Protecting Your SDN and NFV Network from Cyber Security Vulnerabilities with Full Perimeter Defense

Save this PDF as:
 WORD  PNG  TXT  JPG

Size: px
Start display at page:

Download "Protecting Your SDN and NFV Network from Cyber Security Vulnerabilities with Full Perimeter Defense"

Transcription

1 Protecting Your SDN and NFV Network from Cyber Security Vulnerabilities with Full Perimeter Defense

2 Telco Systems and Celare in a nutshell Company overview Some of our customers Sister companies, subsidiary of BATM group (LSE:BVC) End-to-end CE 2.0, MPLS, SDN & NFV and Cyber portfolio Among the first to launch SDN & NFV solutions Multi-billion dollar install base at 300+ service provides in 50 countries Headquarters in the United States and Israel, international offices in LATAM, EMEA and APAC 2

3 What do we do at the SDN/NFV era? Carrier Grade D-NFV Solution x86 CPU Blade NFV Host Hardware Acceleration Hardware Offload Centralized Orchestration of D-NFV Devices Data Path Service Management VNF Lifecycle Management & Chaining SBI: Netconf & OpenFlow NBI: SOAP Best of Breed Application Portfolio 3

4 Please rate the level of security risk posed by the following aspects of virtualization # of respondents: 97

5 Please rate the level of security risk posed by the following aspects of virtualization

6 Telecom networks today Used for providing L2/L3 pipes Control plane is separated from data plane Devices run closed proprietary OS: Cisco IOS, Juniper JONOS, Telco Systems BiNOX End users can t access the control plane therefore infrastructure attack is more challenging Nx10GE MPLS/Ethernet IP/MPLS core 10GE IP/MPLS core 6

7 Tomorrow s networks the SDN/NFV era New Dimensions of Cyber Threats SDN Software based networks Devices are remotely provisioned and controlled, on-demand in realtime, therefore networks are hackable via programmable devices Invoked by end-user in self-service or business facing representative (vs. engineering/network) NFV Virtualize the network infrastructure: Telcos networks become open to IT threats Malware can run on any device DDoS attacks on network resources Broadband Ethernet CO Cellular CPE 7

8 Security challenges with distributed-nfv OpenStack is the De facto enabler for NFV NFV/Cloud Computing Compute Nodes Controller Data Center Fact: NFV expands out of the Data Center: ucpe, vcpe, MEC, 8

9 Security challenges with distributed-nfv ucpe vcpe Distributed NFV Compute Controller Mobile Edge Computing Compute OpenStack Controller to Compute implements multiple interfaces over the WAN/Internet: VNC, SSH, HTTP & more Enterprise/CPE 9

10 Security challenges with distributed-nfv Over 500 pin holes had to be opened in the firewall to allow this to work Openstack s design presents too many attack vectors. Peter Wills, BT How NFV is different from Cloud: Using OpenStack for Distributed NFV October

11 NFV device zoom in NFV OS is based on open building blocks: Linux, Open vswitch, OpenStack User traffic flows through the data plane to the control plane and to the applications (VMs) VM#1 VM#2 VM#N Malware Remote Access VNF Specific Hypervisor / vswitch Linux OS Malware DDoS Remote Access USERS 11

12 Telco Systems and Celare introduce: SDN/NFV Security Infrastructure solution 12

13 NFV CyberGuard solution Network Probes, NFVI Agents, Big Data Analytics and SDN Controller Agent on NFV Device Network Probe 4. Action 2. Analytics 3. Detection 1.Collection Agent on NFV Device Network Probe Agent on NFV Platform SDN CONTROLLER BIG DATA 13

14 NFV CyberGuard solution Distributed, Big-Data, Actionable Network-wide probes: Probes: POP, CO, DC, vce Agents: NFVI Full session reconstruction Metadata / context extraction Wire Speed / HW Acceleration Centralized control & orchestration Remote shut-off flows, services,vnf, devices Distributed bypass, reroute, redirect Active prove deployment & collection NFV CyberGuard Big Data Recording & Indexing, Historical network DB, Network situational awareness Investigation, Information discovery & analytics Network behavior anomaly detection (NBAD), Threat Prediction Execute 3 rd party applications & algorithms 14

15 Secure virtual appliance Celare smart probe plugin to Telco TVE (Telco Virtualization Engine) inline mode TVE Carrier Grade Virtualization Engine VM#1 VM#2 VM#N Inspecting every flow entering the virtualization engine Blocking the threats/malware at: VNFI Carrier Ethernet switch: Control the L2 switch to block flows Access List Hypervisor / vswitch Linux OS X86/ARM L2 Switch 15

16 Big data - conceptual architecture Applications & Services Detectors Analytics Learning Get Service Request (Start Session) Enrichment Network Metadata Statistics NoSQL Database Aggregator OEP Insights & Alert Enrichment Index Analyst Desktop Information Discovery Reports PCAP s External Graph Analytical DB Ad-hoc - Queries Configuration HDFS System MD Store Analytics Logs 16

