Online SNIA Dictionary

[Data Communication] 

An algorithm for encoding data for transmission in which each 64-bit data word is converted to a 66-bit transmission character.

Each transmission character is prefixed with either binary "01" or binary "10". This, combined with scrambling, gives the signal desirable engineering properties, yet incurs a much lower overhead than the traditional 8b/10b encoding.

[Data Security] 

Acronym for Authentication, Authorization, and Accounting.

[File System]  [Data Security] 

The granting or withholding of a service or access to a resource to a requestor based on the identity of the principal for which the requestor is acting.

[File System]  [Data Security] 

A persistent list, commonly composed of Access Control Entries (ACEs), that enumerates the rights of principals (users and groups of users and/or groups) to access resources.

[Operating System] 

1. The means used to access a physical transmission medium in order to transmit data.

2. In IBM Corporation's OS/390 operating system and its precursors, a file organization method, such as sequential, random, indexed, etc., and the operating system software used to implement it.

[Data Security] 

An established relationship between a principal and a computer, network or service.

[File System]  [Data Security] 

Acronym for Access Control Entry.

[Data Recovery] 

Acronym for Automated Cartridge System.

[Long-Term Retention] 

A long-term data retention system that allows online access to retained file and object data.

[Data Management] 

Data that is immediately accessible to an application without the need to stage it in from a lower tier of storage.

See near-online data.

[Energy] 

The power consumption of a system when powered on and under normal workload.

[Storage System] 

Synonym for hot standby components or controllers.

[General] 

A hardware device–typically an add-in card or specialized component on a system board–that converts the timing and protocol of one bus or interface to another, to enable a computer system's processing hardware to access peripheral devices.

A Fibre Channel Host Bus Adapter and an Ethernet Network Interface Card are both kinds of adapters.

[Hardware]  [SCSI] 

1. Acronym for Analog Digital Converter.

2.  Acronym for the INCITS T10 Automation/Drive Interface – Commands standards family.

A 24-bit value used to identify the source (S-ID) or destination (D-ID) of a frame, as specified in the FC-FS-2 standard.

The FC-SW-4 standard includes a table of special address identifier values and their meanings. See S-ID, D-ID, FC-FS-2, FC-SW-4.

[Network] 

1. Any protocol used to obtain a mapping from a higher layer address to a lower layer address; when abbreviated as ARP, the Ethernet Address Resolution Protocol (see 2) is most often meant.

2. The protocol used by an IP networking layer to map IP addresses to lower level hardware (i.e., MAC) addresses.

[Storage System] 

A computer that manages one or more storage subsystems (e.g., filers, disk array subsystems, tape subsystems, etc.).

[Data Security] 

A cryptographic algorithm designated by NIST as a replacement for DES.

[Legal] 

Inference that destroyed or missing evidence (data) would have been harmful to a party who failed to provide it.

[Storage System] 

Acronym for All Flash Array.

[Network]  [Storage System] 

A process related to consolidation, consisting of combining multiple similar and related objects or operations into a single one.

Acronym for Augmented ISL.

[Storage System] 

Acronym for Advanced Intelligent Tape.

[General] 

An alternate name for an entity, sometimes used to create names that are more easily human readable.

[Storage System] 

A synonym for all solid state array.

[Data Recovery] 

The process of restoring files to a different client than the one from which they were backed up.

[General] 

1. The state of always having power applied (systems) or of being continually active (communication links).

2. A state of an operational link of always being powered on and continually transmitting either data frames, idles or fill words, in contrast to bursty transmissions and listening for a quiet line in earlier 10 and 100 Mbit/sec Ethernet.

[Standards] 

A body that coordinates the development and use of voluntary consensus standards in the United States and represents the needs and views of U.S. stakeholders in international standardization forums around the globe.

ANSI accredits both standards certification organizations and standards development organizations. The IEEE Standards Association (which standardizes Ethernet and many other technologies) and INCITS (which standardizes SCSI, Fibre Channel, MPEG, and many other technologies) are two of over 100 ANSI accredited standards organizations.

[Standards] 

Acronym for American National Standards Institute.

[Standards] 

The standards development committee accredited by INCITS to develop standards related to Fibre Channel, related serial storage interfaces, and certain storage management interfaces.

The full name of this committee is the INCITS Fibre Channel Interfaces (T11) Technical Committee (INCITS TC T11).

[General] 

An intelligent device programmed to perform a single well-defined function, such as providing file, web, network or print services.

Appliances differ from general purpose computers in that their software is normally customized for the function they perform, pre-loaded by the vendor, and not alterable by the user. See filer.

[General] 

An interface used by an application program to request services.

