1 / 16

Closing Automation and DNS Security Gaps in Today’s Dynamic World

Closing Automation and DNS Security Gaps in Today’s Dynamic World. Matt Gowarty, Sr. Product Marketing Manager and Phil Miller, Solutions Architect. Facts Impacting You Today. 90% of traffic on networks will be Video (Cisco VNI). $7.7B Mobile Devices surpassing 7.1B people (GMV).

jlugo
Download Presentation

Closing Automation and DNS Security Gaps in Today’s Dynamic World

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Closing Automation and DNS Security Gaps in Today’s Dynamic World Matt Gowarty, Sr. Product Marketing Manager and Phil Miller, Solutions Architect

  2. Facts Impacting You Today 90% of traffic on networks will be Video (Cisco VNI) $7.7B Mobile Devices surpassing 7.1B people (GMV) 1.1B payments done through Mobile per day (ITU, Strategy Analytics) 60% of MNOs have experienced a network outage or degradation due to malicious attacks (Heavy Reading) 1.8M Smartphones are sold per day (Gartner, IBSG) 80M Hours of YoutubeWatched Daily (Gartner) 1.4B Smartphones compared to 2B PC’s (Gartner)

  3. Common Challenges Security Availability Efficiency • High availability requirements • Minimize latency for customer experience • Flexible architecture for hybrid and NFV environments • DNS is the #1 attack vector • Reduce security risks to core network infrastructure • Minimize exposure of end user vulnerabilities • Excessive manual tasks • Silo management and visibility tools • Lack of streamlined workflows across platforms Need Integration into Heterogeneous Environments

  4. Infoblox Overview Secure DNS Core Network Services (DDI) Cloud Network Automation Centralized Management

  5. Validated By Leading Service Providers & Enterprises 7 of the top aerospace & defense companies 228 mobile, broadband, Internet service providers 9 of the top auto & truck manufacturers 14 of the top 25 telco operators 8 of the top retailers 34 countries deployed and supporting 2 leading equipment suppliers preferred choice 8 of the top major banks 50% of DNS, DHCP, IPAM market share

  6. Availability and Efficiency

  7. Infoblox - Centralized Control and Visibility • Synchronized shared, distributed database • Visibility across networks, regional switching or aggregation centers • Cloud, NFV, virtualized, and on-prem solutions Grid Master Regional Member Regional MTSO, Data Centers Regional Member Infoblox Grid™ VirtualAppliance Member

  8. Infoblox Grid plus adapters monitors member load Notifies orchestrator to quickly scale up VMs Protection against sudden surges in DNS traffic Elastic Scalability for NFV Environments Phantom Domain Attack DNS DDoS Atttack 1 DNS Traffic Infoblox Grid Master IB Rule Updates The new member has been already pre-provisioned. A new license will be assigned from a pool of available addresses. 2 6 Performance Mon Performance Mon vSecure DNS 2 (site 2) NEW Orchestrator vSecure DNS 1 (site 1) 3 5 Notification to Orchestrator: Site 1 vSecure DNS1 is over utilized Command to Orchestrator: Spin up a new VSecure DNS 4 Work Flow to dynamically spins up/down New vSecure DNS servers

  9. Challenges in Automation Today Request IP or Use Allotment Forward IP Data for Tracking Update Database or Spreadsheet Request DNS Record Allocate and Manually Enter DNS Clean Up When Destroyed Provision Virtual Instance Legacy 1 2 3 4 5 6 Automated Manual Common Next Available IP Self Report IP Address Update Database or Spreadsheet Local DNS Name Creation Service Specific DNS Names (APN) Clean Up When Destroyed Provision Virtual Instance 1 4 2 3 5 6 Automated Automated Partial Partial Manual Automated Manual 1 2 3 4 5 6 Provision Virtual Instance Orchestrated Automated Automated

  10. Demo

  11. Securing the Infrastructure and End Users

  12. Why Should Securing DNS Be a Focus? Security Teams At a Disadvantage with DNS DNS is everywhere and critical DNS was designed to be open and allow everything Lack of visibility, challenge in prioritization, untimely intel Ownershipis in silos: NetOps teams typically own DNS – not SecOps Find malicious activity early (DNS is the first touch point)

  13. But Don’t Existing Tools Already Do This? Majority of Security Approaches Do Not Incorporate Critical DNS Data Critical gaps when not securing DNS Malware communication and propagation Lack of visibility into infected hosts and devices Data exfiltration and data loss

  14. Secure DNS Demo

  15. NFV Value Proposition: Reduce Transformation Risk Gartner SDN/NFV Network Physical Network Hybrid Infoblox Grid™ • Real-time provisioning • Highly Automated • Dynamic Capacity Management • Predictive, Analytics-driven • Static provisioning and capacity Management • Manual processes • Non-configurable Grid Master Virtual Secure DNS Features • Visibility and control across all networks – physical, hybrid, virtual • Rapid Provisioning – Network Automation • Elastic scalability • Multi-vendor ecosystem • Stronger security • Proven technology Physical Virtual Hybrid

  16. Thank YouVisit our booth – A7www.infoblox.com

More Related