17 Event processing engine Rule set can be defined easily, on demand and can be activate immediately Monitor streams in real-time Filtering - New stream filtered for specific criteria Pattern Matching - Notification of detected event patterns, e.g. events A, B and C occurred within 15 minute window In-Memory, continuous queries CAT BA CATERPILLAR BOEING D :03:03: :03:02:78 DO DUPONT DO DUPONT D :03:04: :03:04:12 AA ALCOA INC D :03:01:55 AXP AMER EXPRESS CAT CATERPILLAR D CO 5 10:03:02:10 10:03:03:46 BA BOEING DO DUPONT D :03:02: COMPLEX QUERIES 5 10:03:04:12 CAT CATERPILLAR D :03:03:46 AA ALCOA INC D :03:01:55 DO DUPONT D :03:04:12 AXP AMER EXPRESS D CO 5 10:03:02:10 AA ALCOA INC D :03:01:55 BA BOEING D :03:02:78 AXP AMER EXPRESS D CO 5 10:03:02:10 BA BOEING D :03:02:78 Runs In-Memory (not database) with continuous Queries on the data Powerful and potentially limitless Extensibility with Data Cartridges 17

18 Visualization & information discovery Solution designed to be Event driven Supports GEO/Maps Advanced graphs and filters Network Situational Awareness Facet search Leading the way to IT-aware networks 18

19 Graph network visualization Intuitive visualization Visual filters Advanced search: nodes & links Zoom for details Multiple views 11/4/

20 Actionable control & protection VNF SDN CONTROLLER 1. vcach VNF under Attack 2. Bypass VNF 3. Stop VNF vfw X vcache NFVI 20

21 Actionable control & protection VNF SDN CONTROLLER 1. vcach VNF under Attack 2. Bypass VNF 3. Stop VNF 4. Resume Operations vfw vcache NFVI 21

22 Actionable control & protection Device SDN CONTROLLER X 1. Infected Device 2. Shut-Down Services 3. Reroute 4. Shut-Down Device NFVI 22

23 Solution benefits Currently the only real comprehensive solution to protect NFV infrastructure targeted to Telecom networks Inspecting network traffic at the network edge & close to the end points. Cloud based Big Data reservoir providing the Operator global centralized view for all NFV appliances & infrastructure Integrated with Oracle Big Data & tools and SDN controller Ability to block wide range of network cyber Threats Open API for external systems and 3rd party applications and algorithms 23

24 Thank you!

Future of networks Avi Cohen, David Moses

Future of networks Avi Cohen, David Moses 1 Future of networks Avi Cohen, David Moses BATM Group Established in 1992 London Stock Exchange symbol BVC.l Turnover of ~150$M Divisions: Telecom & IT Medical Installed over 300,000 systems valued at

More information

Delivering Managed Services Using Next Generation Branch Architectures

Delivering Managed Services Using Next Generation Branch Architectures Delivering Managed Services Using Next Generation Branch Architectures By: Lee Doyle, Principal Analyst at Doyle Research Sponsored by Versa Networks Executive Summary Network architectures for the WAN

More information

Leveraging SDN and NFV in the WAN

Leveraging SDN and NFV in the WAN Leveraging SDN and NFV in the WAN Introduction Software Defined Networking (SDN) and Network Functions Virtualization (NFV) are two of the key components of the overall movement towards software defined

More information

Customer Benefits Through Automation with SDN and NFV

Customer Benefits Through Automation with SDN and NFV Customer Benefits Through Automation with SDN and NFV Helping service providers solve specific challenges they are facing today while improving the overall customer service life cycle 1 Table of Contents

More information

SDN and NFV in the WAN

SDN and NFV in the WAN WHITE PAPER Hybrid Networking SDN and NFV in the WAN HOW THESE POWERFUL TECHNOLOGIES ARE DRIVING ENTERPRISE INNOVATION rev. 110615 Table of Contents Introduction 3 Software Defined Networking 3 Network

More information

SDN PARTNER INTEGRATION: SANDVINE

SDN PARTNER INTEGRATION: SANDVINE SDN PARTNER INTEGRATION: SANDVINE SDN PARTNERSHIPS SSD STRATEGY & MARKETING SERVICE PROVIDER CHALLENGES TIME TO SERVICE PRODUCT EVOLUTION OVER THE TOP THREAT NETWORK TO CLOUD B/OSS AGILITY Lengthy service

More information

Software-Defined Network (SDN) & Network Function Virtualization (NFV) Po-Ching Lin Dept. CSIE, National Chung Cheng University

Software-Defined Network (SDN) & Network Function Virtualization (NFV) Po-Ching Lin Dept. CSIE, National Chung Cheng University Software-Defined Network (SDN) & Network Function Virtualization (NFV) Po-Ching Lin Dept. CSIE, National Chung Cheng University Transition to NFV Cost of deploying network functions: Operating expense

More information

Virtualization, SDN and NFV

Virtualization, SDN and NFV Virtualization, SDN and NFV HOW DO THEY FIT TOGETHER? Traditional networks lack the flexibility to keep pace with dynamic computing and storage needs of today s data centers. In order to implement changes,

More information

COMPUTING. Centellis Virtualization Platform An open hardware and software platform for implementing virtualized applications

COMPUTING. Centellis Virtualization Platform An open hardware and software platform for implementing virtualized applications COMPUTING Data Sheet Centellis VP provides the hardware and software platform to deploy carrier grade virtualized applications. Application virtualization software framework based on industry standard

More information

Definition of a White Box. Benefits of White Boxes

Definition of a White Box. Benefits of White Boxes Smart Network Processing for White Boxes Sandeep Shah Director, Systems Architecture EZchip Technologies sandeep@ezchip.com Linley Carrier Conference June 10-11, 2014 Santa Clara, CA 1 EZchip Overview

More information

RIDE THE SDN AND CLOUD WAVE WITH CONTRAIL

RIDE THE SDN AND CLOUD WAVE WITH CONTRAIL RIDE THE SDN AND CLOUD WAVE WITH CONTRAIL Pascal Geenens CONSULTING ENGINEER, JUNIPER NETWORKS pgeenens@juniper.net BUSINESS AGILITY Need to create and deliver new revenue opportunities faster Services