The term API is usually used to denote interfaces between applications and the software components that comprise the operating environment (e.g., operating system, file system, volume manager, device drivers, etc.).

[Computer System] 

An integrated circuit designed for a particular application, such as interfacing to a SCSI interconnect.

1. A Fibre Channel interconnect topology in which each port is connected to the next, forming a loop.

   At any instant, only one port in a Fibre Channel Arbitrated Loop can transmit data. Before transmitting data, a port in a Fibre Channel Arbitrated Loop must participate with all other ports in the loop in an arbitration to gain the right to transmit data. The arbitration logic is distributed among all of a loop's ports.

2. The version of the Fibre Channel protocol used with the arbitrated loop physical topology.

[General] 

Any process by which a user of a shared resource–such as a port connected to a shared bus–negotiates with other users for the (usually temporary) right to use the resource (in the given example, by transmitting data on the bus).

[General]  [Computer System] 

1. Acronym for Application Response Measurement.

2. A common microprocessor architecture, as well as the name of the company that created the architecture.

[Storage System] 

A storage array, i.e., a disk array or tape array.

[Computer System] 

Acronym for Application Specific Integrated Circuit.

[Storage System] 

The amount of space on a system or data container which has been allotted to be written by an end user or application.

On thin provisioning systems, an assigned capacity number represents a promise that that amount of space will be provided on demand; usable capacity is allocated as the container is written. On fully provisioned systems, usable capacity must be committed at the same time the container is allocated. See thin provisioning.

[Data Security] 

A process for demonstrating that the security goals and objectives for an IT product or system are met on a continuing basis.

[Data Security] 

Cryptography that uses an asymmetric cryptosystem.

[Data Security] 

Synonym for public key cryptography.

[Storage System] 

An I/O operation whose initiator does not await its completion before proceeding with other work, enabling an initiator to have multiple concurrent I/O operations in progress.

[Storage System] 

Deprecated synonym for asynchronous replication.

[Network] 

A connection-oriented data communications technology based on switching 53 byte fixed-length units of data called cells.

ATM transmission rates are multiples of 51.840 Mbits per second. Each cell is dynamically routed. In the United States, a public communications service called SONET uses ATM at transmission rates of 155, 622, 2048, and 9196 Mbits per second. These are called OC-3, OC-12, OC-48, and OC-192 respectively. A similar service called SDH is offered in Europe. ATM is also used as a LAN infrastructure, sometimes with different transmission rates and coding methods than are offered with SONET and SDH.

[Network] 

Acronym for Asynchronous Transfer Mode.

[Data Security] 

Any kind of malicious activity that attempts to collect, disrupt, deny, degrade, or destroy information system resources or the information itself. [CNSSI-4009]

[General] 

Independent review and examination of records and activities to assess the adequacy of controls, to ensure compliance with established policies and operational procedures, and to recommend necessary changes in controls, policies, or procedures.

[Network]  [Data Security] 

A chronological record of system activities that enables the reconstruction and examination of a sequence of events and/or changes in a system such as an information system, a communications system or any transfer of sensitive material and/or information.

[General]  [Legal] 

1. Being genuine, or accurate in representation of facts.

2. For evidence, being found by a jury (or trier of fact) to be what it purports to be and thus being worthy of trust, reliance, or belief.

[Data Security] 

A component of IPsec, standardized by the IETF, that permits the specification of various authentication mechanisms designed to provide connectionless integrity, data origin authentication, and an optional anti-replay service.

[Network]  [Data Security] 

1. The process of determining–for example via access control–that a requestor is allowed to receive a service or perform an operation.

2. The limiting of usage of information system resources to authorized users, programs, processes or other systems, formally described as controlling usage by subjects of objects.

[Storage System] 

Synonym for automated storage tiering.

[Storage System] 

Automatic movement of data between storage tiers based on policy.

The tiers may be within a single storage system or may span storage systems, including a cloud storage tier.

[Storage System] 

Failover that occurs without human intervention.

[Storage System] 

Deprecated synonym for automatic failover.

[General] 

1. The amount of time that a system is available during those time periods when it is expected to be available, often measured as a percentage of an elapsed year.

   For example, 99.95% availability equates to 4.38 hours of downtime in a year (0.0005 * 365 * 24 = 4.38) for a system that is expected to be available all the time. See data availability, high availability.

2. The property of being accessible and usable upon demand by an authorized entity.

[ISO/IEC 27000]

A type of port used to communicate within a Fibre Channel distributed switch.

[Data Recovery] 

Acronym for Backup to Disk.

[Data Recovery] 

1. A collection of data stored on (usually removable) non-volatile storage media for purposes of recovery in case the original copy of data is lost or becomes inaccessible; also called a backup copy.

