As we've journeyed with our customers over the past year, we’ve witnessed and responded to three key digital trends. These trends have greatly informed the development of our upcoming release, Commvault Cloud Platform Release 2024E, specifically designed to address the challenges posed by these trends.
- Cyber threats and the impact on response, recovery, and resilience
Cyber threats are becoming increasingly sophisticated and targeted, significantly impacting response, recovery, and resilience. The cost of these incidents goes beyond ransom payments and impacts operational and business continuity. Although customers have become adept at disaster and operational recovery, the emergence of ransomware has altered the landscape.
- Increasing data distribution across clouds, regions, and apps
Complexity increases as data is distributed across clouds, regions, and apps. Data sprawl and a patchwork of vertical solutions make maintaining a cohesive and reliable resilience practice nearly impossible. It’s hard, and ransomware loves that.
- As-a-service power, from initial onboarding to global enterprise
Businesses navigating the cyber resilience landscape want the promise of SaaS-like simplicity alongside robust scalability. They want easy onboarding through sophisticated global deployments and prioritize solutions offering seamless integration, elastic scalability, robust security, and ease of use.
Overview of Commvault Cloud Platform Release 2024E
Given that, we are excited to share the latest features and capabilities of Commvault Cloud Platform Release 2024E. This semi-annual release helps customers get the most out of Commvault Cloud to elevate your cyber resilience and data protection strategy by making protecting and managing your data easier and faster.
Let’s examine some new feature highlights and use cases in the Commvault Cloud Platform Release 2024E.
Security | Recovery | Improved User Experience |
| Unify security across all your hybrid data in one powerful cloud. | Accelerate rapid, clean recovery at enterprise scale. | Improve operational efficiency and response times. |
| • Threat Scan Support for VMs • Post-Quantum Security Enhancements • Splunk for SOAR integration • Default Compliance Lock for Air Gap Protect • Protect Encrypted ETCD Database • Secrets Detection in Risk Analysis | • Domain Controller Recovery with Cleanroom • HyperScale X Hardware Platform Updates • Air Gap Protect for OCI | • Kubernetes License Updates – Add Capacity Licensing • Arlie Opt-in/ Opt-out Access |
Security
The security features in Commvault Cloud bring powerful capabilities to fight evolving cyber threats proactively.
Threat Scan Support for VMs: Scan VM backups for potential malware infection so you can make informed response and recovery actions. Quickly find threats within backups and quarantine them so you can recover clean systems and data faster while avoiding reinfection.
Post-Quantum Security Enhancements: Implement a pluggable post-quantum cryptography framework to support current algorithms outlined in NIST FIPS 203, 204, 205 publications, as well as the ability to integrate new algorithms as PQC evolves in the future. For deeper insights into this revolutionary technology, we invite you to explore our latest blog post from Michael Fasulo and David Cunningham.
Two components have been updated.
- Key exchange encapsulation: Establishes symmetric encryption key during TLS set up utilizing CRYSTALS-Kyber
- Signature generation and verification: This process creates a chain of certificates and authenticates parties involved in the TLS set up that helps prevent man-in-the-middle attacks. Utilizing CRYSTALS-Dilithium3 or FALCON
Splunk for Soar Integration: With this integration, view Commvault alerts and audit events in Splunk so you can respond with orchestrated actions to improve your security posture. This provides a central location to view security and incident data for faster identification and response to security incidents.
Available actions can be automatically trigger to run on any event or integrated with broader playbooks.
Spunk Playbook where data aging is disabled based on a Commvault event.
Default Compliance Lock for Air Gap Protect: Enable Compliance Lock on all newly created and existing Air Gap Protect storage pools and copies to maintain data security and adherence to compliance requirements.
Enhance data protection by enabling security lock on new and existing storage.
Protect Encrypted ETCD Database: Enable ETCD to encrypt resources like Secrets and Config maps, providing an additional layer of data security to help protect against sensitive data loss if an ETCD backup is exposed to the incorrect parties. This helps support security best practices in the Kubernetes environment by protecting encrypted ETCD databases.
Secrets detection risk analysis: Automatically discover exposed private keys and API keys stored insecurely, such as in log files or plain text. This helps organizations proactively secure sensitive data and strengthen your security posture.
Recovery
Our latest features continue to extend our coverage of cloud-native workloads to protect and recover data in one cyber-resilient platform seamlessly.
Domain Controller Recovery with Cleanroom: Cleanroom recovery of an Active Directory Domain Controller enables secure and rapid recovery of the infrastructure needed to authenticate users and provide access control functions. This means recovered applications are accessible for conducting cyber recovery plan testing and application validation.
Quick recovery of Active Directory into an on-demand cleanroom.
HyperScale X Hardware Platform Updates: Commvault is pleased to support a new reference architecture partner, Lenovo. We’ve also updated adapters for Intel and updated HPE's DL380 to Gen 11, providing greater flexibility in choosing a verified hardware vendor for HyperScale X.
Air Gap Protect for OCI: Air-gapped, immutable cloud storage for OCI is an excellent choice for secondary or tertiary backup copies. It makes them inaccessible to bad actors and limits an attacker's potential for infection, modification, or deletion.
Improved User Experience
Kubernetes License Update – Add Capacity Licensing: We now provide flexibility in choosing between CapacityTB or per-application (VOI) licensing so users can determine the proper metering based on their Kubernetes deployment. CapacityTB is the default metering.
Arlie Opt-in/Opt-out Access: Arlie, our AI assistant, is now easily accessible in the Commvault Cloud platform with opt-in/opt-out access. Opt-in to gain insights and specific action steps to optimize your cyber resilience.
Easy access from the header on the Command Center with the Arlie icon
Want to learn more or get access to the new release?
Documentation of new features and capabilities of this tech preview release is available in our documentation here. You can submit a request to download the release from this page - follow the link under “Technology Release” at the bottom.
For the latest update on our platform release process and schedule, read this blog post.
Stay tuned for our 2024E platform release webinars too - we’ll share details on schedule and registration here in the community soon.