More information

Towards Smart and Intelligent SDN Controller

Towards Smart and Intelligent SDN Controller Towards Smart and Intelligent SDN Controller - Through the Generic, Extensible, and Elastic Time Series Data Repository (TSDR) YuLing Chen, Dell Inc. Rajesh Narayanan, Dell Inc. Sharon Aicler, Cisco Systems

More information

Software Defined Security Mechanisms for Critical Infrastructure Management

Software Defined Security Mechanisms for Critical Infrastructure Management Software Defined Security Mechanisms for Critical Infrastructure Management SESSION: CRITICAL INFRASTRUCTURE PROTECTION Dr. Anastasios Zafeiropoulos, Senior R&D Architect, Contact: azafeiropoulos@ubitech.eu

More information

VNF & Performance: A practical approach

VNF & Performance: A practical approach VNF & Performance: A practical approach Luc Provoost Engineering Manager, Network Product Group Intel Corporation SDN and NFV are Forces of Change One Application Per System Many Applications Per Virtual

More information

Panel: Cloud/SDN/NFV 黃 仁 竑 教 授 國 立 中 正 大 學 資 工 系 2015/12/26

Panel: Cloud/SDN/NFV 黃 仁 竑 教 授 國 立 中 正 大 學 資 工 系 2015/12/26 Panel: Cloud/SDN/NFV 黃 仁 竑 教 授 國 立 中 正 大 學 資 工 系 2015/12/26 1 Outline Cloud data center (CDC) Software Defined Network (SDN) Network Function Virtualization (NFV) Conclusion 2 Cloud Computing Cloud computing

More information

SDN Architecture and Service Trend

SDN Architecture and Service Trend 2013 SDN 高 峰 論 壇 SDN Architecture and Service Trend Dr. Yu-Huang Chu Broadband Network Lab Chunghwa Telecom Co., Ltd., Taiwan 10/09/13 1 Outlines SDN & NFV introduction Network Architecture Trend SDN Services

More information

Ensuring end-user quality in NFV-based infrastructures

Ensuring end-user quality in NFV-based infrastructures Ensuring end-user quality in NFV-based infrastructures Leveraging distributed NFV cloud nodes to provide instant assessment of end-user experience EXECUTIVE SUMMARY Compute resources for virtual network

More information

OPENSTACK AU COEUR DE LA TRANSFORMATION NFV

OPENSTACK AU COEUR DE LA TRANSFORMATION NFV OPENSTACK AU COEUR DE LA TRANSFORMATION NFV François DUTHILLEUL OpenStack-FR Meetup, Paris, Oct 2014 APERCU Quelles sont les spécificités de NFV? Rôle d OpenStack dans une plateforme NFV Illustration:

More information

SDN, NFV & Future Technologies. Chris Thompson Director of Product Management, Cloud Connectivity Solutions

SDN, NFV & Future Technologies. Chris Thompson Director of Product Management, Cloud Connectivity Solutions SDN, NFV & Future Technologies Chris Thompson Director of Product Management, Cloud Connectivity Solutions Agenda SDN & NFV projections Terminology and protocols Overview of SDN, NFV and NV CPE Evolution

More information

The Distributed Cloud: Automating, Scaling, Securing & Orchestrating the Edge

The Distributed Cloud: Automating, Scaling, Securing & Orchestrating the Edge White Paper The Distributed Cloud: Automating, Scaling, Securing & Orchestrating the Edge Prepared by Jim Hodges Senior Analyst, Heavy Reading www.heavyreading.com on behalf of www.juniper.net October

More information

Introduction to Software Defined Networking (SDN) and how it will change the inside of your DataCentre

Introduction to Software Defined Networking (SDN) and how it will change the inside of your DataCentre Introduction to Software Defined Networking (SDN) and how it will change the inside of your DataCentre Wilfried van Haeren CTO Edgeworx Solutions Inc. www.edgeworx.solutions Topics Intro Edgeworx Past-Present-Future

More information

SDN: A NEW PARADIGM. Kireeti Kompella CTO, JDI

SDN: A NEW PARADIGM. Kireeti Kompella CTO, JDI SDN: A NEW PARADIGM Kireeti Kompella CTO, JDI AGENDA What is SDN? Definition and goals of SDN Analogy with Compute Virtualization Orchestration for Agile Provisioning Unified SDN What parts of the network

More information

Software defined networking. Your path to an agile hybrid cloud network

Software defined networking. Your path to an agile hybrid cloud network Software defined networking Your path to an agile hybrid cloud network Is your enterprise network ready for the latest business and consumer trends? Cloud How easily can your users connect to cloud resources?

More information

Carrier/WAN SDN. SDN Optimized MPLS Demo

Carrier/WAN SDN. SDN Optimized MPLS Demo Carrier/WAN SDN SDN Optimized MPLS Demo Problem Statement! Service Providers around the world have large investments in highly sophisticated and feature rich IP/MPLS network infrastructures for providing

More information

Ensuring end-user quality in NFV-based infrastructure

Ensuring end-user quality in NFV-based infrastructure Ensuring end-user quality in NFV-based infrastructure Distributed NFV cloud nodes provide instant assessment of the end-user experience EXECUTIVE SUMMARY Compute resources for virtual network functions

More information

The Role of Virtual Routers In Carrier Networks

The Role of Virtual Routers In Carrier Networks The Role of Virtual Routers In Carrier Networks Sterling d Perrin Senior Analyst, Heavy Reading Agenda Definitions of SDN and NFV Benefits of SDN and NFV Challenges and Inhibitors Some Use Cases Some Industry