   To be useful for recovery, a backup must be made by copying the source data image when it is in a consistent state.

2. The act of creating a backup. See archive.

[Data Recovery] 

A recoverable copy of a given set of data.

See replica.

[Data Recovery] 

An IT installation's rules for how and when backup should be performed, such as which files or directories are to be backed up, the schedule on which backups should occur, which devices and media are eligible to receive the backups, how many copies are to be made, and actions to be performed if a backup does not succeed.

[Data Recovery] 

Backup onto tape media.

[General]  [Data Communication] 

1. The numerical difference between the upper and lower frequencies of a band of electromagnetic radiation.

2. A deprecated synonym for data transfer capacity that is often incorrectly used to refer to throughput.

[Network] 

The maximum rate of signal state changes per second on a communications circuit.

If each signal state change corresponds to a code bit, then the baud rate and the bit rate are the same. It is also possible for signal state changes to correspond to more than one code bit, so the baud rate may be lower than the code bit rate.

[General] 

Acronym for Best Current Practice.

[Network]  [Storage System] 

Acronym for Bit Error Rate.

[General] 

A recommendation for what is currently believed to be the best manner of proceeding.

[Data Security] 

Synonym for mutual authentication.

[Computer System] 

A format for the storage and transmission of binary data in which the most significant bits are stored at the numerically lowest addresses, or are transmitted first on a serial link.

[Computer System] 

A binary digit.

[Data Communication] 

The process by which the receiver of a serial communication establishes its clocking used to locate code bits in a received data stream.

[General]  [Energy] 

A solid plate that mounts over unused data center rack slots to maintain efficient air flow through components in the rack.

Blanking plates are also used for aesthetic reasons.

[Storage System] 

1. The unit in which data is stored and retrieved on disk and tape devices; the atomic unit of data recognition (through a preamble and block header) and protection (through a CRC or ECC).

2. A unit of application data from a single information category that is transferred within a single sequence.

[Data Security] 

A symmetric encryption algorithm that operates on a block of plaintext, i.e., a string of bits of a defined length, to yield a block of ciphertext. [ISO/IEC 10116]

[Storage System] 

The act of applying virtualization to one or more block based (storage) services for the purpose of providing a new aggregated, higher level–e.g., richer, simpler, more secure–block service to clients.

Block virtualization functions can be nested. A disk drive, RAID system or volume manager all perform some form of block address to (different) block address mapping or aggregation. See file virtualization.

[Computer System] 

The process of loading Operating System code from a disk or other storage device into a computer's memory and preparing it to run.

Bootstrapping is an appropriate term since a code load typically occurs in steps, starting with a very simple program (BIOS) that initializes the computer's hardware and reads a sequence of data blocks from a fixed location on a pre-determined disk, into a fixed memory location. The data thus read is the code for the next stage of bootstrapping–usually an operating system loader. The loader completes the hardware setup and results in an executing operating system, in memory.

[Network] 

1. A Fibre Channel technology that provides a transparent fabric extension between two switch E-Ports through the use of 2 B-Ports tunneling through some alternative technology, resulting in an Inter-Switch Link (ISL) that "appears" to be a direct link between switches.

   For example, a bridge pair can take an incoming Fibre Channel frame from one B-Port on a Bridge, encapsulate that frame using FCIP (Fibre Channel over IP) and transmit the frame as payload over an IP network to the remote Bridge where the original frame is forwarded to the remote Fibre Channel Fabric switch E-Port through the remote Bridge's B-Port.

2. A Fibre Channel technology that enables traffic carried along part of the path from a source device by Fibre Channel, (for example commands, blocks, status and control between a SCSI initiator or target source device) to be extended to the destination device using an alternative physical transport network technology (for example iSCSI or SCSI Interconnect).

   In some cases this "Bridge" is also referred to as a physical transport gateway, or storage router.

3. A device that connects multiple LAN segments at the physical address layer.

As opposed to a hub, which indiscriminately rebroadcasts everything from one segment to the other, a bridge only retransmits traffic from one segment to another when the traffic is intended for the destination segment.

[Computer System] 

A solid state memory device or programming construct, used to hold data momentarily as it moves along an I/O path or between software components.

[Data Security] 

Processes and/or procedures for ensuring continued business operations. [ISO/IEC 27000]

[Computer System] 

An 8 bit unit of data.

Byte and bit ordering and meaning vary depending on context. It is necessary to consult the standards that apply in a given context to determine ordering and meaning.

[Storage System] 

Synonym for Cylinder-Head-Sector addressing.

[Network] 

All of an installation's passive communications elements (e.g., optical fiber, twisted pair, or coaxial cable, connectors, splices, etc.) between transmitters and receivers.

