Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
×
Google Technology

A Glimpse Inside Google's South Carolina Data Center 89

miller60 writes "Google today released a video showcasing the security and data protection practices in its data centers. Filmed at the company's South Carolina data center, it provides a look at Google's wiping of data and (literal) shredding of hard drives."
This discussion has been archived. No new comments can be posted.

A Glimpse Inside Google's South Carolina Data Center

Comments Filter:
  • by jbplou ( 732414 ) on Friday April 22, 2011 @11:38PM (#35912758)

    I want a video of Amazon's data center about 36 hours ago instead.

  • by ThePromenader ( 878501 ) on Friday April 22, 2011 @11:38PM (#35912762) Homepage Journal

    ...of course there's no better way to protect your data - my basement door is securely locked, and I shred my HD's daily. And mom rarely lets anyone past the front door.

    • by Anonymous Coward
      You don't know yo mama like I do.
    • Re: (Score:2, Funny)

      by eln ( 21727 )
      That may be true, but from what I hear, your mom's back door is wide open.
  • by Anonymous Coward on Friday April 22, 2011 @11:42PM (#35912776)

    Call every data recovery company you can find and ask them the following:

    "I have a hard drive which was zeroed out, with one pass, accidentally. Can you recover the data for me?"

    You will not find a single "yes" answer. It's impossible. It's a myth, or a theoretical attack.

    Maybe the CIA should worry about stuff like this, but you shouldn't, and Google really shouldn't. Those hard drives could be reused or recycled.

    • by chebucto ( 992517 ) on Friday April 22, 2011 @11:49PM (#35912804) Homepage

      They're only being discarded because they've started to fail. So giving them away would be a bit of a dick move, regardless of whether it's a privacy threat or not.

      As for the shredding, my bet would be that they're just following a data-destruction spec from 10-20 years ago, when wiping really wasn't a surefire way to destroy data.

      • by fuzzyfuzzyfungus ( 1223518 ) on Saturday April 23, 2011 @12:33AM (#35912948) Journal
        I'd be curious to know if (once a drive is dead or failing) shredding reduces its value, or whether any recycling procedure would just start with shredding anyway. A pile of shredded drive chunks should be substantially richer in copper, nickel, rare earths, aluminum, and iron(and possibly gold) than many ores considered to be commercially viable. I imagine that it comes down to whether it is cheaper to get a cleaner separation at the cost more labor, or just grind 'em up and let the refining process sort it out...
        • I knew someone in the IT recycling business. They had some big customers interested in security, such as the DoD. They had a machine much larger than the one shown, which would shred anything put into it. The guarantee was that every piece that came out would have no dimension larger than 0.25 inches.

          They sold this mixed scrap metal to other companies who had methods for sorting the various metals out, and then they were paid based on the total metals. This included sendin

          • by DaveGod ( 703167 )

            I didn't quite get the Google demonstration on their destruction of a drive. First they wipe it, verify it's wiped, bend the plates, and then shred it? Why? It would save a lot of time and manpower to just shred them.

            Shredding requires extremely noisy machinery and therefore it would not be practical to hold it in the most secure area where the drives are kept. The shredding is probably a redundant step, partially to catch any screwups and partially just to allow customers to tick off the "shreds drive" requirement box.

            I'd expect the scrap would also be worth a lot more, just having run it through a fragmenter can double the value per ton.

            If you thermite your drives I'd assume you'll end up with a not-so-nice chunk of a

            • Shredding the drives like in the Google video is essentially putting it through a fragmenter, stage 1 of standard recycling processing. Magnets can then be used to separate out the ferrous metals, and so on.

              Thank you. Now it makes more sense. Well, at least the shredding versus melting. Since the unit they're using did not appear to be too large, all it would require is a soundproof room, or a room separate from the offices. One site I did work at had us dispose of our trash ourselves. So we'd tote al

          • My interpretation was that the zero and zero verify was actually not necessarily related to the destruction. I thought they were saying they zero'ed it, and then ran a test to see if the drive was perhaps still viable (after a clean wipe). Failing that test, they then destroyed it. I could be wrong on that though.
        • If the datacenter is really where the video shows it to be [youtube.com] (I have doubts), then it would be about 1/2 a mile from steel and metal recycling facility [goo.gl].

