networks to build the digital economy · 2016. 5. 23. · firewall appliance, virtual firewall,...
TRANSCRIPT
Networks to Build the Digital Economy
Denise Shiffman, SVP, JDI
The Digital Economy and IoT
IoT 5G CLOUD
Days Minutes
Driving Changed Expectations Forcing Business Models to Evolve
S, M, L Tailored
Fixed Mobile
Own Access
Challenging the Economics of Networking
Capital Efficiency,
Flexibility
Operational
Efficiency,
Automation
Simple, Incremental
Growth
Restricted Geo and Markets More Services and Choice Cost Center
Time to Deploy Service Service Fulfillment Service SLA
6–10 Months
4–6 Weeks
Demand Uncertainty Provision to Peak High Fixed Overhead
Month 1
Month 2
Month 5
Month 3
Month 4
0 4 8 12 16 20 24 28
Idle
Demand Variation
Hours
New Branch 2
New Branch 3
New Branch 4
New Branch 1
Data Center
$
$ $
$ $
Where Innovation is Required
Driving Software and Disaggregation
EMBEDDED
Networking as Services
DISAGGREGATED LICENSED
Software
Hardware
Software
Hardware
Hardware
Hardware
Hardware
Network Service
Network Service
Network Service
NOS
Tools ZTP Platform Management
• Python
• Perl
• Ansible
• Puppet
• Chef
• Contrail Networking
• Cloud Services Platform
• Network Services Platform (NFX)
• Sky Advanced Threat Prevention
• Contrail Service Orchestration
• Service Activator
• Network Director
• Security Director
Where Automation is Foundational DIY or Done for You
• Network Director
• Open Clos
• Hybrid cloud deployments
growing
• Device proliferation and BYOD
• IoT and big data
• Zero day attacks
• Advanced, persistent, targeted
attacks
• Adaptive malware
• Virtualization and SDN
• Applications, data, management
in the cloud
• Application proliferation
And Security is in Transformation
INFRASTRUCTURE THREAT SOPHISTICATION CLOUD
Causing Network Security Complexity
Centralized DHCP and
other services
Data Loss Prevention
Inline Anti Prevention
Application Security
Unified Threat Management
Firewalls
App Servers
Core
LAG
Inline Intrusion Prevention
Multi-vendor, multi-vector solutions deployed
Layered on top of the network
Security tools lagging behind attacker ingenuity
Unmanaged risk to business outcomes and operations
Demanding Software Defined Secure Networks
Global Policy Orchestration, Policy Engine
Open and Unified Threat Detection
Dynamic, Automated Enforcement
IDS Deception Sandbox
AV NGFW
Analytics IPS NAT
Uncoordinated and firewall focused
Orchestrated, holistic system encompassing security + infrastructure
Building a Secure Network Innovative Security to Thwart Innovative Attacks
Advanced Anti-Malware
Protection
Firewall appliance, virtual
firewall, firewall “light”
Protection in the network
Threat Detection Feeds
Policy SDSN
Leveraging Virtual Security Transforming Security Deployments
Data Center Virtual Firewall Appliance
Data Center Micro-segmentation
CONTRAIL NETWORKING
Data Center Delivered to
Enterprise Edge
Micro Security Services on Low
Cost Edge
CONTRAIL NETWORKING
Building the Virtualized Enterprise Where Services Live
“MOSTLY” CLOUD ON PREMISE HYBRID CLOUD
NFV + Managed Service SDN + Virtual + Physical Virtualized Compute
Migrating to Agile and Automated
SWITCHING SECURITY
Intelligence and Automation
Reinventing the Edge with vMX Spin up New Routing Instances on Demand
Enterprise Edge SP Edge DC Edge Metro
CONTRAIL NETWORKING
Uniting the Enterprise Network Fusion Enterprise and Cloud Enabled Branch (Cloud CPE)
DATACENTER
• Virtualized compute • Server workloads • Cloud and on premise storage • Secure north/south, east/west traffic • Automated branch edge
CAMPUS
• Secure users and apps • Secure user devices • Printers, door locks, WLAN • UCC • East/west traffic
BRANCH
• Secure connectivity • Secure routing • Firewall • WAN acceleration
SWITCHING
SECURITY
AUTOMATION
Transforming to Cloud Services Cloud Services Platform
Sky
ATP Cloud CPE (Centralized)
Cloud Enabled Branch
(Cloud CPE Distributed)
SD
WAN
Cloud
Management
Cloud CPE for Cloud Enabled Branch Open, Fully Automated Enterprise Platform
Cloud services and software
Juniper services and third party
SD WAN as a service
NFX virtualized services system
Cloud Enabled Automated Branch
HQ
Branch
A Network To Win
FLEXIBILITY
AUTOMATION
SCALE
SECURITY
SPEED
Thank you