[Storage System] 

An enclosure for a single disk or tape.

Canisters are usually designed to mount in shelves that supply power, cooling, and I/O interconnect services to the devices. They are used to minimize RF emissions and to simplify insertion and removal of devices in multi-device storage subsystems. See shelf.

[Storage System] 

Methods which reduce the consumption of space required to store a data set, such as compression, data deduplication, thin provisioning, and delta snapshots.

RAID 5 and 6 may also be considered as capacity optimizing methods, as they use less space than ordinary mirroring to perform a necessary function: protecting data from storage device failure.

[General] 

The process of optimizing supply of a given resource to satisfy current and future demand for that resource.

Common methods used for capacity planning include tracking, trending, forecasting and scenario planning to predict future demand.

[Network] 

A physical layer data transmission protocol used in Ethernet and fast Ethernet networks.

Carrier sense refers to arbitration for a shared link. Unlike "always on" physical protocols, carrier sense protocols require a node wishing to transmit to wait for the absence of carrier (indicating that another node is transmitting) on the link. Multiple access refers to the party line nature of the link. A large number of nodes (up to 500 in the case of Ethernet) share access to a single link. Collision detection refers to the possibility that two nodes will simultaneously sense absence of carrier and begin to transmit, interfering with each other. Nodes are required to detect this interference, and cease transmitting. In the case of Ethernet, each node detecting a collision is required to wait for a random interval before attempting to transmit again.

[Data Recovery]  [File System] 

1. A stored list of backed up files and directories and the locations (media identifiers) of the backup copies.

2. A persistent data structure used by some file systems to keep track of the files they manage.

[Data Security] 

Acronym for Common Criteria.

[Standards] 

Acronym for Cloud Data Management Interface.

Acronym for Clock and Data Recovery.

[Data Security] 

In a Public Key Infrastructure (PKI), the authority and organization responsible for issuing and revoking user certificates, and ensuring compliance with the PKI policies and procedures.

The reputation of the certificate authority determines the trust that may be placed in the identity assurance provided by the certificates issued by the authority.

[Legal] 

A process that tracks the movement of evidence through its collection, safeguarding, and analysis lifecycle by documenting each person who handled the evidence, the date/time it was collected or transferred, and the purpose for the transfer. [NIST SP 800-72]

[Data Security] 

A password-based authentication protocol that uses a challenge to verify that a user has access rights to a system.

A hash of the supplied password with the challenge is sent for comparison so the cleartext password is never sent over the connection.

[Storage System]  [Computer System] 

1. The electrical circuits that sense or cause the state changes in recording media and convert between those state changes and electrical signals that can be interpreted as data bits.

2. Synonym for I/O interconnect.

The term channel has other meanings in other branches of computer technology. The definitions given here are commonly used when discussing storage and networking. See device channel, I/O interconnect, host I/O bus.

[Computer System] 

Synonym for Command Line Interface.

[Data Recovery]  [File System] 

1. The recorded state of an application at an instant of time, including data, in-memory variables, program counter, and all other context that would be required to resume application execution from the recorded state.

2. An activity of a file system, such as the High Performance File System, (HPFS) or the Andrew File System (AFS), in which cached metadata (data about the structures of the file system) is periodically written to the file system's permanent store, allowing the file system to maintain consistency if an unexpected stop occurs.

[Storage System] 

Deprecated synonym for strip.

[iSCSI] 

Acronym for Connection Identifier.

[Management]  [Network] 

Acronym for Common Information Model.

[Data Security] 

A block cipher mode of operation, in which each block of plaintext is XORed with the previous ciphertext block before being encrypted, making each ciphertext block dependent on all preceding plaintext blocks.

[Data Security] 

Data that has been encrypted.

See cleartext.

[Data Communication] 

Shorthand for Compliant Jitter Tolerance Pattern.

A connection-oriented class of Fibre Channel communication service in which the entire bandwidth of the link between two ports is dedicated for communication between the ports and not used for other purposes.

Class 1 is also known as dedicated connection service, and is not widely implemented. See intermix.

A connectionless Fibre Channel communication service that multiplexes frames to or from one or more N-Ports or NL-Ports.

Class 3 frames are datagrams, that is they are not explicitly acknowledged, and delivery is on a "best effort" basis.

[Data Security] 

Alternative term for plaintext. Stating that data is in cleartext implies that the data is not scrambled or rearranged, and is in its raw form.

[Computer System]  [General] 

1. An intelligent device or system that requests services from other intelligent devices, systems, or appliances.

   See server.

2. An asymmetric relationship with a second party (a server) in which the client initiates requests and the server responds to those requests.

[Data Management] 

Synonym for snapshot.

