ensure
 higher levels of SAN security."
 
     Hitachi Data Systems
     "The Brocade Secure Fabric OS offers enterprise customers with the types
 of security features required as SANs grow ever larger," said Ron Gervenack,
 general manager, Enterprise Products and Solutions Business Unit, Hitachi Data
 Systems. "Enterprises seek the same levels of security in their SANs that they
 experience in their IP environments, and Brocade has taken a leadership
 position in providing this enterprise-class security to storage area
 networks."
 
     Kanatek
     "Kanatek customers know their information is their most valuable asset.
 Our ability to offer Brocade products, with the added value of the Brocade
 Secure Fabric OS, gives our customers access to industry-leading security
 features not available in any other SAN environment," said Terry Kell,
 president, Kanatek Technologies. "We foresee great customer interest in
 security features like those offered by the new Secure Fabric OS."
 
     StorNet, Inc.
     "Our customers are concerned about security. Brocade has created a
 powerful tool to create secure storage area network SANs that enable customers
 to permit or exclude access reliably," said Derek Gamradt, Chief Technology
 Officer of StorNet. "StorNet endorses the Secure Fabric OS and the platform
 for implementing strong SAN security for our Brocade customers, even in
 challenging enterprises with multiple locations."
 
     XIOtech Corporation
     "As enterprises deploy larger and larger networked storage environments,
 the intelligence provided by the Brocade Secure Fabric OS becomes central to
 providing customers with the tools they need to ensure the security of their
 data. We support the Brocade Fabric OS as the platform for secure and
 manageable SANs," said Richard Blaschke, executive vice president of marketing
 for XIOtech Corporation.
 
 SOURCE  Brocade Communications Systems, Inc.