History of Networking: DDoS

Another execellent recording by the folks at the Network Collective. Roland Dobbins on the history of Distributed Denial of Service attacks!

Aporeto’s Cloud Security Product Decouples Security from the Network

The security-as-a-service is based on a zero-trust approach.

IDG Contributor Network: 5 ways to shape Ajit Pai’s proposal to actually benefit broadband users via net neutrality

The FCC’s December 14th vote on repealing net neutrality will have far reaching implications for our future. It is important in that case to not only read articles and watch the videos, but to actually read Ajit Pai’s proposal in its entirety. This Harvard grad and former Verizon lawyer chooses words carefully, leaning on legal terminology rather than technical verbiage to produce a conclusion that does not stem from his premise. It is not clear what the intent of this proposal is, however, it clearly does not benefit broadband users.To read this article in full, please click here

IDG Contributor Network: Making digitalization work

 What is digitalization? According to Gartner, “digitalization is the use of digital technologies to change a business model and provide new revenue and value-producing opportunities. It is the process of moving to a digital business.” This includes evolving existing products more quickly, and being more agile in bringing new products to market.At a greater level of detail, digitalization means that the enterprise implements its critical business processes in software. These include: Marketing to prospective customers Engaging with existing customers Managing the relationships with suppliers Managing the entire production to fulfillment process Managing the relationships with partners Managing the relationships with employees and contractors It is also clear from the Gartner research that CEO’s expect digitalization to drive growth in sales and profits and that they expect their technology management teams (IT) and technology leadership teams (the CIO and his staff) to successfully lead and implement the technology initiatives that will deliver these benefits from digitalization.To read this article in full, please click here

IDG Contributor Network: Making digitalization work

 What is digitalization? According to Gartner, “digitalization is the use of digital technologies to change a business model and provide new revenue and value-producing opportunities. It is the process of moving to a digital business.” This includes evolving existing products more quickly, and being more agile in bringing new products to market.At a greater level of detail, digitalization means that the enterprise implements its critical business processes in software. These include: Marketing to prospective customers Engaging with existing customers Managing the relationships with suppliers Managing the entire production to fulfillment process Managing the relationships with partners Managing the relationships with employees and contractors It is also clear from the Gartner research that CEO’s expect digitalization to drive growth in sales and profits and that they expect their technology management teams (IT) and technology leadership teams (the CIO and his staff) to successfully lead and implement the technology initiatives that will deliver these benefits from digitalization.To read this article in full, please click here

Worth Reading: DNS performance metrics

Most of these benchmarks focus on denial-of-service resistance: What is the maximum query load that can be served? This is indeed a metric that is good to know. Less discussed, however, is performance under normal conditions. Every time a nameserver is slow, a user somewhere is waiting. And not only is a user waiting, some government agencies, one of which is the UK’s OFCOM, take a very strong interest in DNS latencies. In addition, in contractual relations, there is frequently the desire to specify guaranteed performance levels. —Bert Hubert @ APNIC

The Migration of Political Internet Shutdowns

The Future Is Limitless

In September 2017, the Internet Society celebrated its 25th anniversary in Los Angeles. Here are the stories of some who are using the Internet to shape tomorrow. 

“I made my first computer program at 18 and it felt like I had a new superpower.”

To get to the buzzing banquet hall where Akah Harvey N stands, filled with Internet pioneers, visionaries, and trailblazers, requires navigating the University of California Los Angeles (UCLA) Athletics Hall of Fame. Glass cases featuring old sequined spirit uniforms and uniforms worn by Jackie Robinson (the first athlete to letter in four sports at the university) line the way to the room where people from around the world are seated at tables, excitedly chatting away.

Harvey N is at the front of the room, speaking into the microphone like he belongs there. And that’s because he does. The 25-year-old from Cameroon is in Los Angeles, California to be recognized as one of the Internet Society’s 25 Under 25 – young people who are using the Internet as a force for good. Harvey N and his team of engineers developed Traveler, an app that can predict and detect motor vehicle accidents. Along with providing Continue reading

IDG Contributor Network: Warning: security vulnerabilities found in SD-WAN appliances

In a rush to capitalize on the SD-WAN market opportunity, some SD-WAN vendors seem to be playing fast and loose with their appliances.At a recent customer site of ours, Nirvik Nandy, CISO of SD-WAN Experts and CEO of Red Lantern, a security and compliance consultancy, and I collaborated on a security analysis of SD-WAN architectures. We conducted penetration testing of several SD-WAN solutions, looking atthe appliances and cloud architectures. Details of how we tested and vendor results are necessarily confidential. However, I can share with you some of our overall findings about appliances – we’ll get to the cloud at a later date.SD-WAN security: what it really means First, some context: SD-WAN vendors speak about their architectures as being secure and that’s true to an extent. All SD-WAN solutions secure traffic in transit. But there’s more to network security than protecting data against eavesdropping and wiretapping, which is why companies deploy next-generation firewall (NGFW), intrusion prevention systems (IPS), and more.  SD-WAN and security vendors have been addressing this need, integrating the functionality of one another into solutions that provide networking and security.To read this article in full, please click here