Clones and snapshots are full copies. See delta snapshot.

[Cloud] 

An intermediary that provides connectivity and transport of cloud services between cloud providers and cloud consumers.

[Standards] 

A SNIA Architecture standard for Data storage as a Service (DaaS).

CDMI is an interface for both the data path and the control path of cloud storage.

CDMI can also be used to manage storage in Cloud Computing deployments.

[Cloud] 

A set of data processing components that can be automatically provisioned by consumers, accessed over a network and that provide secure multitenancy.

[Cloud] 

Systematic evaluation of a cloud system by assessing how well it conforms to a set of established security criteria.

[Services] 

Synonym for Data storage as a Service.

[Management]  [Network] 

Acronym for Common Management Information Protocol.

[Computer System] 

A bit (binary digit) of an encoded datum.

Sequences of code bits make up symbols, each of which corresponds to a data element (word, byte, or other unit).

The error condition that occurs when a received transmission character cannot be decoded into a valid data byte or special code using the validity checking rules specified by the transmission code.

[Data Management] 

Data that is accessed infrequently.

[Computer System] 

The substitution of a replacement unit (RU) in a system for a defective one, where external power must be removed from the system in order to perform the substitution.

A cold swap is a physical substitution as well as a functional one. See automatic swap, hot swap, warm swap.

[SCSI] 

A sequence of bytes that defines a single SCSI command sent to a SCSI target.

A CDB may have a fixed length of up to 16 bytes or a variable length of between 12 and 260 bytes. A CDB may specify a logical block address; contrast with C-H-S addressing.

[SCSI] 

The application of security techniques such as authentication, integrity checking and encryption to individual SCSI commands.

[Data Management]  [Network] 

An object oriented description of the entities and relationships in a business' management environment maintained by the Distributed Management Task Force.

CIM is divided into a Core Model and Common Models. The Core Model addresses high-level concepts (such as systems and devices), as well as fundamental relationships (such as dependencies). The Common Models describe specific problem domains such as computer system, network, user or device management. The Common Models are subclasses of the Core Model and may also be subclasses of each other.

[Management]  [Network] 

A network management protocol built on the Open Systems Interconnection (OSI) communication model.

CMIP is more complete, and therefore larger than, SNMP.

[Network] 

1. A bidirectional path for message exchange within a Fibre Channel fabric.

2. A specific logical or physical path between two points over which communications occur.

[Cloud] 

A cloud infrastructure shared by several organizations and supporting a specific community that has shared concerns (e.g., mission, security requirements, policy, and compliance considerations).

[Storage System] 

A disk array whose control software protects and maps data according to more complex algorithms than those of the Berkeley RAID Levels.

The most common complex arrays are multi-level disk arrays, which perform more than one level of data address mapping, and adaptive arrays, which are capable of changing data address mapping dynamically.

[Data Communication] 

A test pattern for jitter testing.

[Storage System] 

A space reduction ratio that only includes the effects of compression.

[Computer System] 

Architectures that provide Computational Storage Services coupled to storage, offloading host processing or reducing data movement.

These architectures enable improvements in application performance and/or infrastructure efficiency through the integration of compute resources (outside of the traditional compute & memory architecture) either directly with storage or between the host and the storage. The goal of these architectures is to enable parallel computation and/or to alleviate constraints on existing compute, memory, storage, and I/O.

[Computer System] 

A Computational Storage Drive, Computational Storage Processor, or Computational Storage Array.

[Computer System] 

A component that provides Computational Storage Services for an associated storage system without providing persistent data storage.

[Computer System] 

Software that enables a single server hardware platform to support multiple concurrent instances of an operating system and applications.

[Network]  [Storage System] 

A logical joining of two series of data, usually represented by the symbol "|".

In data communications, two or more datums are often concatenated to provide a unique name or reference (e.g., S-ID | X-ID). Volume managers concatenate disk address spaces to present a single larger address spaces.

[Storage System] 

A hybrid point in time copy mechanism which creates a split mirror copy by copying blocks from the source as they are requested by the host, while copying so-far unrequested blocks in the background until the mirror is complete.

A concurrent copy initially occupies at least the amount of storage required to hold accessed blocks and grows to occupy as much storage as the copy source.

[General] 

The processing of a signal for the purpose of making it conform more closely to an ideal.

Power conditioning is used to minimize voltage and frequency variations in an external power. Signal conditioning is used to reduce noise in logic or data signals.

[Storage System] 

1. The process of installing or removing hardware or software components required for a system or subsystem to function.

2. Assignment of the operating parameters of a system, subsystem or device, such as designating a disk array's member disks or extents and parameters such as stripe depth, RAID model, cache allowance, etc.

