New Two-Headed Hard Drive Intended To Secure Web Sites 366
dlur writes: "This article states that Scarabs (In Japanese), a Japanese company, is developing a hard drive with two heads, one read-only and another that is read/write. With this comes two cables, the read-only side going to the external web server, and the r/w cable going to an internal protected server. While this should make it quite a bit tougher for script kiddies to place their mark on a page, I doubt it will stop any real hackers from getting to a site's DB as that would still need to be r/w."
Re:Hey before you go out and buy one (Score:5, Informative)
It would be simple to just flip the switch, modify your files and then switch it back when you are done so no changes can be made later.
Even better, put it on an electronic keyswitch mounted on the front of the box, and you have an effective security system for things like demo stations and kiosks.
Re:Do it for SPEED, not SECURITY (Score:1, Informative)
good for dumb MBAs / VC and idiot security staff (Score:5, Informative)
Now, we have to explain one more thing to VCs and MBAs. All they know is there is this thing called a website that exists on a thing called a webserver.
Hasn't anyone on
Has anyone on
Let me break it down for the rest of you:
This ads exactly zero extra security for a well-run website. Most well-run sites already have seperately firewall'd http-webservers and database machines. Some well-run sites have the application server on yet a third firewall'd network (or vlan etc).
Any place worth 5cents will not have valued data sitting on an httpd server!
This is really Ooooga-Boooga in a nutshell for VCs and MBAs trying to make a buck on security-scared VCs and MBAs running other companies.
I don't buy it.
Secure your site properly - as one other poster mentioned, for the less-funded (read: cheap/poor/startup/blah) company/service you can simply mount a CD-R with your site's static content on it. Even JSPs can live on a CDr (as long as they're precompiled into servlets, or there's a scratch disk for the JSP-container to compile them).
Re:More Speed? (Score:2, Informative)
It shouldn't be too difficult to add a second arm, that wouldn't interfere with the primry R/W head. Of course it does double the chances of a head-crash... This is the way that it appears to be being done according to the web site [scarabs.com]
Re:More Speed? (Score:2, Informative)
WD made the bigger buffer because it was cheap. Adding RAM isn't hard and with RAM prices its cheap. Doubling the front end is a nasty, expensive business.
this is somewhat misleading (Score:1, Informative)
But more importantly, the 4 9GB drives=1 36GB drive thing is misleading. The reason to put multiple heads on is primarily to reduce latency. It cuts latency in half.
To show this we ignore tracks (seeks) for the moment. Any one sector can be anywhere from under the head right now to having just passed the head, in which case it will be a full rotation before it passes again. In the right under case the latency is 0, if it has to go a full rotation it is 1/120th of a second (8ms) on a 7200rpm drive away. On average, you can assume the sector is 1/2 the way around the disk from here for an average rotational latency of 4ms on a 7200rpm drive.
If you have 4 drives, the average sector is still half a rotation away on the drive it is located on, physics says so. If you have 4 heads though, the head can take no longer than 1/4 rotation and will on average be 1/8th rotation away. This is an average rotation latency of 1/2ms for a 4 head 7200rpm drive.
Thus 4 drives striped together do not reduce latency, but 4 heads on 1 drive do.
Note that when you stripe drives together you will actually increase latency if you don't spindle lock them together. This is because you must wait until the sectors you want (they are split up between drives) ALL pass under the heads. Thus your latency is equal to the worst latency of your multiple drives. Striping makes latency worse if you don't spindle lock.
In summary, having two heads reduces latency by half. Doubling the rotational speed (15,000rpm drive) does also. Finally, mirroring all the data across two drives and spindle locking them so they are 180 degress out of phase also has the same effect on read latency.
Re:What would be the input route? (Score:0, Informative)
Your average idiot will try to delete stuff, and fail, your above-average l33t d00d will go for the read/write server anyway.
And as someone said earlier, most of "them" will want to READ data as opposed to deleting or modifying it anyway.
Of course, this coming from a Japanese company with a utterly HORRIBLE webpage, I don't think this is going anywhere.
Re:Snake Oil (Score:0, Informative)
Re:Hey before you go out and buy one (Score:2, Informative)