Category: cloudcasa

Would your team benefit from a simple and easy to use Kubernetes backup service that does all the hard work for you to backup and protect your multi-cloud, multi-cluster, applications and cloud native databases? A cloud-based service so easy to use that even developers won’t mind managing backups?

We built CloudCasa to address the data protection weaknesses in Kubernetes and cloud native infrastructure, and to bridge the data management and protection gap between DevOps and IT Operations. As a SaaS solution, CloudCasa removes the complexity of managing traditional backup infrastructure, and it provides the same level of application-consistent data protection and disaster recovery that IT Operations provides for their server-based applications today. With CloudCasa, IT doesn’t need to be Kubernetes experts and DevOps doesn’t need to be storage experts in order to protect your Kubernetes clusters and data.

Webinar Recap

During our live webinar and demo, we covered the benefits of using CloudCasa – a simple, scalable cloud native backup service, built using Kubernetes to protect Kubernetes. Our market research shows that DevOps users want the following capabilities for their cloud native, data protection solution:
  • No hardware or storage infrastructure required
  • All Kubernetes distributions supported with multiple storage options
  • Back up offsite and in their cloud of choice
  • Protect against logical and intentional data loss
  • No hassle, no cost to get started
We asked the audience several poll questions and we found the response to “How do you back up Persistent Volumes today?” to be interesting. Many different methods are being used which supports the early and somewhat confusing state of data protection for cloud native applications.
We also previewed the additional paid premium features and capabilities coming this quarters including multi-cloud and multi-region storage, protection of database services such as Amazon RDS, and Persistent Volume (PV) backups. But note that our current level of data protection service is FREE forever at the current level of service, with no limits on the number of snapshots, worker nodes or clusters, and your cluster resource data and snapshot metadata is always encrypted and retained for free on secure storage.

Webinar Q&A

Here are some of the questions that were addressed at the end of the webinar. Please email us at casa@cloudcasa.io for further questions or clarifications.

Will the RDS and other database snapshots and backups be free as well?

Yes, snapshot management will always remain a free service. If you would like to back up your snapshots to your own cloud storage or to a different cloud provider, those will be premium features which will be announced when they become available.

Will the RDS and other database snapshots and backups be free as well?

Yes, snapshot management will always remain a free service. If you would like to back up your snapshots to your own cloud storage or to a different cloud provider, those will be premium features which will be announced when they become available.

Can you use CloudCasa to backup AWS RDS to another public cloud? (Example: GCP Coldline)

This is not currently a part of our free service, however there are other key features that RDS backups will include, such as backup to a different account or different availability zone within the cloud. In a public cloud instance, you can store RDS data in various formats that are platform agnostic and can be exported to different cloud providers.

Can you compare CloudCasa to Velero?

Velero is a single-cluster solution that is configured locally and that allows you to perform backups of your cluster. CloudCasa allows you to manage multi-cluster, hybrid, and multi-cloud, backups. The challenge of manually dealing with Velero on a dozen clusters is very different from dealing with Velero on one cluster.  For more information, please see Top 10 Reasons to Use CloudCasa™ vs. your Cloud Vendor’s Backup.

Is my data encrypted?

Your data is encrypted both in transit using TLS and at rest using AES-256. Stored data objects are also isolated so that data belonging to one user can never be seen or accessed by another user. We are working on an option to allow our users to “bring your own keys.” Expect to hear more about this in the next quarter.

Can I pick my own cloud storage provider?

Yes, we have separate control and data planes, so we can add support for as many storage planes as possibly. Today, we manage that storage for you to provide a turnkey solution. In this quarter, we will allow customers to choose their preferred cloud provider and region to store their backup data. You will have the freedom to define where your data will be sent, without having the responsibility of managing storage or cloud credentials.

