Cisco Cisco NSS326 6-Bay Smart Storage 白皮書
Security Considerations White Paper for Cisco Smart Storage
1
White Paper
Security Considerations White Paper for
Cisco Smart Storage
Cisco Smart Storage
“An open network is like a bank’s vault with windows” … Bill Thomson
Network-Attached Storage (NAS) is a relatively simple and inexpensive way to
Network-Attached Storage (NAS) is a relatively simple and inexpensive way to
provide file-based data storage services to other devices on the network. NAS
can also be used to host web server, and other services (iTunes, MySQL, PHP, web
DAV, etc.). NAS uses protocols such as SMB/CIFS (Server Message Block/
Common Internet File System), NFS (Network File System), AFP (Apple Filing
Protocol), and FTP (File Transfer Protocol). It is managed by HTTP/HTTPS and can
be accessed remotely via SSH (Secure Shell). Despite its flexibility and cost
benefits, deploying NAS over IP networks potentially exposes customer data to
security risks. Like everything else in the IP infrastructure, the NAS must be
protected from security vulnerabilities such as Denial of Service (DoS) and other
malware attacks. In addition, Elevation of Privileges can also occur if guest’s
account is not managed properly. These security risks can result in data being
stolen, corrupted, and applications not functioning properly. Because of its broad
capabilities, unique security considerations must be addressed when deploying
the NAS in your network.
This document offers some security best practices and considerations when
This document offers some security best practices and considerations when
setting up the Cisco Smart Storage, so that these risks and vulnerabilities can be
minimized. The following topics are included in this document:
•
•
•
•
•
•