3. The collection of a system's hardware and software components and operating parameters. See array configuration, physical configuration.

[Network] 

A DCB component that specifies protocols, procedures and managed objects that support congestion management of long-lived data flows within network domains of limited bandwidth delay.

A value that uniquely identifies an NVMeoFC connection.

An N-Port that initiates a Class 1 connection with a destination N_Port through a connect-request and which receives a valid response from the destination N_Port to establish the connection.

A receive buffer used in a connectionless service that is capable of receiving connectionless frames.

[Data Security] 

A security service that provides data integrity service for an individual IP datagram by detecting modification of the datagram without regard to the ordering of the datagram in a stream of datagrams.

[Storage System] 

A collection of replication sets grouped together to ensure write order consistency across all the replication sets' primary volumes.

An operation on a consistency group, such as changing replication from asynchronous to synchronous, applies to all the replication sets within the consistency group, and consequently their volumes.

[Computer System] 

1. A device for graphical or textual visual output from a computer system.

2. In systems, network and device management, an application that provides graphical and textual feedback regarding operation and status, and that may accept operator commands and input influencing operation and status.

Sophisticated consoles designed for the management of many systems from one location are sometimes called enterprise management consoles.

[Storage System] 

A data deduplication method that leverages knowledge of specific application data formats.

See content-agnostic data deduplication.

A transmission control algorithm in which the frames containing the subblocks that comprise a block of information are transmitted strictly in the order of the subblocks.

Continuously increasing relative offset offers simpler reassembly and detection of lost frames compared to random relative offset.

[Storage System]  [Management] 

1. The control logic in a disk or tape that performs command decoding and execution, host data transfer, serialization and deserialization of data, error detection and correction, and overall management of device operations.

2. The control logic in a storage subsystem that performs command transformation and routing, aggregation (RAID, mirroring, striping, or other), high-level error recovery, and performance optimization for multiple storage devices.

[Storage System] 

A cache that resides within a controller and whose primary purpose is to improve disk or array I/O performance.

See cache, disk cache, host cache.

A switch able to control a set of FCDFs in order to create a distributed switch.

[Storage System]  [Backup] 

A technique for maintaining a point in time copy of a collection of data by copying only data that is modified after the instant of replicate initiation; the original source data is used to satisfy read requests for both the source data itself and for the unmodified portion of the point in time copy.

See pointer remapping.

A set of entities with the same Core Switch_Name that may host multiple Virtual Switches.

A Core Switch may be a set of ports in a physical chassis, or in multiple physical chassis.

In a Virtual Fabric capable Switch, the Switch-Name identifying the Core Switch.

[Data Security] 

Any action, device, procedure, technique, or other measure that reduces the vulnerability of or threat to a system.

[Computer System] 

Acronym for Copy On Write.

[Data Security] 

Information, passed from one entity to another, used to establish the sending entity's identity and/or access rights.

[Data Security] 

Acronym for Certificate Revocation List.

[Data Security] 

A set of operations performed in converting encrypted information to plaintext without initial knowledge of the algorithm and/or key employed in the encryption.

[Data Security] 

Method of sanitization in which the encryption key for the encrypted target data is sanitized, making recovery of the decrypted target data infeasible. [ISO/IEC 27040]

[Data Security] 

A function that maps plaintext strings of any length to bit strings of fixed length, such that it is computationally infeasible to find correlations between inputs and outputs, and such that given one part of the output, but not the input, it is computationally infeasible to predict any bit of the remaining output.

Cryptographic hash functions have many information security applications, notably in digital signatures, message authentication codes (MACs), and other forms of authentication. The output from a cryptographic hash function is known as a message digest or hash value.

[Data Security] 

The field of knowledge encompassing both cryptography and cryptanalysis.

[Data Security] 

A system for encrypting and decrypting data.

[Network] 

Acronym for Carrier Sense Multiple Access with Collision Detection.

The running disparity present at a transmitter when the encoding of a valid data byte or special code is initiated, or at a receiver when the decoding of a transmission character is initiated.

A switching technique that allows a routing decision to be made and acted upon as soon as the destination address of a frame is received.

[Storage System] 

A form of addressing data stored on a disk in which the cylinder, head/platter combination, and relative sector number on a track are specified.

See block addressing.

[Operating System] 

A process that is kept running on a computer system to service a particular set of requests.

By way of example, lpd is a daemon in UNIX that handles printing requests. Daemons are independent processes, and not part of an application program. Application requests may be serviced by a daemon.

[Computer System] 

The digital representation of anything in any form.

