Cloud-based TMS can insulate fleets from disruptions like CrowdStrike’s
In the wake of the CrowdStrike outage, cloud-based and multi-tenant software solutions might have the best chance at a quick recovery from catastrophic updates.
Author: Jeremy Wolfe of FleetOwner - July 30, 2024
The CrowdStrike outage highlighted the vulnerabilities of digitalization across the global economy. For fleets, whose most important digital asset might be the transportation management system, the blackout underscores the importance of a resilient TMS deployment.
When ensuring a fleet’s TMS deployment is as secure as possible, one important choice is whether to host the software on-premise or in the cloud. On-premise might be the more expensive, customizable option—but it isn’t necessarily the best for insulating a business from outages like CrowdStrike’s.
A similar choice lies in choosing between single-tenant and multi-tenant architectures. Again, single-tenant is pricey and highly customizable—but that extra cost isn’t always paying for quicker disaster recovery.
What caused the IT outage?
On July 19, cybersecurity company CrowdStrike distributed an erroneous update to all Windows devices using its Falcon Sensor security software. The update brought critical problems to computers running the software.
Specifically, the update broke Windows computers’ startup processes. The updated process asked computers to access an invalid memory address in kernel mode, causing catastrophic failure.
Most software updates don’t break the software, let alone an entire computer. How did CrowdStrike manage to distribute such a harmful update? Simply put, one of the most important cybersecurity companies in the nation had shockingly weak quality assurance. User forums claim CrowdStrike had pushed similar erroneous updates affecting specific Linux operating systems in April, May, and June.
The solution was, at its simplest, to reboot the computer in safe mode, find the broken files from the update, and delete them. After deleting the appropriate files, the computer would boot successfully.
The update impacted roughly 8.5 million Windows computers, according to Microsoft. That’s less than 1% of all Windows machines globally. However, computers running Falcon Sensor included airlines, hospitals, and truck fleets, shocking the global economy.
Challenges for on-premise and single-tenant architectures
When compared to cloud-based software deployments, on-premise software might be attractive for its customizability—but it comes at the cost of disaster response agility.
“I think what is interesting to see is that the institutions that are affected by [the CrowdStrike outage] are airlines, governments, and big hospitals,” Hans Galland, CEO and founder of BeyondTrucks, told FleetOwner. “These are typically institutions that run their software in on-premise service.”
With on-premise solutions, the software is installed and run on a company’s own hardware infrastructure. This allows the company more direct control over the exact type of hardware, its location, its software, and its data. This is significantly more expensive than cloud-based deployments but comes with greater control and customizability.
Larger businesses that choose on-premise solutions tend to do so for the security, reliability, and efficiency of an independent solution. Third-party cloud hosts like Azure might inflict several service outages every month, bringing serious losses for the business.
“A lot of fleets, and usually the largest fleets, still have an on-premise system,” Galland said. “I would say 80% of fleets with 100 drivers or more either use private cloud or on-premise. It’s very significant.”
However, on-premise deployments may have a much harder time competing with the maintenance and disaster recovery efficiencies offered by cloud deployments. On-premise deployments might only have a single IT person manually updating each machine. Cloud providers, able to afford larger dedicated maintenance staff, generally have greater agility in responding to quick patches or updates. When a cybersecurity company suddenly breaks 8.5 million Windows computers, greater agility can make a significant difference.
The CrowdStrike outage shows similar tradeoffs for fleets choosing between single-tenant and multi-tenant software deployments. Single-tenant architecture hosts a software application and supporting infrastructure for a single customer. Multi-tenant architecture, by contrast, hosts multiple customers within a single software instance. Single-tenant deployments might be more customizable (and more expensive), but they are also likely to face slower patch rollouts.
Consider multi-tenant, cloud-based software
In the wake of CrowdStrike’s mess, multi-tenant, cloud-based software is an attractive choice for a trucking company's TMS. It offers security, resilience, and cost-efficiency that more private solutions struggle to compete with.
“If you’re with one of the big cloud providers like AWS or Azure or Google Cloud, they have so many resources that the stability of your server and your software is so high that it’s very unlikely for them to continuously go down,” Galland said. “The amount of security that goes today into professionally managed cloud storage facilities is massive, as well as the amount of redundancies and backup facilities available if one server goes down and another jumps in. Sometimes that’s not only between different facilities but that could also be between different countries or between different regions.”
BeyondTrucks, Samsara, and Fleetio all provide examples of multi-tenant, cloud-based software as a service.
When choosing a multi-tenant, cloud-based SaaS, Galland recommends paying attention to the cybersecurity credentials and cost-effectiveness of the given provider.
“If you decide to go with a private cloud [i.e. single-tenant], I think today it’s above anything a question of cost efficiency,” Galland said. “Getting to the quality levels of cybersecurity and the cost efficiencies that you get with a multi-tenant cloud can be done on-site, but it can be very expensive. Especially for a midsize carrier, it makes it more and more expensive.”
Additional reporting by Jason McDaniel.
About BeyondTrucks
San Mateo, California-based BeyondTrucks is the provider of a multi-tenant SaaS Transportation Management System (TMS). The SOC2-compliant software allows fleets to replace a legacy TMS, add-on solutions, and fragmented manual processes with a modern platform that creates seamless workflows driven by unified data. Designed to handle the complexities of large and medium-sized fleets, the BeyondTruck platform leverages automation and optimization so fleets can make better operational decisions and become more efficient. With the multi-tenant platform, fleets also benefit from faster integrations into other fleet technology providers and a high degree of scalability for growth. For more information, visit www.beyondtrucks.com.
About FleetOwner
FleetOwner serves executives and maintenance management of commercial truck fleets that operate five or more vehicles, delivering business information about operations, vehicle maintenance, industry regulations and information-management technology. Engaging more than a half million commercial vehicle professionals every month, FleetOwner maintains the largest audience of commercial truck fleet executives available to the industry.
Take Your Fleet to the Next Level
See how BeyondTrucks can transform your operations to have less manual processes and better workflows.