Secure Enterprise SDN dodajte vie inteligencije vaoj mrei
- Slides: 11
Secure Enterprise SDN – dodajte više inteligencije vašoj mreži Viktor Krstić Solution Engineer Balkans
10 technologies that will transform the global economy by 2025 ► ► ► 1. Mobile Internet Interfaces, formats, sensors and apps will evolve as mobile computing devices dominate internet connectivity. By 2025, mobile connectivity could be accessed by an additional 4. 3 billion people. 2. Artificial Intelligence Machine learning and user interfaces such as speech and gesture recognition technology will advance to increase productivity or eliminate some knowledge work altogether. 3. Virtual and augmented reality Goldman Sachs is betting on the virtual and augmented reality industry to become an $80 billion market by 2025 – it’s around $7 billion right now. Major upgrades will come to technology infrastructure and an ecosystem of apps will form for consumers and enterprises alike. 4. Cloud technology One of the biggest buzzwords of the last decade will continue to impact the next. Nearly all IT services and web apps could be delivered through the cloud with more enterprises using the public cloud as cyber security improves. 5. Internet of Things More than 9 billion devices are currently connected to the internet – that number is estimated to grow between 50 billion to nearly 1 trillion in the next decade. Organizations will face monitoring and securing products, systems, devices and even people. * Combining a report by The Mc. Kinsey Global Institute and knowledge of Pluralsight’s subject-matter experts
10 technologies that will transform the global economy by 2025 ► ► ► 6. Advanced robotics Advances in artificial intelligence, machine vision, sensors, motors, hydraulics and materials will change the way products and services are delivered. A surge in tech talent for building, operating and maintaining advanced robots will occur. 7. Biometric technology A recent survey of security professionals revealed that 72 percent of companies are planning to drop traditional passwords by 2025. This will give rise to new authorization services for face, voice, eye, hand signature identification. 8. 3 D printing could enable unprecedented levels of mass customization and dramatically reduce the cost of supply chains generating an estimated economic impact of $230 to $550 billion annually by 2025. 9. Genomics Genetic engineering technology will grow with faster computer processing speeds. DNA sequencing technologies and advanced analytics will improve agricultural production, reduce reliance on fossil fuels and extend human life expectancy. 10. Blockchain is best known in the context of virtual currency Bitcoin, but a recent report showed 64 different use cases of blockchain across 200 companies. Streamlined, securecontracting and transacting will drive commercial use. * Combining a report by The Mc. Kinsey Global Institute and knowledge of Pluralsight’s subject-matter experts
Secure Enterprise SDN Automated Access Control
Network Access Control basics ► Authentication ► Microsoft NPS Compatible – 802. 1 x / Web / MAC ► ► ► Firewall /Intrusion detection ACL RADIUS server Storm Control IP Sec DHCP Server Timekeeper access Port Security Loop protection requestor Do. S attack protection 802. 1 x authenticated Loop protection on all ports policy enforcement point policy decision point Policy and Radius server Tri-authentication Capable switch WEB authenticated MAC authenticated
SDN Based Integrated Access Control ► Next Level of Network Automation ► SES Controller is a network actuator ► Interfaces Security and Business systems to the Network ► Leverage the power of SDN for improved Network Security in BYOD Scenarios ► Allied Telesis can Design, Setup, Customize and Manage SES Security Systems HR Asset Management Systems Business Logic Customizable API AT-SESC Controller Management Logic Open. Flow Intelligent Edge
Advantage of Secure Enterprise SDN • • • Analyze network traffic Check security of all devices Detection of behavior Detect threats and isolate risky devices automatically Prevent spread of malware etc. and countermeasures against information leakage Application ICT Asset Mgmt Security Relatio Application SDN controller AT-SESC Io. T devices IP camera Printer Increasing new security risks as Io. T proceeds POS system Integrated management for connected devices by Openflow policy n • SES solution by using AMF API • Share alarms from application of detecting threats to AMF Master • Shut-down traffic(L 2 filter) by AMF Member under the control of AMF Master • Enhance security in addition to accessibility of existing AMF, Security Relation SDN controller AT-SESC Io. T devices IP camera Printer POS system Apply SES service to existing AMF topology! HR Enhance the combination with AMF Application Proxy
Example of SES Implementation with Palo Alto Wildfire 1. 2. 3. 4. Targeted attack from inside the network Firewall sends SES threat notification SES instruct access switch to block threat source Infected device sent to quarantine vlan
SES ► ► ► already supported systems Palo Alto networks Flowmon ADS (Anomaly Detection System) Trend Micro DDI Barracuda Networks Firewall Quality. Soft IT Asset Management Lacrasio Human Resources Management
SDN Controllable Access devices AT-TQ 4400/4600 • Wireless AP with IEEE 802. 11 a/b/g/n/ac • Support 2. 4 GHz/5 GHz Access AT-x 510 -28 Series • 24 x 10/1000 BASE-T and 4 x 10 G SFP+ • 10 Gbe Ready Intelligent Switch AT-x 930 -28/52 Series • 24/48 x 10/1000 BASE-T and 4 x 10 G SFP+ • 40 G QSFP+ optional * Open Flow Feature License Required
Thank You! Viktor_Krstic@alliedtelesis. com Americas Headquarters | 19800 North Creek Parkway | Suite 100 | Bothell | WA 98011 | USA | T: +1 800 424 4284 | F: +1 425 481 3895 Asia-Pacific Headquarters | 11 Tai Seng Link | Singapore | 534182 | T: +65 6383 3832 | F: +65 6383 3830 EMEA & CSA Operations | Incheonweg 7 | 1437 EK Rozenburg | The Netherlands | T: +31 20 7950020 | F: +31 20 7950021 © 2016 Allied Telesis Inc. All rights reserved. Information in this document is subject to change without notice. All company names, logos, and product designs that are trademarks or registered trademarks are the property of their respective owners.
