By Trilio Content Team | April 18, 2022
The latest Trilio for OpenStack v4.2 update is here with a ton of exciting new features to boost your data protection. One of the biggest ones is OpenStack Barbican integration, which enables you to securely back up your encrypted data.
Let’s take a look.
Trilio for OpenStack + Barbican Integration: Protect Your Encrypted Backups
By using secrets stored and managed inside Barbican, Trilio for OpenStack v4.2 can provide protection through encrypted backups for encrypted and unencrypted Cinder volumes, ensuring that your data is secure at all times.
This integration makes Trilio for OpenStack the only OpenStack native solution for encrypted Cinder volumes that doesn’t compromise the security of your backups.
Here’s how it works and why it matters.
How Barbican Integration Works
Trilio for OpenStack v4.2 consumes the Cinder Volume secret inside to decrypt its data while reading it with a data mover. Then, it uses the Workloads secret to write the encrypted backup data to the backup target.
This means that your data is only unencrypted briefly—on the block level, inside the data mover service—providing you with the most protection.
Benefits include:
- Data-in-Flight and Data-at-Rest encryption: Your data is both read and written as encrypted, providing protection in-flight and at rest.
- Multi-tenant: Barbican secrets are consumed per Workload, allowing you to bring your own keys. Because Trilio for OpenStack v4.2 is a multi-tenant environment, a secret used in one Tenant isn’t available in another.
- The only solution of its kind: Trilio for OpenStack v4.2 with Barbican integration is the only OpenStack native solution to offer this level of protection.
Why OpenStack Barbican + Trilio Integration Boosts Your Data Protection
To protect your data, you need to encrypt it securely and also protect your encryption key. OpenStack users created a secret management system called the OpenStack Barbican Project to do just that.
Using secrets stored and managed by Barbican, other OpenStack projects were able to extend their security, enabling the OpenStack Cinder project to introduce encrypted volumes. Now, all the data inside the OpenStack cloud can be securely encrypted.
If your Cinder volumes are encrypted, your backups should be too. That’s why Trilio released the Barbican integration. Now, your backups can be just as protected as the data inside them.
What Else is New in Trilio for OpenStack v4.2?
Along with Barbican integration, here are other new features and functionality that you’ll see in Trilio for OpenStack v4.2.
Support for Multi-IP NFS backup targets
More and more organizations are adopting software-defined storage solutions as backup targets. And for good reason—these solutions allow you to receive data streams through multiple servers.
With Trilio for OpenStack v4.2, you can now assign each data mover its own datastream endpoint. However, you still need to use the same NFS volume to all data movers.
Utilities
More customers are using Trilio for OpenStack, which leads to more use cases than before. While adding these use cases into the product takes time, we want to help you find solutions as quickly as possible. That’s why we’ve created a few new tools.
Tool 1: Database clean-up
If you’re a power user or have been using Trilio for OpenStack for years, you might have an overflowing database that could use a cleanup. With the database clean-up tool, you can delete all entries that you no longer need for backup and recovery tasks.
To keep historical data that you might need in the future, we recommend a database backup that you can store safely elsewhere.
Tool 2: Rebase utility
Want to migrate cleanly without needing any additional changes? The rebase utility tool can help! It changes the backing file of backups in a workload to the current NFS path.
It can use a lot of resources and time to execute, so use this only in scenarios that call for it.
What’s Next for Trilio for OpenStack?
For our next release, we are planning exciting new features to help you protect your open-source infrastructure, including:
- Containerization of the Trilio virtual machine appliance — a virtual machine that performs the management and orchestration of the backup and restores process: Eliminates the need for additional hardware or configuration.
- Database optimization: Offers improved database usage and performance.
Ready for Best-in-Class Data Protection for OpenStack? Try Trilio for OpenStack v4.2
If you’re already a customer, take these features and functionality for a spin. Your data protection just got better and easier, thanks to this release.
Not a customer yet? We’d love to show you what we can do for you. Reach out to schedule a demo or chat with your sales rep today.