Next Steps

CloudCasa is backed by Catalogic Software, a proven enterprise data protection company with over 20+ years in the industry. CloudCasa is a reimagination of backups leveraging Catalogic’ proven expertise in snapshot and copy data management across multiple storage vendors.  Our goal is to do all the hard work for you to backup and protect your on-premise or multi-cloud and multi-cluster Kubernetes environments, so you can focus on delivering value to your business. Please give CloudCasa a try today, and let us know what we can do to further enable your cloud native applications.

Did you miss the CloudCasa webinar? Don’t worry, you can view a recording of it here.

Read More
02/09/2021 0 Comments

Ensuring the Security and Compliance of your Cloud Native Data Protection Service

As a developer of copy data management and data protection products for 20+ years, Catalogic Software has considerable experience in securing and protecting our customers’ data. For our new CloudCasa backup service for Kubernetes and cloud native databases, security is built into every step of the service using a modern DevSecOps approach. In addition, we are adding new capabilities to meet specific enterprise security and data custodian and governance requirements.

Let’s go through some highlights of how we secure our CloudCasa service, to help ensure your cloud native application data is secure and available.

CloudCasa Service Security

CloudCasa is hosted on Amazon Web Services (AWS) where we leverage the native security mechanisms provided by AWS. We also benefit from the AWS Partner Network (APN) technical review process that assesses an APN Partner’s solution against a specific set of AWS best practices around security, performance, and operational processes that are most critical for customer success.

 

According to Gartner, nearly all successful attacks on cloud services are the result of customer misconfiguration, mismanagement, and mistakes. Knowing this about successful attacks on cloud services, we regularly perform security and compliance checks to help ensure the cloud security posture of CloudCasa.

Further, communications with our home.cloudcasa.io web portal is always encrypted via TLS 1.2 or 1.3. We recommend that you make sure support for TLS 1.3 is enabled in your browser.

CloudCasa Agent Security

The CloudCasa agent runs only on your clusters and it requires the ClusterAdmin role to access the resources and data to protect. All communications between your clusters and CloudCasa are initiated by your local CloudCasa agent as outbound TCP connections to the CloudCasa service (agent.cloudcasa.io) on port 443. The connection are also encrypted with TLS.

Backup Data Encryption

Backup data is sent directly to secure object storage from the agent. This is currently in AWS S3, with an Azure storage option coming soon. Data is encrypted both in transit using TLS and at rest using AES-256. Stored data objects are also isolated so that data belonging to one user can never be seen or accessed by another user.

We are working on an option to allow our users to “bring your own keys” Expect to hear more about this in the next quarter.

Ransomware Protection

With ransomware and malware attacks at all-time highs, it is vitally important to protect your organization by having secure and disconnected (often called air gapped, although this is usually a misnomer) copies of your data to recover from. By using CloudCasa, you will have secure and isolated copies of your Kubernetes resource data and application data that are not directly accessible via your network or cloud service.

In Q1, Catalogic is adding to CloudCasa the capability to do block level backups of your Kubernetes persistent volumes, in addition to the resource data you can backup now. This will give users the ability to keep copies of both resource and PV data in a location where it is safe from malware. With CloudCasa, you can recover your entire Kubernetes configuration and data to a point in time before the infection happened.

Your Secure Casa in the Cloud

The CloudCasa service and agent are continuously tested by us and our users. The service is also going through various levels of review and testing by our partners, including where we have the CloudCasa agent certified for catalogs and marketplaces such as AWS Partner Network, Red Hat OpenShift and SUSE Rancher.

Try CloudCasa now knowing that your data is always encrypted and that CloudCasa will remain free forever at the level of service provided today. The free service level includes unlimited worker nodes and clusters, and unlimited CSI snapshots, with 30 days retention.

Read More
02/02/2021 0 Comments

We discussed in previous blogs the need for data protection for Kubernetes and what’s different about CloudCasa.  CloudCasa was designed to address the gap in data protection and disaster recovery that exists in all the leading Kubernetes distributions and managed cloud services. Further, another pain point that CloudCasa addresses is that your cloud-based applications may well be hybrid and multi-cloud applications that use both container-based storage and serverless databases. This is not unlike your on-premises applications that run in different server, virtualization, and storage infrastructures. CloudCasa was designed to support hybrid, distributed, multi-cluster, and multi-cloud environments.

