Tuesday, October 4, 2016

Juniper Sets Focus on Software-Defined Secure Networks

At its NXTWORK 2016 event in Santa Clara, California, Juniper Networks sets its focus on the next generation of Software-Defined Secure Networks (SDSN), including big enhancements to its security portfolio enhancements that extend threat prevention deeper into the network - down to the switch level. Juniper's SDSN features open and unified architecture where security enforcement extends across the entire network.


The rollout includes a new Policy Enforcer, which automates the enforcement of security policies across the network and quarantines infected endpoints to prevent threats across firewalls and switches through Junos Space Security Director.

Additionally, Juniper Networks Sky Advanced Threat Prevention (ATP) is now available on the vSRX Virtual Firewall as well as across the SRX Series Services Gateways, extending protection from sophisticated malware across virtual and physical firewalls. Juniper has also given customers the flexibility to meet their specific needs through new mid-range SRX4000 Series firewalls, optimized for hybrid cloud and enterprise campus environments.

Highlights:

  • Security Director with Policy Enforcer: Security Director's smart policy deployment engine, which allows a single-point-of-management security policy, now detects and quarantines infection points across firewalls and switches by integrating with Sky ATP. Additional features include: policies enforced in real-time that adapt as threats evolve to better protect the network and its users; unified visibility, analytics and management of security throughout the network.
  • Sky Advanced Threat Prevention: The enhanced Sky ATP works with both Juniper's virtual and physical next-generation firewalls, including: vSRX integration with Sky ATP to deliver advanced threat prevention from the cloud with the ability to detect a broad array of malicious malware. the new SRX4000 Series, including SRX4100 and SRX4200, are compact mid-range, next-generation firewalls; SRX4100 and SRX4200 also provide advanced L4-L7 services, including Content Security, AppSecure and Unified Threat Management (UTM) as well as a "single pane of glass" management with Junos Space Security Director.
  • Professional Services: The Juniper Networks Professional Services team and its authorized Professional Services Partners can provide customers assistance in the installation and configuration of Juniper's Junos Space Security Director, firewall migration services and SRX next-generation firewalls. 

http://newsroom.juniper.net/press-releases/juniper-networks-extends-software-defined-secure-networks-with-advanced-automate-nyse-jnpr-11g115889-001

Video: Menlo Security Highlights Isolation Platform

CISOs today are fighting a war against four basic forces: application security, access security, email security, and web security.  Greg Maudsley, Sr. Director of Product Marketing, at Menlo Security, discusses the challenge, especially with limited budgets and staff.

Menlo Security, a start-up based in Silicon Valley, offers an isolation platform to mitigate these risks. The company is now extending its isolation platform to include phishing attacks.

See video:  https://youtu.be/EP05RjySB6g






Menlo Security Extends its Cloud-based Isolation Platform

Menlo Security has extended its cloud-based isolation platform, which prevents web-based malware from infecting local by running the browser in a cloud-based container, to now also stop email threats including malicious links, credential theft and weaponized attachments. The new solution effectively prevents targeted email phishing attacks, which are a major cybersecurity concern for enterprises.

Menlo Security said its Phishing Isolation solution was developed in close collaboration with Fortune 500 customers, to specifically address prevention shortfalls in existing secure email gateway products. The solution can be integrated with existing email infrastructure including Exchange, Gmail and Office 365. By leveraging patented Adaptive Clientless Rendering (ACR) technologies, the new solution enables enterprise-wide deployment of isolation security without the need to deploy or manage endpoint software, dramatically reducing risks without impacting the user experience.

The Menlo solution is available either on-premises, as-a-service via the cloud, or as part of a managed security service.

JPMorgan Chase is named as lead customer for the Menlo Security Phishing Isolation Platform.

“Email persists as the top malware infection vector for enterprises, resulting in many forms of theft and fraud,” said Poornima DeBolle, co-founder and Chief Product Officer of Menlo Security. “Adding phishing Isolation capabilities to the MSIP creates the only phishing prevention solution that completely eliminates targeted spear-phishing attacks and drive-by exploits by isolating all email links and attachments. By stopping this top infection vector, Menlo enables CISOs to report definitive progress against malware attacks to their boards of directors, while also freeing up precious cyber security incident-response resources within their teams.”

http://www.menlosecurity.com

ETSI’s Open Source MANO (OSM) Hits Release 1

ETSI’s Open Source MANO (OSM) group announced the first release of its open source Management and Orchestration (MANO) software stack.

OSM Release ONE, which closely aligned with ETSI NFV, comes less than six months since the inaugural meeting of the OSM community.

The OSM group said Release ONE could be installed in operator labs to create a scalable and interoperable open source MANO environment. Release ONE substantially enhances interoperability with other components (VNFs, VIMs, SDN controllers) and creates a plugin framework to make platform maintenance and extensions significantly easier to provide and support.

