 Live from Madrid, Spain, it's theCUBE. Covering HPE Discover Madrid 2017, brought to you by Hewlett Packard Enterprise. Hi everybody, welcome to Madrid, Spain. My name is Dave Vellante, and this is theCUBE, the leader in live tech coverage. We're here, this is day one of HPE Discover Madrid, the European version of the event that we cover in the summer, in the spring in Las Vegas. I'm here with my co-host Peter Burris, and Bob Moore is here. He's the director of server, software, and product security at HPE, and he's joined by good friend Patrick Osborne, who is the runs product marketing and management for the storage group at HPE, Jens. Welcome to theCUBE. Good to be here, Dave, Peter. Yeah, very happy to be here. Always good to see you, did you bring your sacks? Not this time, my friend, not this time. We had a lot of fun. Where were you in New Orleans last year? Oh yeah, that was great. You're an awesome sacks player, we love it. Big fan, you're a bass player, we got more sacks, more horns over there, so. I digress. We need a cube band. We need a cube band. Bob, we talked this spring in Las Vegas, you guys made a big deal about the silicon level security, you made some innovations there. Give us the update on why, again, that's so important and how has that been received by customers? Yeah, well I think, answer the second part of the question first, it's really resonating pretty well with customers, honestly, as we get to them and we describe the level of cryptography we have down right into the hardware, the firmware, down into our silicon. Those customers that are concerned with security and frankly all customers are now really does resonate with them pretty well. And the reason that it's important is because tying all of that security down into a bedrock foundation provides that ability to then leverage in or pull in other objects like storage and provide that security without any increase in latency but also the access and the shared access being able to do that across multiple platforms, do it securely and have that sharing capability like we all need to have to keep our IT infrastructure running so it's really critically important. Still to this day, HPE is the only server manufacturer that's able to do that down into the silicon level that we're talking about here so we're quite proud about that and it's allowed us to claim the world's most secure industry standard servers and now of course today we're branching out with other technologies across our storage platform and including those into our security strategy. So how does it, Patrick, relate to what you guys are doing on the storage side? Yeah, so I think it's a really good complementary solution in the fact that we can provide the silicone root of trust on the infrastructure level and then on the storage side we provide some similar capabilities at the infrastructure level with encryption and a number of other techniques that we have and then we assist customers in being able to, in a number of different cases being able to take, for example, snapshots in backup, move those offsite or even into the cloud, encrypt those so you have essentially a silicone root of trust on the infrastructure side for your operating system and your firmware and then you have essentially a golden image at a point in time of your data which is a pretty valuable asset so combine those two, we're able to help customers with a pretty aggressive RTO and RPO to be able to recover if they've been breached or when they get breached, essentially. So we have some great examples here today in the show of some customers that have used combinations of things like the Gen10 servers, 3par and StoreOnce to achieve that level of recovery in not days and basically in hours or even faster and then we have some other technology where you can set up a media break, essentially send all that data out to the cloud and completely have a self-contained encrypted copy of your data to recover from. So we're providing a number of different solutions all the way up and down the stack for customers to be able to help to recover very quickly. So obviously security has been in the news lately, the huge Equifax breach and when you go back to the spring with WannaCry and Ransomware. So let's talk about Ransomware specifically. How do you guys help a customer sort of address that? I mean, there's no silver bullet. You just hear it talk about air gaps, you guys are talking about silicon level security. What's the prescription for customers? Well, I'm glad you asked that because Ransomware really is on every customer's mind these days and it is because it's gone up, Ransomware is so lucrative and profitable, it's gone up by 15 fold, 15 times in the last two years to the point where it's cost companies $5 billion in 2017 and by 2019 a company will be infected by Ransomware every 14 seconds. So it's just really huge and not only that and we don't encourage paying the Ransom but the Ransom, if you paid it would be expensive but the downtime that you experience in recovering can be really expensive for companies as well. So this ability to recover from Ransomware or Ransomware neutralizer, which is what we're talking about and announcing here today is really new and a revolutionary way to recover in a systematic orderly fashion starting with the firmware that we talked about that's anchored down into the silicon. So we recover that firmware in case that Ransomware malware virus has migrated because the hackers are getting so incredibly ingenious these days that that malware can hide