          Recycling raw materials has been common practice in manufacturing for decades. And if you can't reuse that material in-house, then you do what you must to get the best price/lowest cost to get it the hell off site. My guess is that they get a better return on pre-shredded metal and get the assurance that some red-neck isn't going to take a truck load of t
      • Re: (Score:3, Interesting)

        by Animats ( 122034 )

        Google probably shreds them so that they don't get bought by some low-rent operator and show up in "new" machines.

        They're low-end drives, incidentally. Google uses cheap parts and redundancy, accepting that hardware will fail regularly. I'm surprised they even bother to test failed drives.

        • When I worked at the U. of B.C. I was told to take a way old computer to SERF, the campus recycling center for them to re-purpose. A short time later I got a call that it had been "stolen". I never bothered to take anything to them again.

          If I am a PHB at Google, I would not want people trying to get their hands on discarded hard drives as it would be happening on company time but for attempted private gain. As soon as a drive is shredded, geek interest (and lost work productivity) ends.
      • by heypete ( 60671 )

        They're only being discarded because they've started to fail. So giving them away would be a bit of a dick move, regardless of whether it's a privacy threat or not.

        As for the shredding, my bet would be that they're just following a data-destruction spec from 10-20 years ago, when wiping really wasn't a surefire way to destroy data.

        I would think that they'd be shredding (and crushing) the hard disks because it's faster than sitting around and waiting to overwrite disks, especially with larger hard disks. Shredding also works on disks that are damaged and unable to function.

      • They're only being discarded because they've started to fail.

        This is surprising - they must pay very low electric rates. I've consolidated a bunch of 300GB drives onto a pair of 2TB drives and the power pay-back is on the order of a year.

        when wiping really wasn't a surefire way to destroy data.

        It still isn't. Drive manufacturers won't tell you if their drives are certified to correctly implement ATA Secure Erase. Without it, all your re-allocated sectors still have the raw data.

        I use block-level encrypti

    • Call every data recovery company you can find and ask them the following: "I have a hard drive which was zeroed out, with one pass, accidentally. Can you recover the data for me?"

      You will not find a single "yes" answer. It's impossible. It's a myth, or a theoretical attack.

      If the hard drive had any bad sectors which were automatically reallocated from the pool of spare sectors, your "accidental" zeroing of the sectors would not have cleared those. Therefore, there is the potential for some data recovery even if it's only a few kilobytes at a time. Additionally, it's impossible to visually tell the difference between a drive with all data intact and a drive that had been zeroed out. Shredding the drive removes all doubt as to its status.

      • by Anonymous Coward

        IMO, they should have invented a robot to disassemble the drives and chuck the metal parts into a large recycling bin, and run the platters through the shredder instead. Much slower, but the largest chunk of metal in a drive is the case itself, and contaminating the metal with all the PCB parts is just makes it all wasteful.

        Or maybe I'm missing something and there's a way to separate all the rare metals in the PCB chips from the recycleable metals when they're all shredded together without having to re-smel

    • by Anonymous Coward on Saturday April 23, 2011 @01:37AM (#35913090)

      A very, very common failure mode for a hard drive is that it continues working until either the electronics or the mechanics of the drive fails. At this point, it's too late to zero it out.

      Now that it has failed, how does one erase it? Well, one can either try to put the platters in a new enclosure with fresh mechanics and fresh electronics...

      or one can destroy it.

      Guess which one is cheaper. :-)

    • Shredding hard drives is not pointless, and neither are the other steps taken.

      It may seem redundant to first wipe the drives, then shred them, but if you think about it both steps are necessary. Wiping them is the best method to ensure that no data is recoverable, but remember that drives are pulled from service when they're failing. Can you trust a failing drive to successfully zero itself? Even verifying that you can successfully read all of the zeros from the disk after writing them doesn't prove th

    • by Bengie ( 1121981 )

      The magnetic fields are stored as analog waves which take different forms based on the previous data stored. If all you did was single pass zero a HD, the bits that use to be ones will look different than bits that use to be zeros because of the shape of the wave. The problem is getting access to this low level data. You need custom hardware that doesn't return ones and zeros but the shape of the magnetic fields.