[Legal] 

The process of substantiating that the data is an accurate representation of what it purports to be. [SWGDE/ SWGIT Glossary]

[Data Security] 

A compromise of security that leads to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to protected data transmitted, stored or otherwise processed. [ISO/IEC 27040]

[Network] 

The suite of Ethernet protocol extensions defined for reliable storage transports such as FCoE.

DCB includes the following protocols: IEEE 802.1Qau (CN), IEEE 802.1Qaz (ETS and DCBX), and IEEE 802.1Qbb (PFC).

A data center bridge implements the above protocols and capabilities for use in the data center.

[Network] 

Any transmission character associated by the transmission code with a valid data byte.

[General] 

The process of encoding data to reduce its size.

Lossy compression (i.e., compression using a technique in which a portion of the original information is lost) is acceptable for some forms of data (e.g., digital images) in some applications, but for most IT applications, lossless compression (i.e., compression using a technique that preserves the entire content of the original data, and from which the original data can be reconstructed exactly) is required.

[Storage System] 

A space reduction ratio that only includes the effects of data deduplication.

A frame containing information meant for FC-4 (ULP) or the link application.

[Data Security] 

Data being transferred from one location to another.

[Data Security] 

Data in the process of being created, retrieved, manipulated, updated, or deleted.    

[Data Security]  [Data Management] 

The property that data has not been altered or destroyed in an unauthorized manner [ISO 7498-2:1988].

The property that data has not been altered or destroyed, in an unintended manner, due to physical or logical events.

[Data Management] 

The policies, processes, practices, services and tools used to align the business value of data with the most appropriate and cost-effective storage infrastructure from the time data is created through its final disposition.

Data is aligned with business requirements through management policies and service levels associated with performance, availability, recoverability, cost, etc. DLM is a subset of ILM.

[Data Management] 

A set of services that control of data from the time it is created until it no longer exists.

Data Management Services are not in the data path; rather, they provide control of, or utilize, data in the delivery of their services. This includes services such as data movement, data redundancy, and data deletion.

[Data Management] 

A repository-specific representation of a data model.

A database representation of the CIM schemas is an example of a data model.

[Data Communication] 

The ability to transfer data from one system to another without being required to recreate or reenter data descriptions.

[Data Management] 

The combination of data integrity, data availability, and confidentiality.

[Storage System] 

Continuously maintaining a secondary copy of data–possibly at a remote site–from a primary volume for the purposes of providing high availability and redundancy.

Data replication is used for disaster recovery and business continuance, among other uses.

[Management] 

The category of resources that exclusively encompass data services.

[Data Management] 

A set of functions that treat data without interpretation.

This treatment may, for example, involve copying, movement, security and/or protection, but not the actual storage of the data.

[Services] 

Delivery of appropriately configured virtual storage and related data services over a network, based on a request for a given service level.

Typically, DSaaS hides limits to scalability, is either self-provisioned or provisionless and is billed based on consumption.

[Storage System] 

A disk array data mapping technique in which fixed-length sequences of virtual disk data addresses are mapped to sequences of member disk addresses in a regular rotating pattern.

Disk striping is commonly called RAID Level 0 or RAID 0 because of its similarity to common RAID data mapping techniques. It includes no redundancy, however, so strictly speaking, the appellation RAID is a misnomer.

[SCSI] 

A removable media storage device in a library.

Examples are magnetic disk drives, cartridge tape drives, optical disk drives, and CD-ROM drives.

[Computer System] 

An I/O intensive application that makes large–usually sequential–I/O requests.

[Network] 

A message sent between two communicating entities for which no explicit link level acknowledgement is expected.

Datagrams are often said to be sent on a best effort basis.

[Network] 

Acronym for Data Center Bridging.

[Data Security] 

The operations performed in converting encrypted information to plaintext with full knowledge of the algorithm and key(s) used to encrypt it.

Decryption is the intended method for an authorized user to decrypt encrypted information.

Synonym for Class 1 service.

[Data Security] 

An information assurance strategy integrating people, technology, and operations capabilities to establish multiple security barriers across layers and dimensions of a protected system. [NIST SP 800-53]

[Storage System] 

A mode of RAID array operation in which not all of the array's member disks are functioning, but the array as a whole is able to respond to application read and write requests to its virtual disks.

[Data Recovery] 

A type of point in time copy that preserves the state of data at an instant in time, by storing only those blocks that are different from an already existing full copy of the data.

[Network] 

Acronym for Directory Enabled Network.

[Data Security] 

Acronym for Data Encryption Standard.

This algorithm is obsolete.

An address contained in a Fibre Channel frame that identifies the destination of the frame.

[Storage System] 

Synonym for storage device.

[Storage System] 

A channel used to connect storage devices to a host bus adapter or an intelligent controller.

The preferred term is I/O interconnect.