More information

THE ON-DEMAND DATA CENTER NETWORK TRANSFORMATION IN A CHANGING INDUSTRY. Ken Cheng, CTO, Brocade October, 2013

THE ON-DEMAND DATA CENTER NETWORK TRANSFORMATION IN A CHANGING INDUSTRY. Ken Cheng, CTO, Brocade October, 2013 THE ON-DEMAND DATA CENTER NETWORK TRANSFORMATION IN A CHANGING INDUSTRY Ken Cheng, CTO, Brocade October, 2013 Fundamentally we ve had to redesign and challenge the way we ve run distributed infrastructure

More information

Embrace SDN the Future of Networking is Here

Embrace SDN the Future of Networking is Here Embrace SDN the Future of Networking is Here Chris Thompson; thompson.chris@hp.com Solution Architect, HP Networking Minneapolis, MN Jeff Dietsche Infrastructure Manager South Washington Public Schools

More information

Service Automation Made Easy

Service Automation Made Easy Service Automation Made Easy Networks that know how to customize the network experience for every subscriber Challenge Service providers want to quickly develop and deliver personalized services their

More information

EVOLVED DATA CENTER ARCHITECTURE

EVOLVED DATA CENTER ARCHITECTURE EVOLVED DATA CENTER ARCHITECTURE A SIMPLE, OPEN, AND SMART NETWORK FOR THE DATA CENTER DAVID NOGUER BAU HEAD OF SP SOLUTIONS MARKETING JUNIPER NETWORKS @dnoguer @JuniperNetworks 1 Copyright 2014 Juniper

More information

Enabling rapid and adaptive network applications deployment

Enabling rapid and adaptive network applications deployment Enabling rapid and adaptive network applications deployment Net Futures 2015 Session: Network Applications how to unleash the full innovation-potential of SDN and NFV March, 26 th 2015, Brussels Dr. Anastasios

More information

A Whitepaper by. In collaboration with:

A Whitepaper by. In collaboration with: A Whitepaper by In collaboration with: Introduction Many carriers in both the telecom and cable fields are espousing next generation architectures that borrow heavily from web scale data centers and cloud

More information

Palo Alto Networks. Security Models in the Software Defined Data Center

Palo Alto Networks. Security Models in the Software Defined Data Center Palo Alto Networks Security Models in the Software Defined Data Center Christer Swartz Palo Alto Networks CCIE #2894 Network Overlay Boundaries & Security Traditionally, all Network Overlay or Tunneling

More information

Foundation for High-Performance, Open and Flexible Software and Services in the Carrier Network. Sandeep Shah Director, Systems Architecture EZchip

Foundation for High-Performance, Open and Flexible Software and Services in the Carrier Network. Sandeep Shah Director, Systems Architecture EZchip Foundation for High-Performance, Open and Flexible Software and Services in the Carrier Network Sandeep Shah Director, Systems Architecture EZchip Linley Carrier Conference June 10, 2015 1 EZchip Overview

More information

Business Case for Open Data Center Architecture in Enterprise Private Cloud

Business Case for Open Data Center Architecture in Enterprise Private Cloud Business Case for Open Data Center Architecture in Enterprise Private Cloud Executive Summary Enterprise IT organizations that align themselves with their enterprise s overall goals help the organization

More information

PLUMgrid Open Networking Suite Service Insertion Architecture

PLUMgrid Open Networking Suite Service Insertion Architecture White Paper PLUMgrid Open Networking Suite Service Insertion Architecture Introduction A rapid increase in the use of cloud services across the globe require networks to be adaptable and flexible. PLUMgrid

More information

Telecom - The technology behind

Telecom - The technology behind SPEED MATTERS v9.3. All rights reserved. All brand names, trademarks and copyright information cited in this presentation shall remain the property of its registered owners. Telecom - The technology behind

More information

Software Defined Networks (SDN) and Network Function Virtualization (NFV) Market, Forecasts, and Impact on Network Operators 2015-2020

Software Defined Networks (SDN) and Network Function Virtualization (NFV) Market, Forecasts, and Impact on Network Operators 2015-2020 Brochure More information from http://www.researchandmarkets.com/reports/3108732/ Software Defined Networks (SDN) and Network Function Virtualization (NFV) Market, Forecasts, and Impact on Network Operators

More information

Pervasive Security Enabled by Next Generation Monitoring Fabric

Pervasive Security Enabled by Next Generation Monitoring Fabric Pervasive Security Enabled by Next Generation Monitoring Fabric By: Lee Doyle, Principal Analyst at Doyle Research Sponsored by Big Switch Networks Executive Summary Enterprise networks have become ever

More information

Building Access Networks that Support Carrier Ethernet 2.0 Services and SDN

Building Access Networks that Support Carrier Ethernet 2.0 Services and SDN In cooperation with Building Access Networks that Support Carrier Ethernet 2.0 Services and SDN COMMTECH Show Toronto, April 15-16 Mississauga Center by Pasquale Tagliarini Senior Solutions Engineer Agenda

More information

Use Cases for the NPS the Revolutionary C-Programmable 7-Layer Network Processor. Sandeep Shah Director, Systems Architecture EZchip

Use Cases for the NPS the Revolutionary C-Programmable 7-Layer Network Processor. Sandeep Shah Director, Systems Architecture EZchip Use Cases for the NPS the Revolutionary C-Programmable 7-Layer Network Processor Sandeep Shah Director, Systems Architecture EZchip Linley Processor Conference Oct. 6-7, 2015 1 EZchip Overview Fabless

More information

Powering the Internet of Things: SDN/NFV Architectures

Powering the Internet of Things: SDN/NFV Architectures Powering the Internet of Things: SDN/NFV Architectures 6B Connected Devices 2013 2013 2016 2018 2020 50B Connected Devices Worldwide by 2020 Implications for Service Providers Scaling the Networks End

More information

CARRIER LANDSCAPE FOR SDN NEXT LEVEL OF TELCO INDUSTRILIZATION?