      No one but powerful or governments could get access to this equipment... or anyone who owns a co

    • by Cramer ( 69040 )

      Agreed. The usual answer will be no, unless you have very deep pockets. The effort to recover data is almost always not worth what you're trying to recover.

      The whole reason for them being discarded is they'd started to fail or past their safe usable lifetime. Anyone willing to buy them is simply burning money.

  • Anybody know if the "Google web server" [datacenterknowledge.com] at the same website as in the article is actually real?

    I mean, do they really have a 6-inch battery contraption hanging off the side of every one of their web servers?

    • by Anonymous Coward

      yes. each webserver has a builtin PSU+UPS.

    • by Lennie ( 16154 )

      As the other reply says, it has a UPS+PSU builtin, it is actually a lot more efficient. Because a normal UPS converts the power coming into the UPS for the batteries, then it gets converted again when it is sent to the PSU, the PSU converts it again...

      All of that is a waste.

      If you have the UPS next to the PSU, you convert the power ones coming into the PSU, it sends power to the board/CPU and so on and also to the UPS if it needs to be charged. When the PSU does not get power, the UPS delivers power to the

  • by fuzzyfuzzyfungus ( 1223518 ) on Saturday April 23, 2011 @12:25AM (#35912914) Journal
    So, hands up anyone whose privacy concerns RE:Google had to do with people stealing hard drives or breaking into datacenters, rather than Google mining them...

    Anybody, anybody? Bueller?

    Sure, the fact that the datacenter isn't a shack with no access controls is nice; but mostly from an uptime and efficiency perspective. When it comes to large web players, Google definitely among them, physical attackers are so far down the list of information security concerns that they might as well not rate(for the users, that is. Obviously the operators would face significant costs if people were breaking in and grabbing stuff all the time).
    • by Jeremi ( 14640 ) on Saturday April 23, 2011 @12:31AM (#35912938) Homepage

      So, hands up anyone whose privacy concerns RE:Google had to do with people stealing hard drives or breaking into datacenters, rather than Google mining them...

      You and I might not worry about that, but keep in mind Google is trying to convince government and industry to outsource much of their internal email and other IT operations to Google's servers. I'd imagine they would like to be reassured that nobody will walk in and grab their confidential data.

      • by Guspaz ( 556486 ) on Saturday April 23, 2011 @04:01AM (#35913408)

        Data center robberies are actually rather common, so physical attackers should definitely be pretty high up on the list. A google search for "data center robbery" turns up tons of results. One particularly bad offender is C I Host, who had their data center broken into four times in three years. At least one of those times, someone cut through the wall of the datacenter to gain access. Other times, well, it turns out that pointing a gun at someone is a rather good way to get around all that fancy security.

        • by mlts ( 1038732 ) *

          People don't think of data center robberies, but with the economy in the skids, the guys who would rob banks are starting to wise up to data centers.

          Until recently, the most security a data center would have on staff would be a guard in front, and maybe another to run rounds. Data center locks are intended to keep geeks and skulkers out. Most places do not factor in people who will be more than happy to blow the brains out of the secretary at the desk to get her badge and keys, so they can get access to t

          • I'm not sure why anyone needs to be where they can physically access the guard. Why not use a man trap where a card access badge is used to enter the trap, the outer door secured (locking the person in), the ID of the person is verified (local scanner and camera), and then the inner door released? All of this can be done without physical staff anywhere near the location. If you have many of these such data centers it makes more sense to centralize your security staff anyway.

            Cameras, motion sensors, and o

            • by Nethead ( 1563 )

              The man trap is SOP for Switch and Data, er, Equinix data centers. Amazon security is on par with Google. Go into a data center and you'll note the Amazon cage right away... it's the one that looks like a prison camp.

    • Not if they are pitching for government contracts - and that site well the face is a bit pussy it should be 5 foot higher and should curve inwards. They should have cut down the woods as on 2 sides of that facility the woods came up to the fence. And out in the country like that they should have just dug a moat it looks like they build a pond for cooling water any how
    • So, hands up anyone whose privacy concerns RE:Google had to do with people stealing hard drives or breaking into datacenters, rather than Google mining them

      It's a wild world but you're safely locked inside a cage - together with Dr. Evil himslef.