Acronym for Destination Fabric_Identifier.

[Data Security] 

Acronym for Diffie-Hellman augmented Challenge Handshake Authentication Protocol.

[SCSI] 

A SCSI electrical signaling technique in which each control and data signal is represented by a voltage differential between two signal lines.

Differential signaling can be used over longer distances than the alternative single ended signaling. See single ended (signaling).

[Data Recovery] 

Synonyms for incremental mirror resynchronization.

[Data Security] 

A key agreement protocol that was developed by W. Diffie and M. E. Hellman in allowing two entities to exchange a secret key over an insecure medium without any prior secrets.

[Management] 

Abbreviation for Differentiated Services.

[Hardware] 

A device that converts a discretely valued (digital) input to a continuously valued (analog) output.

[Legal] 

The identification, collection, preservation and analysis of digital evidence for use in legal proceedings.

[Long-Term Retention] 

A methodology to verify and detect threats to the validity of digital preservation objects.

Digital object auditing is a process of routine periodic testing of stored digital objects, usually using cryptographic techniques, by comparing their previous signatures and time stamps to their current to verify that change, loss of access, or data loss has not occurred.

[Long-Term Retention] 

A collection of data, metadata and possibly other resources treated as a unit for digital preservation purposes.

A preservation object provides the functionality required to assure the future ability to use, secure, interpret, and verify authenticity of the metadata, information, and data in the container and is the foundational element for digital preservation of information and data.

[Data Security] 

A cryptographically derived binary string used to assure information authenticity, integrity, and nonrepudiation.

Digital signatures can generally be externally verified by entities not in possession of the key used to sign the information. For example, a secure hash of the information encrypted with the originator's private key when an asymmetric cryptosystem is used. Some algorithms that are used in digital signatures cannot be used to encrypt data. (e.g., DSA).

[Data Security] 

A standard for digital signature that is published by the National Institute of Standards and Technology (NIST) in Federal Information Processing Standard (FIPS) Publication 186-4.

DSS specifies DSA as the algorithm for digital signatures and SHA-x for hashing.

[Storage System] 

One or more dedicated storage devices connected to one or more servers.

[File System]  [Management] 

1. A mechanism for organizing information.

   Directories are usually organized hierarchically. I.e., a directory may contain both information about files and objects, and other directories. They are used to organize collections of files and other objects for application or human convenience.

2. A file or other persistent data structure in a file system that contains information about other files.

3. An LDAP-based repository consisting of class definitions and instances of those classes.

   Microsoft's Active Directory (AD) and Novell's NetWare Directory Service (NDS) are examples of enterprise-wide LDAP directories.

[File System] 

A collective term for a directory, all of its files, and the directory trees of each of its subdirectories.

An error handling policy that allows an N-Port or NL-Port to discard data frames received following detection of a missing frame in a sequence.

[Legal]  [Storage System]  [Network] 

1. Process by which each party obtains information held by another party or non-party concerning a matter.
[ISO/IEC 27050-1]

Discovery is applicable more broadly than to parties in adversarial disputes. Discovery is also the disclosure of hardcopy documents, Electronically Stored Information and tangible objects by an adverse party. In some jurisdictions the term disclosure is used interchangeably with discovery.

2. The process of finding devices attached to a storage infrastructure.

3. The process of finding network interfaces in a networking infrastructure.

[Storage System] 

A non-volatile, randomly addressable, re-writable data storage device.

This definition includes rotating magnetic and optical disks and solid-state disks, or non-volatile electronic storage elements. It does not include specialized devices such as write-once-read-many (WORM) optical disks, nor does it include so-called RAM disks implemented using software to control a dedicated portion of a host computer's volatile random access memory.

[Storage System] 

A disk subsystem that includes control software with the capability to organize its disks as disk arrays.

[Storage System] 

1. A cache that resides within a disk.

2. A cache that resides in a controller or host whose primary purpose is to improve disk or array I/O performance. See cache, controller cache, host cache.

[Storage System] 

A function that reads all of the user data and check data blocks in a RAID array and relocates them if media defects are found.

[Storage System] 

Synonym for data striping.

[Storage System] 

A non-volatile, randomly addressable, re-writable data storage device.

This definition includes rotating magnetic and optical disks and solid-state disks, or non-volatile electronic storage elements. It does not include specialized devices such as write-once-read-many (WORM) optical disks, nor does it include so-called RAM disks implemented using software to control a dedicated portion of a host computer's volatile random access memory.

[Legal] 

Range of processes associated with implementing records retention, destruction or transfer decisions that are documented in disposition authorities or other instruments.
[ISO 30300:2011]

A set of FDFs associated with at least one controlling FCF that controls the operations of the set of FDFs.