CARRIER LANDSCAPE FOR SDN NEXT LEVEL OF TELCO INDUSTRILIZATION? CARRIER LANDSCAPE FOR SDN NEXT LEVEL OF TELCO INDUSTRILIZATION? Andreas Gladisch, Fritz-Joachim Westphal Deutsche Telekom Innovation Labs COMPLEXITY BY DOZENS OF SPECIALIZED BOXES AND THOUSANDS OF PROTOCOLS.

More information

How to Hear the Web Seminar

How to Hear the Web Seminar How to Hear the Web Seminar Click on Communicate in the top menu bar Select Integrated Voice Conference in the drop down Click Join to join the conference You will be able to listen to the presenter through

More information

Network Functions Virtualization (NFV) for Next Generation Networks (NGN)

Network Functions Virtualization (NFV) for Next Generation Networks (NGN) P a g e 1 Network Functions Virtualization (NFV) for Next Generation Networks (NGN) Summary Network Functions Virtualization (NFV) has drawn industry attention. Network Virtualization aims to transform

More information

Top 26 Companies in the Global NFV Market

Top 26 Companies in the Global NFV Market Top 26 Companies in the Global NFV Market Network Function Virtualization (NFV) refers to the combination of hardware and software network features in a single virtual network. The concept was initiated

More information

WHITE PAPER. How To Compare Virtual Devices (NFV) vs Hardware Devices: Testing VNF Performance

WHITE PAPER. How To Compare Virtual Devices (NFV) vs Hardware Devices: Testing VNF Performance WHITE PAPER How To Compare Virtual Devices (NFV) vs Hardware Devices: Testing VNF Performance www.ixiacom.com 915-3132-01 Rev. B, June 2014 2 Table of Contents Network Functions Virtualization (NFV): An

More information

An Integrated Validation Approach to SDN & NFV

An Integrated Validation Approach to SDN & NFV www.wipro.com An Integrated Validation Approach to SDN & NFV Key challenges, implementation strategies and the road ahead. Jayaprakash Hariharan Mohan Kumar Table of Contents 03...Abstract 04...Introduction

More information

Business Cases for Brocade Software-Defined Networking Use Cases

Business Cases for Brocade Software-Defined Networking Use Cases Business Cases for Brocade Software-Defined Networking Use Cases Executive Summary Service providers (SP) revenue growth rates have failed to keep pace with their increased traffic growth and related expenses,

More information

Software-Defined Networking Architecture Framework for Multi-Tenant Enterprise Cloud Environments

Software-Defined Networking Architecture Framework for Multi-Tenant Enterprise Cloud Environments Software-Defined Networking Architecture Framework for Multi-Tenant Enterprise Cloud Environments Aryan TaheriMonfared Department of Electrical Engineering and Computer Science University of Stavanger

More information

Designing Virtual Network Security Architectures Dave Shackleford

Designing Virtual Network Security Architectures Dave Shackleford SESSION ID: CSV R03 Designing Virtual Network Security Architectures Dave Shackleford Sr. Faculty and Analyst SANS @daveshackleford Introduction Much has been said about virtual networking and softwaredefined

More information

The Role of Big Data & Advanced Analytics in SDN/NFV. Moderated by Jim Hodges, Senior Analyst, Heavy Reading June 9, 2015

The Role of Big Data & Advanced Analytics in SDN/NFV. Moderated by Jim Hodges, Senior Analyst, Heavy Reading June 9, 2015 The Role of Big Data & Advanced Analytics in SDN/NFV Moderated by Jim Hodges, Senior Analyst, Heavy Reading June 9, 2015 DAY 1 TUESDAY, JUNE 9, 2015 3:00 4:00 PM BREAKOUT ROOM #4 VIRTUALIZATION The Role

More information

Testing Software Defined Network (SDN) For Data Center and Cloud VERYX TECHNOLOGIES

Testing Software Defined Network (SDN) For Data Center and Cloud VERYX TECHNOLOGIES Testing Software Defined Network (SDN) For Data Center and Cloud VERYX TECHNOLOGIES Table of Contents Introduction... 1 SDN - An Overview... 2 SDN: Solution Layers and its Key Requirements to be validated...

More information

SOFTWARE DEFINED NETWORKING

SOFTWARE DEFINED NETWORKING SOFTWARE DEFINED NETWORKING Bringing Networks to the Cloud Brendan Hayes DIRECTOR, SDN MARKETING AGENDA Market trends and Juniper s SDN strategy Network virtualization evolution Juniper s SDN technology

More information

REMOVING THE BARRIERS FOR DATA CENTRE AUTOMATION

REMOVING THE BARRIERS FOR DATA CENTRE AUTOMATION REMOVING THE BARRIERS FOR DATA CENTRE AUTOMATION The modern data centre has ever-increasing demands for throughput and performance, and the security infrastructure required to protect and segment the network

More information

Business Case for NFV/SDN Programmable Networks

Business Case for NFV/SDN Programmable Networks Business Case for NFV/SDN Programmable Networks Executive Summary Traditional network designs are failing to meet service providers business requirements. The designs lead to complex hardware stacks, over-provisioning