Highlights of the list of technical features in Release ONE include:

  • Natively supported VIMs: VMwareTM, OpenStack and OpenVIM
  • Support for reference SDN Controllers, such as OpenDayLight (ODL) and FloodLight
  • A plugin model to facilitate the addition of new types of VIMs and SDN Controllers, thus minimizing developer effort
  • Multi-site Network Services, to respond to operator requirements, allowing deployments that span across multiple datacenters
  • A one-step installer, based on containers and Juju modelling, to simplify testing, customization and deployment of OSM
  • Extended virtualized network functions (VNF) and network service models, allowing Day-Zero VNF configuration
  • OpenVIM code, included as part of the OSM install, providing a reference VIM for all-in-one installations with full support of Enhanced Platform Awareness. Uniquely, users are not required to have a pre-existing VIM installation in their premises before installing OSM

“The pace of the group’s work has been amazing, and as one of the fastest growing NFV and SDN open source projects, OSM now proudly counts 46 members including many of the leading global operators” says Francisco-Javier Ramón, ETSI OSM Chair and Head of Network Virtualisation Initiative at Telefónica, Global CTO.

http://www.etsi.org/news-events/news/1132-2016-10-news-etsi-open-source-mano-release-one-now-available

#MWC16: Open Source MANO Initiative Gets Underway

A new industry initiative is underway for the development of Open Source software for Management and Orchestration (MANO) of Network Functions Virtualization (NFV). The group is sponsored by ETSI and its founders include BT, Canonical, Intel, Mirantis, RIFT.io Inc, Telefonica, Telekom Austria Group and Telenor.

Two of the key components of the ETSI NFV architectural framework are the NFV Orchestrator and VNF (Virtualized Network Function) Manager, known as NFV MANO. Additional layers, such as service orchestration are also required for operators to enable true NFV services. Open Source software can facilitate the implementation of an ETSI aligned NFV architecture, provide practical and essential feedback to the ETSI NFV ISG and increase the likelihood of interoperability among NFV implementations.

The new group, ETSI OSM, will deliver an open source MANO stack using accepted open source tools and working procedures. The activity will be closely aligned with the evolution of ETSI NFV and will provide a regularly updated reference implementation of NFV MANO. OSM will enable an eco-system of NFV solution vendors to rapidly and cost-effectively deliver solutions to their users.

“ETSI OSM complements the work of the ETSI NFV ISG and vice versa. It will provide an opportunity to capitalize on the synergy between standardization and open source approaches by accessing a greater and more diverse set of contributors and developers than would normally be possible”, says Luis Jorge Romero, ETSI Director General. “This maximizes innovation, efficiency and time to market and ensures a continuing series of conformant reference implementations.”

http://osm.etsi.org/welcome/

Ericsson to Cut 3,000 Positions in Sweden

Ericsson announced plans to trim approximately 3,000 positions in Sweden, including about 1,000 positions in production, approximately 800 in R&D and approximately 1,200 in other operations. The job reduction represents about 19% of its current workforce of 16,000 employees in Sweden.

"Ericsson is going through a large transformation. We continue to have a strong focus on R&D, and since many years, most Ericsson employees work in software development and services, rather than hardware production. The measures are necessary to secure Ericsson's long term competitiveness as well as technology and services leadership," stated Jan Frykhammar, President and CEO, Ericsson.

The company said the cuts will come through voluntary separation, forced reductions and outsourcing. Ericsson intends to make significant reductions in operations in Borås and Kumla.

https://www.ericsson.com/news/2046462

IDC: Worldwide Cloud IT Infrastructure Revenue Grows 14.5% to $7.7 Billion in Q2

Vendor revenue from sales of infrastructure products (server, storage, and Ethernet switch) for cloud IT, including public and private cloud, grew by 14.5% year over year to $7.7 billion in the second quarter of 2016 (2Q16), ahead of renewed hyperscale growth expected in the second half of 2016, according to the International Data Corporation (IDC) Worldwide Quarterly Cloud IT Infrastructure Tracker.

"As expected, the hyperscale slow down continued in the second quarter of 2016," said Kuba Stolarski, research director for Computing Platforms at IDC. "However, deployments to mid-tier and small cloud service providers showed strong growth, along with private cloud buildouts. In general, the second quarter did not have as difficult a compare to the prior year as the first quarter did, and this helped improve growth results across the board compared to last quarter. In the second half of 2016, IDC expects to see strengthening in public cloud growth as key hyperscalers bring new datacenters online around the globe, continued strength in private cloud deployments, and declines in traditional, non-cloud deployments."

Some highlights:

  • The overall share of cloud IT infrastructure sales climbed to 34.9% in 2Q16, up from 30.6% a year ago. 
  • Revenue from infrastructure sales to private cloud grew by 14.0% to $3.1 billion, and to public cloud by 14.9% to $4.6 billion. In comparison, revenue in the traditional (non-cloud) IT infrastructure segment decreased 6.1% year over year in the second quarter. 
  • Private cloud infrastructure growth was led by Ethernet switch at 49.4% year-over-year growth, followed by storage at 19.7%, and server at 8.9%. 
  • Public cloud growth was also led by Ethernet switch at 61.8% year-over-year growth, followed by server at 25.1% while storage revenue for public cloud declined 6.2% year over year. In traditional IT deployments, server declined the most (7.5% year over year) with Ethernet switch and storage declining 2.2% and 2.0%, respectively.


http://www.idc.com

CyrusOne Adds to its Phoenix Data Center Campus

CyrusOne announced the second expansion to its Phoenix data center campus this year.  The company has just completed a new data hall built into an existing shell that provides an additional 32,000 colocation square feet (CSF) and six megawatts of power to the campus.

“We continue to build on our momentum in Phoenix to meet the hyper-speed, hyper-scale demands of our cloud, internet and enterprise customers,” said John Hatem, executive vice president of design, construction and operations, CyrusOne. “As CyrusOne’s largest data center campus, the Phoenix campus is well positioned to support continued demands for growth and scalability. Our Massively Modular engineering approach and industry-leading supply chain efficiencies enable us to help customers scale with just-in-time delivery of new infrastructure.”

http://www.CyrusOne.com

See also