One of our early beta users challenged us on why CloudCasa was needed when there is already backup for a Kubernetes cluster available in Azure. Indeed, Azure’s best practices guide for storage and backups in Azure Kubernetes Service states: Back up your data using an appropriate tool for your storage type, such as Velero or Azure Backup. 

The Azure Backup service is a file and VM-level backup that is not container or cluster aware, so it is not suitable for recovering cluster configuration and application state. While Azure Backup does support all of Azure’s databases, CloudCasa will also support these and the serverless databases of other cloud services.

Velero is an open source, CLI-based tool that needs infrastructure to be provisioned and supported for it. Then you need to manually setup and configure it for each cluster you have, including the backup storage target for each cluster.

Top 10 Reasons for Using CloudCasa instead of Velero

Since CloudCasa actually leverages Velero for some of its data protection capabilities, let’s go through the major additions we have added, based on our 25+ years of experience in the data protection market.
1. Backup as a service. With CloudCasa, there is no need to build a backup infrastructure or maintain Velero installations with fast evolving updates. We host and manage your backups and snapshots with a rich service so complete with capabilities that even your IT Operations team would use it. Set it and forget it and you’ll never need to hear this:

2. Intuitive UI:Get ease of configuration and management from an intuitive GUI that guides you through initial setup of policy driven data protection for your clusters and namespaces. Within 10 clicks you’ll have your backup and restore policies and operations in place. And we all know
3. Multi-Cluster Management: Multi-cluster, hybrid, and multi-cloud management, with cluster migration. The challenge of manually dealing with Velero on a dozen clusters is very different from dealing with Velero on one cluster. 

4. Free Backup Storage: Free storage for your cluster resource data is included in the CloudCasa service. We configure and manage the storage leaving no room for misconfiguration of bucket permissions that can expose your data. Don’t let your backups go to a file share or a bucket that can be hacked or that everyone has access to.
5. Secure Backups: Data is encrypted in flight and at rest by CloudCasa. Don’t leave security to chance and hope your Kubernetes backup owners are setting the right privileges. CloudCasa is also adding support for BYO keys as well, for both data in transit and data at rest.

6. Account Compromise Protection:  If your cloud account gets compromised, you could lose primary and secondary data to a malicious user or to a ransomware attack. CloudCasa provides separation for your data and you don’t end up with all your eggs in one basket.
7. Cloud Provider Outage Protection:  CloudCasa protects against local and temporary outages of your cloud provider by allowing you to quickly restore in an alternate zone or region or to an alternate cloud provider. Each quarter based on customer demand, we’ll add support for even more regions and cloud providers.

8. Serverless Data Protection: CloudCasa will support snapshotting serverless databases to ensure application consistent backups of data outside of Kubernetes. Serverless databases account for a large portion of persistent data for applications running on Kubernetes.
9. Centralized Catalog and Reporting: You don’t have to pray and hope that you have a backup when you need it. From the CloudCasa console, you can quickly scan your cloud native application environment for recovery points and always be aware of how protected and compliant you are.

10. Backups are Monitored: We monitor backup success rates across customers, debug your problems, and proactively inform you when you could do something to improve your success rates.

Read More
01/08/2021 0 Comments

In part 1 of this blog series on data protection for Kubernetes and cloud native applications, we addressed the need for Data Protection for Containerized Applications. Given that the leading Kubernetes distributions and managed cloud services do not include native capabilities for data protection and disaster recovery, service providers and enterprises need additional data management tools such as CloudCasa to provide these.