inside the firmware and it'll go everywhere, the tentacles will go everywhere but we start the recovery with the firmware so you've got that firm foundation routing out any remnants of the malware and then on top of that, new today, we're announcing the fact that we can then recover the server settings that take days, sometimes weeks to set up initially and that'll be recovered and restored automatically. Then we restore the operating system through an ISO site along with the applications and then finally we bring the data back as Patrick was mentioning, we do that relatively quickly. We're demonstrating that here this week at Discover Madrid and it really does allow customers to avoid having to pay the ransom. We want them to be a recover, do it quickly and easily without paying the ransom and that's what we help. But you mentioned the word trust which is one of the most increasingly important worlds in the tech industry. We're in Madrid, GDPR is going to start moving into force in the first quarter of next year. May 2018. And so second quarter and it's going to create some fair amount of tension, not just here in Europe but on a global basis. I was talking to an expert who suggested that if the Equifax breach had occurred in Europe under GDPR, it would not have been just embarrassment, it would have been about $60, $70 billion worth of fines. So we're talking not just about nice things to have, we're talking about over the course of the next five years you have to have this level of capability inside your infrastructure or you will be out of business. I think it's true, absolutely. The GDPR, the penalties associated are so severe with that up to $20 million or 4% of the annual revenue of the parent company so it can just be massively impactful, financially impactful, hurtful to the companies. We're talking today in this week about GDPR and how we help companies get ready for that and you mentioned the Equifax breach, actually we have with our HPE Gen 9 and Gen 10 solutions server networking storage applied the NIST 853 controls of that and if they had applied those and used our solution, we believe after having looked at the Equifax breach that would not have happened had they followed the security controls that are in NIST. NIST and there's a lot of articles published about how NIST can help companies get ready for the GDPR in Europe and so we've got the NIST controls, we went through all the time, energy and funding to create the NIST security controls, that will help 100% of those apply to the ISO certification, ISO 27000127200 which then lends itself to being GDPR compliant. So not only do we help customers through this great new technology that we have in the Silicon River Trust and that's helpful to get it ready for the GDPR but also these NIST controls. But it's also that, well the conversations that we're having with CIOs is that GDPR even though it's centered here in Europe is likely to have an effect on global behavior and so one of the things that they're looking for is they're looking for greater commonality in the base infrastructure about how it handles security so that they can have greater commonality in how the people do things so they can be better at targeting where the problem is, when the problem happens and how to remediate the problem. So talk a little bit about how more commonality in the infrastructure, especially when we talk about storage which is increasingly the value proposition is how you share data is going to liberate resources elsewhere in the business to do new and better things faster. Yeah, I think from the HPE perspective you're not going to solve GDPR with any specific point product, right? And it's not really our message to the market that you implement this and you're going to go satisfy those requirements. It's definitely part of a solution but what we've been trying to do is you see we've got the silicone root of trust on the server side and a number of security features and we're talking about how we integrate that with the storage. We're starting to bring together a more vertically oriented stack that includes all those pieces and that they work together. So instead of having a security or a commonality layer at the server layer, at the networking layer, at the storage layer, thinking about it as a service that's more vertically oriented through the stack where you're able to take a look at all aspects of the networking, what's going on with the firmware and the operating system and all the way down to essentially your... Securing the data and not the device. Exactly, exactly. And so for us, I mean, you see it in themes for three-par, for simplicity on the hyper-converged area and all the converge systems on the compute side. We're really providing integrated security and integrated data protection that is inherently secure with encryption and a whole host of other techniques. So really we're trying to provide it from the application level on down through the infrastructure a set of capabilities in the products that work together to provide a little bit more of a secure infrastructure. One of the things we talked to Bill Filman about on theCUBE recently was, and Patrick, I'm sure you've heard this and maybe you do as well, Bob, but BooBoo's happened and BooBoo's happened now today really fast, so they replicate very quickly. So how do you deal with fast BooBoo replication and sort of rolling back to the point where you can trust that data? Yeah, so I mean, so there's a couple of techniques and innovations that we brought within the storage realm