Connect with us

Featured

Botnets aim at World Cup

KEIRON SHEPHERD, Senior Security Specialist, F5 Networks, discusses why advanced application security is a match for today’s sophisticated cyber-attacks.

Published

on

Hackers across EMEA are warming up for the FIFA World Cup. As all eyes turn to the pitch, they’ll be booting up the botnets ready to take on the excitable businesses who are increasingly giving away the ball on app protection and data security.

The EU General Data Protection Regulation (GDPR) – the cyberspace equivalent of the omnipresent Video Assisted Referee – will also be making its presence felt this Summer. The penalty for a breach is 2% to 4% of global turnover or €10 to 20 million, whichever is the bigger hit. The GDPR supervisory body can also flash the proverbial red card by immediately suspending all data processing if the risk to an EU citizen’s privacy is deemed unacceptable.

According to the Ponemon Institute’s 12th annual Cost of Data Breach study, the global average cost of a data breach currently stands at $3.62 million. The ongoing reputational costs are harder to quantify, so it’s not worth being sent off over compliance complacency. Like any competition, every company must now train hard and be ready to take a stand against cybercrime with the goal of protecting data.

Bots take to the field

Football is a game of two halves, and so too is the Internet. Recent research by F5 Labs suggests that half of the Internet’s traffic comes from bots, 30% of which are malicious. Most bots search for vulnerabilities, scrape websites or participate in DDoS attacks. They can speed up password-guessing to break into online accounts, mine cryptocurrency such as Bitcoin, and attack anything requiring a large network of computers.

Most botnet based attacks are designed for disruption and exploitation. Typical attacks include the creation of Spam email relays and Denial of Service (DoS) activities designed to prevent access to websites. Another concern flagged by F5 Labs is the inexorable rise of Thingbots: botnets which are built exclusively from IoT devices and are fast becoming the cyberweapon delivery system of choice for today’s attackers due to their poor security and ease of compromise.

Year over year (2016-2017), F5 Labs found that Telnet brute force attacks against IoT devices rose 249%. Moving ahead, IoT’s destructive arsenal is set to explode in scale. Gartner recently reported that there are 8.4 billion IoT devices in use and the number is expected to grow to 20.4 billion by 2020. Botnet risks rise significantly when moving to multi-cloud environments as many businesses are now doing out of operational necessity. In particular, many cloud consumers assume that security is inherently better in the cloud and do not realise the same vulnerabilities that plagued them in their datacentre are just as present in the cloud.

Tackling advanced app security

A threat defence is only effective if it safeguards sensitive data. Visibility is fundamental to understanding normal application behaviour, detecting anomalous traffic and being able to report data breaches to the relevant data protection authorities. Visibility means having insight into all traffic that passes between users and applications. It is essential that security systems understand the application, the protocols and can see into encrypted traffic. Context is equally important and the key to understanding the characteristics of an application’s environment, including behavioural insights that enable rapid adaptation where required. Incisive visibility and context are crucial to informing decision-makers, which means that robust security controls can be implemented to protect your apps and data.One of the best first lines of defence in the game is a web application firewall (WAF). The 2018 State of Application Delivery (SOAD) report revealed that 98% of F5’s surveyed customers protect at least some part of their application portfolio with a WAF. More than 40% protect half or more of their apps.

However, not all WAFs are capable of safeguarding against the full scope of today’s hyperactive threat spectrum. This is where Advanced WAF (AWAF) solutions are more effective. Capable of supporting a variety of consumption and licensing models, including a per-app basis, as well as perpetual, subscription, and utility billing options, AWAFs provide a new level of flexibility in both the cloud and the data centre. Important benefits include facilitating better collaboration between SecOps, DevOps, and NetOps teams to deploy app protection services in any environment.

Crucially, AWAFs provide powerful defensive capabilities against malicious bots going beyond signatures and reputation to block evolving automated attacks, prevent account takeovers (with encryption at the application layer), and protect apps from DoS attacks (using machine learning and behavioural analytics for high accuracy). AWAFs also provide comprehensive protection from mobile attacks through an Anti-Bot Mobile SDK rich security services, including application whitelisting (i.e. index of approved software), secure cookie validation, and advanced app hardening.

Blowing the whistle on cybercrime

Organisations need to prove they are responsible data custodians. Security and transparency are now essential attributes for customer service. It’s time to blow the whistle on cybercrime.

Investing in integrated security solutions protects what matters: your applications. The net result is that data are protected, the business upholds compliance standards and your customers remain enthusiastic, loyal fans – a world class winning combination.

Featured

Cisco unveils ‘Internet for the future’ silicon breakthrough

Cisco One is a new silicon architecture that can be used in any form factor, while Cisco 8000 will reduce cost of building and operating mass scale networks

Published

on

Cisco today unveiled a series of innovations it says will underpin “the Internet for the Future”. It launched Cisco Silicon One, a new networking silicon architecture, and the Cisco 8000 Series, the world’s most powerful carrier class routers built on the new silicon.

Chuck Robbins, chairman and CEO of Cisco, said its technology strategy was to build a new internet designed to push digital innovation beyond the performance, economic and power consumption limitations of current infrastructure. It would be a multi-year approach that will define the Internet for decades to come.