More information

Enabling Solutions in Cloud Infrastructure and for Network Functions Virtualization

Enabling Solutions in Cloud Infrastructure and for Network Functions Virtualization Enabling Solutions in Cloud Infrastructure and for Network Functions Virtualization Gateway Use Cases for Virtual Networks with MX Series Routers 1 Table of Contents Executive Summary... 3 Introduction...4

More information

Networks & Platforms: what s next? Nicolas Fischbach Director, Network & Platform Strategy and Architecture

Networks & Platforms: what s next? Nicolas Fischbach Director, Network & Platform Strategy and Architecture Networks & Platforms: what s next? Nicolas Fischbach Director, Network & Platform Strategy and Architecture 2012 Colt Telecom Group Limited. All rights reserved. A network of depth and breadth High capacity

More information

OpenStack Networking: Where to Next?

OpenStack Networking: Where to Next? WHITE PAPER OpenStack Networking: Where to Next? WHAT IS STRIKING IS THE PERVASIVE USE OF OPEN VSWITCH (OVS), AND AMONG NEUTRON FEATURES, THE STRONG INTEREST IN SOFTWARE- BASED NETWORKING ON THE SERVER,

More information

The following normative disclaimer shall be included on the front page of a PoC report:

The following normative disclaimer shall be included on the front page of a PoC report: Annex B (normative): NFV ISG PoC #28 Report The following normative disclaimer shall be included on the front page of a PoC report: Submission of this NFV ISG PoC Report as a contribution to the NFV ISG

More information

ADVANCED SECURITY MECHANISMS TO PROTECT ASSETS AND NETWORKS: SOFTWARE-DEFINED SECURITY

ADVANCED SECURITY MECHANISMS TO PROTECT ASSETS AND NETWORKS: SOFTWARE-DEFINED SECURITY ADVANCED SECURITY MECHANISMS TO PROTECT ASSETS AND NETWORKS: SOFTWARE-DEFINED SECURITY One of the largest concerns of organisations is how to implement and introduce advanced security mechanisms to protect

More information

Remote Voting Conference

Remote Voting Conference Remote Voting Conference Logical Architecture Connectivity Central IT Infra NIST Best reachability in India for R-Voting Initiative 200+ Physical MPLS POPs across India 5 Regional Data Centre at Pune,

More information

The promise of SDN. EU Future Internet Assembly March 18, 2014. Yanick Pouffary Chief Technologist HP Network Services

The promise of SDN. EU Future Internet Assembly March 18, 2014. Yanick Pouffary Chief Technologist HP Network Services The promise of SDN EU Future Internet Assembly March 18, 2014 Yanick Pouffary Chief Technologist HP Network Services Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein

More information

Sikkerhet Network Protector SDN app Geir Åge Leirvik HP Networking

Sikkerhet Network Protector SDN app Geir Åge Leirvik HP Networking Sikkerhet Network Protector SDN app Geir Åge Leirvik HP Networking Agenda BYOD challenges A solution for BYOD Network Protector SDN matched with industry leading service How it works In summary BYOD challenges

More information

HOW SDN AND (NFV) WILL RADICALLY CHANGE DATA CENTRE ARCHITECTURES AND ENABLE NEXT GENERATION CLOUD SERVICES

HOW SDN AND (NFV) WILL RADICALLY CHANGE DATA CENTRE ARCHITECTURES AND ENABLE NEXT GENERATION CLOUD SERVICES HOW SDN AND (NFV) WILL RADICALLY CHANGE DATA CENTRE ARCHITECTURES AND ENABLE NEXT GENERATION CLOUD SERVICES Brian Levy CTO SERVICE PROVIDER SECTOR EMEA JUNIPER NETWORKS CIO DILEMA IT viewed as cost center

More information

Network Security Demonstration - Snort based IDS Integration -

Network Security Demonstration - Snort based IDS Integration - Network Security Demonstration - Snort based IDS Integration - Hyuk Lim (hlim@gist.ac.kr) with TJ Ha, CW Jeong, J Narantuya, JW Kim Wireless Communications and Networking Lab School of Information and

More information

Dynamic Service Chaining for NFV/SDN

Dynamic Service Chaining for NFV/SDN Dynamic Service Chaining for NFV/SDN Kishore Inampudi A10 Networks, Inc. Agenda Introduction NFV Reference Architecture NFV Use cases Policy Enforcement in NFV/SDN Challenges in NFV environments Policy

More information

Different NFV/SDN Solutions for Telecoms and Enterprise Cloud

Different NFV/SDN Solutions for Telecoms and Enterprise Cloud Solution Brief Artesyn Embedded Technologies* Telecom Solutions Intel Xeon Processors Different NFV/SDN Solutions for Telecoms and Enterprise Cloud Networking solutions from Artesyn Embedded Technologies*

More information

Problem statement of SDN and NFV co-deploy ment in cloud datacenters

Problem statement of SDN and NFV co-deploy ment in cloud datacenters Problem statement of SDN and NFV co-deploy ment in cloud datacenters dr af t - gu- sdnr g- pr obl em- st at ement - of sdn- nf v- i n- dc- 00 Rong Gu (Presentor) Chen Li Ruixue Wang From China Mobile Introduction

More information

vsrx Services Gateway: Protecting the Hybrid Data Center

vsrx Services Gateway: Protecting the Hybrid Data Center Services Gateway: Protecting the Hybrid Data Center Extending Juniper Networks award-winning security products to virtualized, cloud-based, and hybrid IT environments Challenge Virtualization and cloud

