What is SD-WAN?
Learn about the capabilities you should expect to find in a full-featured SD-WAN design and how these features operate within the larger Secure SD-WAN architecture.
Futuriom outlines the market trends for SD-WAN in their June 2020 report and provides their predictions for growth and change in the space.
NTT Communications and Versa Networks provide McLaren with reliability, security, stability, and flexible management of their data traffic flows so they can set up a secure, optimized network connectivity in preparation of race weekend.
Learn about the Versa Secure SD-WAN solution in a high-level, one minute overview.
Versa Secure SD-WAN is a single software platform that offers multi-layered security and enables multi-cloud connectivity for Enterprises.
Industry analysts have noted that branch offices are increasingly becoming a targeted point of entry into corporate networks, with attack volume growing more than 500 percent over the last three years. This is due in large part to three major trends/issues: the increasing adoption of cloud- vs. data center-hosted apps, the adding of Internet circuits as additional (and lower cost) connectivity for branch offices, and the largely unchanged and static architecture of branch office networks.
The latter point is compounded by the need to deploy a multitude of siloed security appliances and/or software packages to enforce any kind of defense-in-depth plan, forcing a range of separate data security and gateway services to co-exist and work seamlessly together — a tall order that rarely delivers (especially when there is a breach and it needs to be diagnosed in real-time) additional info.
While the above challenges with branch security (and operating managed services for them) are very real, technology advances in the last few years can offset many of these. Specifically, network function virtualization (NFV) is a rapidly growing telecom industry trend ($11.6B in 2019; IHS/Infonetics) that evolves hardware-centric network and security functions into much more integrated software-based solutions. To address growing branch office vulnerabilities, both service providers (through managed service offerings) and enterprise IT/CISO teams need to apply NFV to evolve branch security infrastructure from legacy point appliances to a more agile and software-defined approach.
Software-defined security (SD-Security) introduces simplicity to the world of network security. In this model, protection is based on network-wide logical policies and monitoring that are not tied to a specialized (and siloed) security appliance or function. This is further empowered by the fact that SD-Security created through NFV de-couples security functions from proprietary hardware, enabling security functions to run in software that can operate on commodity x86 servers and appliances.
In the report “The Impact of Software-Defined Data Centers on Information Security,” Gartner said “In Phase 3, information security itself will evolve to become software-defined, where, like SDN, the management model for security services is abstracted from being managed one box at a time to a policy-based, network-wide view.”
To give a real-world example, imagine an enterprise with 400 branch offices that needs to refresh or increase its branch security. Instead of scheduling new unified threat management (UTM) or next-generation firewall (NGFW) appliances to be shipped to branch sites at the rate 20 per month (an aggressive schedule that factors one installation per business day) and a project schedule of over 1.6 years, an enterprise or managed service provider could deploy SD-Security and ship commodity white box appliances to 100 branches per month and simultaneously activate and test 25 devices per week remotely, for a total project time of 4 months.
Another key aspect of SD-Security using NFV is the ability to leverage service chaining to easily achieve multi-layer security. For example, a service provider could service chain an NGFW and secure web gateway to easily and quickly provide security for direct Internet access. As the traffic flow has been service-chained centrally, each branch office can be upgraded using a centralized orchestration tool.
Additional advantages to creating a managed SD-Security service or enterprise deployment include:
In summary, deploying SD-Security for the branch office involves adding additional (software-based) layers of security for better defense-in-depth while reducing deployment times, operation complexity and capital/operating costs.
Gartner 2020 Magic Quadrant report analyzes the various vendors in the WAN edge market and Versa is positioned as a Leader.