in terms of integrating that whole experience. So our big thing is on the storage side has been how can you provide an experience from all flash on-prem out to the cloud from a data perspective and have all that integrated so we've got a number of things we just actually announced here at Discover in terms of three par all flash and nimble being able to federate that primary storage with your secondary storage on-prem and then be able to have the experience go off-prem into the cloud. So you do have a media break and a number of things. I think from a solution perspective, integrating with some of our top tier partners on the availability side, like a Veeam, you know, for example, that gives you that really holistic application level view in the context of virtualization is something that helps do the very rich cataloging experience and pieces. So I wonder if we could talk about a topic that's been discussed in our communities which is the biggest threat within cyber is the weaponization of social media. You've sort of seen it with fake news and Facebook and I wonder if you guys are having similar conversations with customers and even ransomware, you look at WannaCry, it was sort of state sponsored and actually not a lot of money went back to the perpetrators and maybe it was a distraction to get other credentials. And you see in different signatures of Russians, very sophisticated hackers, they target pawns and make them feel like kings and then grab their credentials and then go in and get critical data. So when you think about things like the weaponization of social media, how can you guys help sort of detect what's going on, anomalous behavior and address that? You've got, you know, silicon level, you've got the storage component. Do analytics come into play? Is there a whole house picture that you can help customers with? I think that's the next level. You know, it's almost an iterative process. As soon as we develop a protection or the ability to detect cyber security breaches, then the hackers try to outdo that and so we're continually leapfrogging. And I think the next step is probably with machine learning, we're starting to actually deploy some of that at HPE, that artificial intelligence and we have some of that now with our storage, our nimble storage as well as our Aruba networking with the technologies that Aruba has with introspect can now look at the communication inside of a network and determine if there's nefarious behavior and watch the behavior analytics as well as the signatures that are going on inside the network and actually then communicates with ClearPass and can proactively take some charge of that and rule out that user that's potentially a bad actor before any damage is really done. Same way on the storage side with the Infasite that has great, in fact, so great of AI intelligence that we're actually sharing as we look at ransomware viruses that are looking at the signatures that those leave in the trails that ransomware leaves behind so that the storage systems can actually proactively route that out with machine learning and artificial intelligence so that's where we're headed with HPE. But it's not only finding ways to fix the booboos, it's acknowledging or recognizing that the booboos occurred. So how is this new capability facilitating or increasing the speed with which problems are recognized? Yeah, so I think one of the important points that Bob made is that we are, so we're announcing this week on the storage side some concepts around AI for the data center and specifically around our predictive analytics with Infosite and applying that from Nimble to the three-part systems and then setting out a vision that is going to basically enable us to use that AI at the infrastructure layer across other areas within the portfolio, servers, networking, and for the speed at which this is moving, you can't solve this at the human level, right? So for us to be able to whitelist and blacklist customers based on our learning across a very large install base, if you think about the amount of compute nodes and the amount of storage that we sell as an infrastructure company, we can learn in being able to proactively help customers avoid those situations. So that's something we're actually implementing today. And let me follow up with that because it's a great lead-in or tie-back to GDPR that we were discussing because there's reporting requirements within 72 hours, right? The GDPR says you've got a report that you've had a breach and how do you report that if you're not certain? Well, with our Silicon Road of Trust and the Gen10 servers, we actually are monitoring all that server-essential firmware every 24 hours. Now some of our competitors monitor or check the firmware one time when you boot up the server and never again until you maybe reboot the server, right? But we're doing at HPE that check every 24 hours and that's an automated process and so you ask how it can be detected. Well, we can detect that because you'll get an alert coming back to the user of the server that there's been a breach and then that can be reported. We got to go, I'm glad you mentioned automation because that's a big factor of using false positives because people just don't have time to drink it from a fire hose. Bob, Patrick, thanks very much for coming to theCUBE. Great, thanks so much for having us. Enjoy the week. Thanks so much, appreciate it. All right, keep it right there, everybody. We'll be back with our next guest. This is theCUBE, we're live from HPE Discover in Madrid. Right back.