More information

VIRTUALIZING THE EDGE

VIRTUALIZING THE EDGE VIRTUALIZING THE EDGE NFV adoption to transform telecommunications infrastructure Karthik Kailasam Director, Integrated Modular Solutions September 2015 Key Messages The transformation of telecom networks

More information

Software Defined Environments

Software Defined Environments November 2015 Software Defined Environments 2015 Cloud Lecture, University of Stuttgart Jochen Breh, Director Architecture & Consulting Cognizant Global Technology Office Agenda Introduction New Requirements

More information

Business Case for Virtual Managed Services

Business Case for Virtual Managed Services Business Case for Virtual Managed Services Executive Summary Managed services allow businesses to offload day-to-day network management tasks to service providers and thus free up internal talent to focus

More information

NFV Forum Progression to Launch

NFV Forum Progression to Launch NFV Forum Progression to Launch Laurent Laporte Technology Development Strategist Sprint September 25, 2014 Progression to NFV Forum Launch TOPS Council SDN/NFV Focus Group: NFV Landscape Assessment completed,

More information

Network Function Virtualization & Software Defined Networking

Network Function Virtualization & Software Defined Networking Network Function Virtualization & Software Defined Networking Rencontres Inria Industrie «Télécoms du futur» 13 novembre 2014 Walid Dabbous Outline Network Functions Virtualization Software Defined Networks

More information

Understanding the Business Case of Network Function Virtualization

Understanding the Business Case of Network Function Virtualization White paper Understanding the Business Case of Network Function Virtualization Part I of the series discusses the telecom market scenario in general, market and business drivers behind push for a building

More information

Transforming Service Life Cycle Through Automation with SDN and NFV

Transforming Service Life Cycle Through Automation with SDN and NFV Transforming Service Life Cycle Through Automation with SDN and NFV Automated workflows improve TCO for service delivery 1 Table of Contents Executive Summary... 3 Introduction... 3 Today s Challenges...

More information

End to End Solution to Accelerate Data Warehouse Optimization. Franco Flore Alliance Sales Director - APJ

End to End Solution to Accelerate Data Warehouse Optimization. Franco Flore Alliance Sales Director - APJ End to End Solution to Accelerate Data Warehouse Optimization Franco Flore Alliance Sales Director - APJ Big Data Is Driving Key Business Initiatives Increase profitability, innovation, customer satisfaction,

More information

Virtualization techniques for network functions. Fabrice Guillemin, Orange Labs, OLN/CNC/NCA September 14, 2015

Virtualization techniques for network functions. Fabrice Guillemin, Orange Labs, OLN/CNC/NCA September 14, 2015 Virtualization techniques for network functions Fabrice Guillemin, Orange Labs, OLN/CNC/NCA September 14, 2015 Introduction Network functions are today hosted by dedicated hardware, typically high performance

More information

Cloud Orchestration. Mario Cho. Open Frontier Lab. hephaex@gmail.com

Cloud Orchestration. Mario Cho. Open Frontier Lab. hephaex@gmail.com Cloud Orchestration Mario Cho Open Frontier Lab. hephaex@gmail.com Who Am I? Technical Architect HPC (High Performance Computing) for Human Brain Mapping Enterprise Architec for Storage Tiering Techincal

More information

Challenges and Opportunities:

Challenges and Opportunities: Challenges and Opportunities: The Rise of Software Centric Networking Nicolai Leymann Deutsche Telekom Technik 12.03.2015 Table of Contents 1. Todays networks and challenges 2. The New World: Software

More information

Cisco Virtual Managed Services

Cisco Virtual Managed Services Cisco Virtual Managed Services Transforms Your Business Through Innovation Ian A. Hood, P. Eng. Service Provider Business Wayne Cullen Service Provider Business October 2015 What You Will Take Away This

More information

Ericsson. Service provider SDN. SDN innovation for Service Providers. Raul caldeira FBC Customer Solutions. Ericsson

Ericsson. Service provider SDN. SDN innovation for Service Providers. Raul caldeira FBC Customer Solutions. Ericsson Ericsson Service provider SDN SDN innovation for Service Providers IST IEEE ComSoc Ericsson Telecomunicações, Lda 2013 2013-12-12 Page 1 Raul caldeira FBC Customer Solutions Ericsson the ict Infrastructure

More information

Restorable Logical Topology using Cross-Layer Optimization

Restorable Logical Topology using Cross-Layer Optimization פרויקטים בתקשורת מחשבים - 236340 - סמסטר אביב 2016 Restorable Logical Topology using Cross-Layer Optimization Abstract: Today s communication networks consist of routers and optical switches in a logical

More information

Oracle Big Data SQL Technical Update

Oracle Big Data SQL Technical Update Oracle Big Data SQL Technical Update Jean-Pierre Dijcks Oracle Redwood City, CA, USA Keywords: Big Data, Hadoop, NoSQL Databases, Relational Databases, SQL, Security, Performance Introduction This technical

More information

Branches as Nimble as the Cloud: Unleashing Agility with Nuage Networks Virtualized Network Services EXECUTIVE SUMMARY

Branches as Nimble as the Cloud: Unleashing Agility with Nuage Networks Virtualized Network Services EXECUTIVE SUMMARY Branches as Nimble as the Cloud: Unleashing Agility with Nuage Networks Virtualized Network Services EXECUTIVE SUMMARY The principles of cloud computing are transforming the delivery of information services

More information

Conference. Smart Future Networks THE NEXT EVOLUTION OF THE INTERNET FROM INTERNET OF THINGS TO INTERNET OF EVERYTHING