IDG Contributor Network: Warning: security vulnerabilities found in SD-WAN appliances

In a rush to capitalize on the SD-WAN market opportunity, some SD-WAN vendors seem to be playing fast and loose with their appliances.At a recent customer site of ours, Nirvik Nandy, CISO of SD-WAN Experts and CEO of Red Lantern, a security and compliance consultancy, and I collaborated on a security analysis of SD-WAN architectures. We conducted penetration testing of several SD-WAN solutions, looking atthe appliances and cloud architectures. Details of how we tested and vendor results are necessarily confidential. However, I can share with you some of our overall findings about appliances – we’ll get to the cloud at a later date.SD-WAN security: what it really means First, some context: SD-WAN vendors speak about their architectures as being secure and that’s true to an extent. All SD-WAN solutions secure traffic in transit. But there’s more to network security than protecting data against eavesdropping and wiretapping, which is why companies deploy next-generation firewall (NGFW), intrusion prevention systems (IPS), and more.  SD-WAN and security vendors have been addressing this need, integrating the functionality of one another into solutions that provide networking and security.To read this article in full, please click here

HPE offers a SaaS-based tool for hybrid cloud management

While cloud computing holds out the promise of operational efficiency and cost optimization, most big companies will be operating hybrid computing environments for the foreseeable future. As a result, cloud technology for many companies adds yet another layer on top of an already complex computing infrastructure.Seeing an opportunity to help IT departments work with developers and lines of business to optimize their hybrid computing environments, HPE is offering what it calls the first SaaS-based multicloud management application for on-premises and public clouds. Dubbed OneSphere, the software is being unveiled at the company's Discover Conference in Madrid today.To read this article in full, please click here

VMware Cloud on AWS Covers US, Adds Live Migration and Disaster Recovery

Planned global expansion is on track for 2018.

HPE Debuts OneSphere Hybrid Cloud Management Tool

The SaaS works across virtual machines, containerized workloads, and bare metal applications.

Comparing Dedicated Cloud Connectivity Options

IDG Contributor Network: The case for securing the SD-WAN

With everything from massive data breaches at global organizations to explosive ransomware attacks that infect hundreds of thousands of users within days, it’s well established that enterprises these days are dealing with more threats than ever before – all of which are increasing in abundance, frequency and complexity.Among other things, this rapidly evolving threat environment can be attributed to new and expanding threat vectors that have opened the door for external threats to reach critical business assets via non-corporate entities, whether through a consumer device, poorly secured partner network or branch office. The Internet of Things (IoT) and guest tenant services, for example, force a unique method of segmenting the traffic service/workloads and introduce a level of operational complexity.To read this article in full, please click here

IDG Contributor Network: The case for securing the SD-WAN

With everything from massive data breaches at global organizations to explosive ransomware attacks that infect hundreds of thousands of users within days, it’s well established that enterprises these days are dealing with more threats than ever before – all of which are increasing in abundance, frequency and complexity.Among other things, this rapidly evolving threat environment can be attributed to new and expanding threat vectors that have opened the door for external threats to reach critical business assets via non-corporate entities, whether through a consumer device, poorly secured partner network or branch office. The Internet of Things (IoT) and guest tenant services, for example, force a unique method of segmenting the traffic service/workloads and introduce a level of operational complexity.To read this article in full, please click here

BrandPost: Network Outages? Unacceptable. How to Ensure Availability

The rise of cloud applications has been well documented. The cloud era kicked off with a handful of SaaS applications, such as ERP, CRM and HR systems. Today, businesses are buying almost everything cloud-related — from compute services, contact center software, unified communications to anything else you can think of. These apps and services may look somewhat unrelated, but they all have one thing in common: They are highly dependent on the network to perform properly.Consider a consumer example. We pay Netflix a certain amount of money to watch a movie, but we are entirely dependent on our network connections to enjoy the experience. It doesn’t matter how much more money we pay Netflix; if our network connection performs poorly or is unavailable, the viewing experience suffers.To read this article in full, please click here

BGP Attribute : AIGP-BGP Accumulative IGP

Security or Convenience, That’s the Question

One of my readers was so delighted that something finally happened after I wrote about a NX-OS bug that he sent me a pointer to another one that has been pending for a long while, and is now officially terminated as FAD (Functions-as-Designed… even documented in the Further Problem Description).

Here’s what he wrote (slightly reworded)…

Switching Techniques: Root Guard Vs BPDU Guard