  • by drmacinyasha ( 1717962 ) on Saturday April 23, 2011 @12:40AM (#35912976) Homepage
    Did anyone else notice in the video at 00:53 that the guy is assembling the server... With an IDE hard drive?
    • by Anonymous Coward

      Hey, we need some hardware to shoot a video.
        Here's some shitty old stuff we don't care about anymore.

    • by Mashiki ( 184564 )

      What's wrong with IDE? You can pick up crates of 500gb drives for dirt cheap these days, about half the cost of what a SATA will cost, about a 1/3 of the cost of scsi, and about a 1/10th the cost of fibre channel.

      • Low speed, non-hot-pluggable, and a mess that is the IDE cable.

        • by Anonymous Coward

          What a pity Google didn't realize this, right? Quick, apply for a position with them so you can help them out, since you're obviously so much smarter than all the Google employees in charge of hardware. ;)

        • None of which matter in Google's general architecture. It's not like they're running a bunch of W2k8 RAID5 servers. Everything is massively redundant and replaceable.
          • by lucm ( 889690 )

            > It's not like they're running a bunch of W2k8 RAID5 servers. Everything is massively redundant and replaceable.

            I love those RAID5 servers, too bad they are not redundant and replaceable.

        • by Mashiki ( 184564 )

          If you're pulling the entire rack when it fails, non-hotpluggable doesn't matter too much especially in terms of redundancy.

      • What's wrong with IDE? You can pick up crates of 500gb drives for dirt cheap these days, about half the cost of what a SATA will cost .....

        Not necessarily so, at least in the case of laptop IDE vs laptop SATA.. I have a sideline "business" buying up broken Dell laptops, fixing/cleaning them up, installing Linux, and reselling. Since 99% of these systems come with no drive, I have to factor in a new drive for the system, and for the older IDE models, I'm having trouble finding 80-120GB IDE drives at a competitive price, while the equivalent SATA drives are dirt cheap.

      • about half the cost of what a SATA will cost

        How's the power cost? Are these old inventory or are drive manufacturers charging a premium for SATA (when it should be the cheaper option by this point)?

        • by Mashiki ( 184564 )

          They're still making new ide drives, and probably will for another 5 years. But you can get 4200-5200rpm drives in the choice of your brand pretty easily.

    • Comment removed based on user account deletion
      • by proxima ( 165692 ) on Saturday April 23, 2011 @03:42AM (#35913364)

        It would be a fail to think they would store anything needed on such servers, other than os. The servers are probably linked to a harddrive farm by network or fiber-channel.

        Wrong. Google stores its data all over the place, including on each individual server. They designed their own networked filesystem [wikimedia.org] for the purpose. If they really didn't store data locally, they'd almost certainly PXE boot and avoid drives on each server altogether. I suspect the video just used some dated footage (from a training or other internal video perhaps?), as this article [cnet.com] clearly shows SATA drives. Every server has two drives, and since no one node is critical for anything they also wouldn't bother with RAID1 for an OS boot drive as you suggest.

    • Looks like they're also installing ECC PC2100 Memory. Wow. That file footage has been collecting dust.

  • Why did they do a zoom in to Finland during the few last seconds?
  • Imagine a conversation those security guards probably have: Random person: So... where do you work? / Security guard: Well i work at google. / Random person: Whoaa, lucky you! So what do you do at google, are you a programmer, a security expert? / Security guard: Hmmm, something like that. /
  • A woman who claims Google is "inside her head and making her do things" [reuters.com] followed a visually-impaired worker into their headquarters.

    Vera Svechina, a self-described filmmaker and former stripper, walked undetected into Google's main offices on March 14 and spent several minutes there, Mountain View police spokeswoman Liz Wylie said.

    "An administrative staff member returned to her desk and found a book in Russian as well as a letter addressed to the two founders," Wylie told Reuters, referring to Google co-f

    • unfortunately this is not uncommon I once had a chat with a very senior Guy in BT whose first job was opening the CEO (well the postmaster general at the time) mail. One chap kept writing to the Postmaster General about the evil organization that was bent on taking over the country - which in his eyes was the BBC
      • by e9th ( 652576 )
        Well, if you're going to send rants to the Postmaster General, it's only fair that you mail them rather than personally dropping them off outside his office.

In the long run, every program becomes rococco, and then rubble. -- Alan Perlis

Working...