Conference. Smart Future Networks THE NEXT EVOLUTION OF THE INTERNET FROM INTERNET OF THINGS TO INTERNET OF EVERYTHING Conference THE NEXT EVOLUTION OF THE INTERNET FROM INTERNET OF THINGS TO INTERNET OF Smart Future Networks www.internet-of-things.no EVERYTHING Patrick Waldemar Vice President Telenor Research and Future

More information

Business Case for Brocade Network Analytics for Mobile Network Operators

Business Case for Brocade Network Analytics for Mobile Network Operators Business Case for Brocade Network Analytics for Mobile Network Operators Executive Summary Mobile operators are experiencing large cost increases as they build out their networks to keep pace with rising

More information

Blue Planet. Introduction. Blue Planet Components. Benefits

Blue Planet. Introduction. Blue Planet Components. Benefits Blue Planet Introduction Cyan Blue Planet is the first Software- Defined Network (SDN) and Network Function Virtualization (NFV) platform purpose- built for service providers and the wide area network.

More information

The New IP Networks: Time to Move From PoC to Revenue

The New IP Networks: Time to Move From PoC to Revenue White Paper The New IP Networks: Time to Move From PoC to Revenue Prepared by Roz Roseboro Senior Analyst, Heavy Reading www.heavyreading.com on behalf of www.brocade.com February 2015 Introduction The

More information

PRACTICAL EXPERIENCES BUILDING AN IPFIX BASED OPEN SOURCE BOTNET DETECTOR. ` Mark Graham

PRACTICAL EXPERIENCES BUILDING AN IPFIX BASED OPEN SOURCE BOTNET DETECTOR. ` Mark Graham PRACTICAL EXPERIENCES OF BUILDING AN IPFIX BASED OPEN SOURCE BOTNET DETECTOR ` Mark Graham OUTLINE RESEARCH PROBLEM: Botnet detection in Cloud Providers FLOW: IPFIX and NetFlow CONCEPTUAL FRAMEWORK: Build

More information

Applications of Software-Defined Networking (SDN) in Power System Communication Infrastructure: Benefits and Challenges

Applications of Software-Defined Networking (SDN) in Power System Communication Infrastructure: Benefits and Challenges Applications of Software-Defined Networking (SDN) in Power System Communication Infrastructure: Benefits and Challenges Jasson Casey and Alex Sprintson Texas A&M University (jasson.casey@tamu.edu and spalex@tamu.edu

More information

Embrace the Future of Data Center Networking

Embrace the Future of Data Center Networking Embrace the Future of Data Center Networking Craig Hinkley Vice President and General Manager, HP Networking Americas 3 July 2013 To remain static is to lose ground. Packard David Legacy data center networks

More information

Introduction to Quality Assurance for Service Provider Network Functions Virtualization

Introduction to Quality Assurance for Service Provider Network Functions Virtualization Introduction to Quality Assurance for Service Provider Network Functions Virtualization Carsten Rossenhoevel, Managing Director European Advanced Networking Test Center 2015-09-08 Company Introduction

More information

Simplifying Big Data Deployments in Cloud Environments with Mellanox Interconnects and QualiSystems Orchestration Solutions

Simplifying Big Data Deployments in Cloud Environments with Mellanox Interconnects and QualiSystems Orchestration Solutions Simplifying Big Data Deployments in Cloud Environments with Mellanox Interconnects and QualiSystems Orchestration Solutions 64% of organizations were investing or planning to invest on Big Data technology

More information

Scalable Network Monitoring with SDN-Based Ethernet Fabrics

Scalable Network Monitoring with SDN-Based Ethernet Fabrics Scalable Network Monitoring with SDN-Based Ethernet Fabrics Prashant Gandhi VP, Products & Strategy Big Switch Networks gandhi@bigswitch.com 1 Agenda Trends in Network Monitoring SDN s Role in Network

More information

Evolution of OpenCache: an OpenSource Virtual Content Distribution Network (vcdn) Platform

Evolution of OpenCache: an OpenSource Virtual Content Distribution Network (vcdn) Platform Evolution of OpenCache: an OpenSource Virtual Content Distribution Network (vcdn) Platform Daniel King d.king@lancaster.ac.uk Matthew Broadbent m.broadbent@lancaster.ac.uk David Hutchison d.hutchison@lancaster.ac.uk

More information

Cloud Security Axians Carrier & Broadband Days. Christof Jungo C1, Public (Axians Carrier Days) September 15 Darmstadt

Cloud Security Axians Carrier & Broadband Days. Christof Jungo C1, Public (Axians Carrier Days) September 15 Darmstadt Cloud Security Axians Carrier & Broadband Days Christof Jungo C1, Public (Axians Carrier Days) September 15 Darmstadt C1, public use (Axians Carrier Days) Cloud 2002 Expo.02 artificial physical cloud in

More information

Management & Orchestration of Metaswitch s Perimeta Virtual SBC

Management & Orchestration of Metaswitch s Perimeta Virtual SBC Metaswitch.com OvertureNetworks.com Management & Orchestration of Metaswitch s Perimeta Virtual SBC Fortify your edge and protect your core with the Perimeta Session Border Controller: Virtual The 1st

More information

Cisco NFV Solution for the Cisco Evolved Services Platform

Cisco NFV Solution for the Cisco Evolved Services Platform Cisco NFV Solution for the Cisco Evolved Services Platform Cisco Knowledge Network Presentation Vijay Venugopal Senior Manager, Product Marketing, Cisco Cloud and Virtualization Group September 2014 Agenda

More information