In part 2 of this blog series, we discussed What’s different about CloudCasa™ and Data Protection for Kubernetes. The management of Kubernetes deployments is currently dominated by developers and DevOps engineers who usually don’t deal with data protection solutions. Further, IT organizations are just starting to catch up with the DevOps teams on what is needed to support the deployment and management of cloud-native business applications.

In this part 3 blog we’ll talk about additional design considerations for CloudCasa that make it a unique and compelling data protection and disaster recovery solution for cloud native applications, including its:

  • support for all major distributions and managed Kubernetes services
  • multi-cloud and hybrid cloud support
  • support for serverless databases

Supports all Major Distributions and Managed Kubernetes Services

CloudCasa supports all major Kubernetes managed cloud services and distributions, provided they are based on Kubernetes 1.13 or above. Supported cloud services include Amazon EKS, Digital Ocean, Google GKE, IBM Cloud Kubernetes Service, and Microsoft AKS. Supported Kubernetes distributions include D2IQ, Kubernetes.io, Red Hat OpenShift, SUSE Rancher, and VMware Tanzu Kubernetes Grid. Multiple worker node architectures are supported, including x86-64, ARM, and S390x.
Just because a Kubernetes distribution or managed cloud service isn’t listed here does not mean that CloudCasa will not work with it. We expect that nearly any variant of Kubernetes based on version 1.13 or higher will be compatible with CloudCasa.

Multi-Cloud and Hybrid Cloud Support

Increasingly, enterprises are making use of multiple Kubernetes clusters hosted both on-premises and in one or more public cloud providers. This approach gives the ability to run workloads in the most appropriate location, and maximizes flexibility, feature choice, and availability. The downside is that managing multi-cloud and hybrid cloud infrastructure is complicated, and that includes managing data protection!
With CloudCasa, managing data protection in complex hybrid cloud or multi-cloud environments is as easy as managing it for a single cluster. Just add your multiple clusters to CloudCasa, and you can manage backups across them using common policies, schedules, and retention times. And you can see and manage all your backups in a single easy-to-use GUI.

Support for Serverless Databases

In cloud native applications, containers running under Kubernetes often make use of serverless databases or managed database services outside of the cluster. This can speed application development and deployment, but it can further complicate the picture when it comes to data protection and disaster recovery. It is important to make sure that you are capturing all of your application’s state via integrated and consistent snapshots of all of your application’s disparate components. This includes databases, regardless of whether they reside in Kubernetes or the cloud provider’s infrastructure.
Further, applications need to be protected in separate geographies and access domains. While it is usually easy to make serverless components redundant both within and across regions, it is important not to confuse redundancy with true data protection and disaster recovery capability, which protects against human errors and/or intentional harm from bad players. It can also be more difficult to identify failure domains when you are using serverless components than with more traditional infrastructure.

Summary

With CloudCasa, we have your back based on our many years of experience in enterprise data protection and disaster recovery. Our goal is to do all the hard work for you to backup and protect your multi-cloud, multi-cluster, cloud native databases and applications so you can realize the operational efficiency and speed of development advantages of containers and cloud native applications. Try our CloudCasa.io beta today and start realizing the benefits of our free and unique cloud-native data protection.

Read More
12/21/2020 0 Comments

In part 1 of this blog series on Kubernetes and cloud native application data protection, we addressed The need for Data Protection for Containerized Applications.  In part 2 of this blog series, we go through:

 

What’s different about CloudCasa™ and Data Protection for Kubernetes
Kubernetes has become the de facto standard for container orchestration, but
as with any new technology platform, it has some weaknesses in management, including in the areas of data protection and disaster recovery. The management of Kubernetes deployments is currently dominated by developers and DevOps engineers who usually don’t deal with data protection solutions. Further, IT organizations are just starting to catch up with the DevOps teams on what is needed to support the deployment and management of cloud-native business applications.

