Lyve Cloud Documentation

Product Features

Lyve Cloud offers several features designed to support a variety of use cases. Customers can easily store, analyze, and manage data on secure, cost-efficient Seagate storage. Lyve Cloud supports S3 object storage which allows customers to move data to and from storage buckets through an HTTPS interface. Bucket access can be easily managed by admins with user-specific access control lists. With Lyve Cloud’s flexible application programming interface (API), customers can plug-in their favorite S3 compatible applications to scale data, run big data analytics, audit storage activity, and manage usage across the platform.

Storage management

Lyve Cloud’s single-tier design breaks away from traditional storage classes to provide uninterrupted movement of data. Objects stored in Lyve Cloud can be uploaded, downloaded, updated, and erased at any time. Using S3 Select API calls, customers can easily connect to third party clients to move and manage data. Applications are authenticated to Lyve Cloud using an access key and secret key provisioned at service account creation. Once authenticated, applications will access buckets and objects using the defined permissions set in the service account (read-only, write-only, or all operations).

All S3 API activity and actions within the Lyve Cloud console are tracked with Audit logs . Audit logs record all S3 supported API calls and activities on the console to access audit functions and track any suspicious activity.

Lyve Cloud also offers features to help prevent unintended data modifications and provide versioning. Using Object Immutability prevents objects from being deleted or overwritten by any user, including the account owner, for a specified retention duration. Object Immutability also supports Amazon S3 Object Lock to reinforce Write-Once-Read-Many (WORM) policies. Customers can simply toggle-on Object Immutability at bucket creation to enable this feature, which also enables Versioning. Versioning allows customers to protect, recover, and restore every iteration of an object stored in a bucket in case of accidental deletions or failures. Versioning can also be used once Object Immutability disabled.

Learn more about Managing Lyve Cloud storage.

Storage analytics

Lyve Cloud’s flexible backend was designed to complement a variety of compute applications. As a vendor-agnostic solution, Lyve Cloud can connect to public cloud environments such as AWS, Azure, and Google to utilize their analytics services on Lyve Cloud storage. This functionality allows businesses to consolidate, query, and perform big data analysis on cost-efficient Seagate storage.

Access management and security

Access management

Account administrators have several tools to authorize access to Lyve Cloud users. Identity and access management (IAM) allows Lyve Cloud Administrators to manage users and their access to the console. Access is managed with user-defined roles that offer varying levels of accessibility. IAM users can use Configuring multi-factor authentication (MFA) for additional verification during login.

Configuring Federated Login requires Security Assertion Markup Language (SAML) protocol to provide a single sign-on authentication method through an organization’s IDP (identity provider).

Security

Lyve Cloud offers security features to protect data in flight and at rest. To ensure data is protected in flight, Lyve Cloud aligns with Transport Layer Security (TLS) 1.2 protocol and leverages 256-bit Advanced Encryption Standard (AES) Galois/Counter Mode (GCM) encryption, establishing secure communications to the client. By default, all data is encrypted before it is stored.

Learn more by visiting the Data Security Overview and the Lyve Cloud Data Security Whitepaper.