 

We built CloudCasa to address these data protection weaknesses in Kubernetes and cloud native infrastructure, and to bridge the data management and protection gap between DevOps and IT Operations. CloudCasa is a simple, scalable and cloud-native backup-as-a-service solution built using Kubernetes for protecting Kubernetes. As a SaaS solution, CloudCasa removes the complexity of managing traditional backup infrastructure, and it provides the same level of application-consistent data protection and disaster recovery that IT Operations provides for their server-based applications today. With CloudCasa, IT doesn’t need to be Kubernetes experts and DevOps doesn’t need to be storage experts in order to protect your Kubernetes clusters and data.

Cloud Native Resources to Backup and Restore

Let’s look at the different types of data and resources that need to be protected in cloud native applications built with Kubernetes.

Cluster Data

Kubernetes is a container orchestration system that manages a cluster of hosts and all the resources in the system such as pods, services and namespaces. Cluster data including resource specifications and configuration data are stored in etcd, a distributed key-value store. These are key components in a Kubernetes deployment, and it is important to back them up in order to rebuild a cluster.

Persistent Volumes
Persistent Volumes (PVs) are resources in Kubernetes that are associated through persistent volume claims (PVCs) with pods or groups of containers. PVs allow for storage resources to be associated with stateful applications such as databases. PVs can be contrasted with ephemeral storage volumes that live and die with containers and are associated with stateless applications.

Container Storage Interface
The Container Storage Interface (CSI) was developed as a standard for supporting both block and file storage systems in Kubernetes. Prior to having the CSI, storage systems were supported via plug-ins that were part of the core Kubernetes code, which meant that vendors had to wait for a new distribution to add support or fix a bug. With the adoption of CSI, storage providers can add or update support for their systems in Kubernetes without ever having to touch the core Kubernetes code. This greatly expanded device support, gave Kubernetes users more options for storage, and made the platform more secure and extensible.

Since data protection products rely on snapshots to efficiently create point-in-time copies of data, a snapshot capability was added to the CSI.  Many container storage systems provide the ability to create these snapshots or copies of a volume, which can then be used for backup, restore and disaster recovery. CSI snapshots can also be used to provision new copies or replicas of a volume for additional uses cases such as application and database testing and reporting.

 

Serverless Databases
In cloud native applications, containers running under Kubernetes may also use serverless databases or managed database services, which can speed application development and deployment.  However, this can further complicate the picture when it comes to data protection and disaster recovery. It is important to make sure that you are capturing integrated snapshots of all of your application’s disparate components, including databases, regardless of whether they reside in Kubernetes or the cloud provider’s infrastructure, and that at a minimum they are protected in separate geographies and access domains.

It is usually easy to make serverless components redundant both within and across regions, but as with other cloud-native infrastructure, it is important not to confuse redundancy with true protection and DR capability, which protects against human errors and/or intentional harm from bad players. It can also be more difficult to identify failure domains when you are using serverless components than with more traditional infrastructure.

 

Summary

The DevOps team must take initial responsibility for data protection in cloud native applications to ensure consistent backup and recovery of container-based applications, given the new and different types of container resources and cloud native data storage. While the DevOps team is in the best position to understand the applications, where the various pieces of them reside, and what configuration and application state data need to be protected, they don’t normally deal with data protection solutions. Therefore, we expect to see the data protection responsibility, budget and accountability remain as a shared responsibility between DevOps and IT Operations for the foreseeable future.

CloudCasa was built as a cloud native service to support best practices for data protection and recovery for cloud native applications, and to bridge the data management and protection gap between DevOps and IT Operations.

We invite you to sign up for our open beta and give us your feedback on CloudCasa!

Read More
11/12/2020 0 Comments

Woodcliff Lake, NJ – November 11, 2020  Catalogic Software, a leading provider of smart data protection and copy data management solutions, today announced the launch of its new SaaS platform – CloudCasa – to deliver data protection and disaster recovery for Kubernetes and Red Hat® OpenShift® Clusters. CloudCasa is a simple, scalable, cloud-native platform built using Kubernetes for protecting Kubernetes. CloudCasa is platform and location agnostic, and will protect cloud native applications across Amazon Elastic Kubernetes Service (Amazon EKS), Google Kubernetes Engine (GKE), IBM Cloud Kubernetes Service, Microsoft Azure Kubernetes Service (AKS), Red Hat OpenShift, and VMware Tanzu.

 

“Kubernetes has been the driver of the single largest shift in the data protection ecosystem in recent years. Kubernetes management is dominated by developers and DevOps engineers who have seldom had to deal with data protection solutions,” said Sathya Sankaran, COO of Catalogic Software. “At KubeCon, we will be launching CloudCasa, our subscription Backup as a Service offering that is built with simplicity for developers in mind. CloudCasa removes the complexity of managing a backup solution so that customers can effortlessly protect their critical Kubernetes infrastructure. CloudCasa is truly disruptive and allows unlimited CSI snapshots as well as backup of cluster metadata and container resources to our managed storage for free.”

 

“Containers may seem like the latest buzzword, but they are here, and real, and IT operations needs the full set of tools to support the enterprise execution,” said Camberley Bates, Managing Director, Evaluator Group. “CloudCasa from Catalogic Software is bringing a focused approach to supporting the need for protection and snapshots in the Public Cloud, with an eye on the longer-term maturity that is needed for the enterprise.”

 

CloudCasa – A Smart Home in the Cloud for Backups

 

Unlike solutions that retrofit existing appliance solutions, CloudCasa is a reimagination of backups leveraging Catalogic’s proven expertise in snapshot and copy data management across multiple storage vendors. CloudCasa exploits the strengths of public cloud infrastructure and Kubernetes:

 

  • Cloud Native: Built in the cloud to leverage the elasticity and scale of the cloud.
  • Cloud Scale: Horizontal auto-scaling with unlimited cloud storage at the user’s disposal.
  • Cloud Secure: Always encrypted, both in transit and at rest.
  • Cloud Smart: Learns from its users to deliver insights and service optimization
  • Cloud Mobile: Backup from and restore to both on-premises and cloud-deployed clusters. CloudCasa supports all major flavors of Kubernetes.
  • Cloud Service: Low touch and zero Infrastructure demand on the user.

 

“The launch of CloudCasa is a game changer for Catalogic, its customers, and those in need of data protection and disaster recovery for Kubernetes,” said Ken Barth, CEO of Catalogic Software. “We’ve taken a look at market need, the steady adoption of the deployment of Kubernetes for cloud native applications and spearheaded the development of a SaaS solution that takes all the complexity out of data protection for Kubernetes. It’s truly a subscribe and use solution, so elegant, and an answer to a pain point in the burgeoning Kubernetes market. Kudos to the team for developing and delivering CloudCasa.”

 

CloudCasa will be launched as a public beta at KubeCon + CloudNativeCon North America 2020, where Catalogic is a silver sponsor of the event. CloudCasa will be generally available through public cloud marketplaces and marketplaces of popular distributions such as RedHat OpenShift, SUSE Rancher and VMware Tanzu. The free offering has no limits as to the number of clusters or worker nodes per user or organization. Backup retention will be a maximum of 30 days with more premium offerings coming in the future.

 

# # #

 About Catalogic Software

Catalogic’s mission is to enable IT organizations to protect and leverage their data, delivering significant reductions to CAPEX and OPEX while providing superior services to the organization. With its Smart Data Suite of products and client services, Catalogic helps clients protect, recover, manage, secure, orchestrate and make use of their backup and copy data across their enterprise and cloud in support of mission critical IT functions including disaster recovery, test/dev, DevOps, next generation data protection, and business analytics. Learn more at www.catalogicsoftware.com.

 

Press Inquiries:

Joanne Hogue
Smart Connections PR
410.658.8246

joanne@smartconnectionspr.com

Read More
11/11/2020 0 Comments

Let us show you around


Data ProtectionData ManagementOpen VM BackupNetApp Ransomware ShieldNetApp File Catalog