“Innovation requires focused investment, the right team and a culture that values imagination,” said Robbins. “We are dedicated to transforming the industry to build a new internet for the 5G era. Our latest solutions in silicon, optics and software represent the continued innovation we’re driving that helps our customers stay ahead of the curve and create new, ground-breaking experiences for their customers and end users for decades to come.”

Building Blocks

Cisco said in its announcement: “Over the next decade, digital experiences will be created with advanced technologies — virtual and augmented reality, 16K streaming, AI, 5G, 10G, quantum computing, adaptive and predictive cybersecurity, intelligent IOT, and others not yet invented. These future generations of applications will drive complexity beyond the capabilities current internet infrastructure can viably support.

“For the past five years, Cisco has driven a technology strategy that is building the internet our customers will need for the future success of their business in an advanced digital world. Aimed at solving the toughest problems that will emerge as digital transformation taxes current infrastructure to its breaking point, this strategy will lead to the next-generation of internet infrastructure that combines Cisco’s new silicon architecture with its next-generation of optics. 

“Cisco’s strategy will change the economics behind how the internet will be built to support the demands of future, digital applications and will enable customers to operate their businesses with simpler, more cost-effective networks.”

Cisco says its strategy is based on development and investments in three key technology areas: silicon, optics and software.

David Goeckeler, executive vice president and general manager of the Networking and Security Business at Cisco, elaborated: “Pushing the boundaries of innovation to the next level — far beyond what we experience today — is critical for the future and we believe silicon, optics and software are the technology levers that will deliver this outcome.

“Cisco’s technology strategy is not about the next-generation of a single product area. We have spent the past several years investing in whole categories of independent technologies that we believe will converge in the future — and ultimately will allow us to solve the hardest problems on the verge of eroding the advancement of digital innovation. This strategy is delivering the most ambitious development project the company has ever achieved.”

Visit the next page to read about the dramatic performance improvements in the new products.

Previous Page1 of 2

Continue Reading

Featured

Building the Internet for the Future begins now

By JONATHAN DAVIDSON, SVP and general manager of Cisco’s Service Provider Business

Published

on

Jonathan Davidson presents at the Cisco #InternetForTheFuture event in San Francisco this week

“We do not remember days; we remember moments.” Those words from Cesare Pavese have been one of my personal favorites. Interestingly, we remember thesesignificant, or “flashbulb” moments in our lives in vivid detail. We rememberexactly where we were, whom we were with, what we felt, or even what we werewearing. One of my flashbulb moments was 20 years ago in 1999 when Brandi Chastain made the winning penalty shot during the Women’s World Cup inspectacular fashion. At the time, I was coaching my oldest daughter’s soccer team.That victory felt like the start of something big. It had this wonderful feeling thatwomen’s soccer was going to change for the next generation.

I believe we are having one of those “flashbulb” moments right now in the networking industry. Years from now, we will look back and remember this moment in time. Because today, Cisco revealed breakthrough innovations sosignificant and expansive, they will change the economics of the Internet forthe next generation.

Significant technological innovations have defined human history. The steamengine replaced muscle with machinery. With the telegraph, communications exceeded the speed of animals. And, with the Internet, information wasdigitized, and global communities were created.

IP infrastructure connects our world. The Internet has profoundly changed the waywe work, live, play, and learn – anything, anywhere, anytime. The results are astounding. Our ability to connect and collaborate has caused society to evolve faster than ever before. We have made more progress in mitigating wars, preventing famine, and curing disease in the last 35 years than in the previous35,000.

Today is the moment when we enter a new phase of the Internet. Technologiessuch as 5G, IoT, 3D printing, and advanced analytics are connecting more, increasing participation, and pushing digitization further. And as a result, industries like mining becomes safer, agriculture becomes more efficient, transportation becomes autonomous, and healthcare becomes wellness-driven, not crises-driven. The possibilities are endless. And service providers will be the catalysts for changing economies, countries, and the world because at the very heart of this next transformation is the network infrastructure that makes it all possible.

The route to success for service providers is not straightforward or simple. There are fundamental business challenges. Networks, which are already huge, must become even more massive. And to succeed, service providers need to transform not only their infrastructure but their operations and their business models as well.

Our current network economics will begin to break as we evolve to operate at massive scale. The physics behind our past achievements are already showing signs of slowing down, while traffic growth continues to accelerate. So far, performance increases have helped to reduce the cost of traffic at about the same rate that traffic has increased. $1 in CapEx today does eleven times the work that it did just a few years ago. However, continuing with the status quo will likely lead to a significant increase in CapEx unless we reinvent the rules.

The cost of operations must be reduced too. Today, many operators spend almost $5 in OpEx for each $1 of CapEx. With current network management technology, that situation is likely to get worse, as the larger a network becomes, the more inefficient it is to operate unless we reinvent the rules.

With innovation from a technology pioneer that spans multiple dimensions across silicon, optics, software, and systems to create entirely new network architectures, this is that “flashbulb moment” when Cisco is redefining the economics of the Internet.

Silicon

Redefining the economics of the Internet has to begin at the foundation. The very “DNA” of the Internet itself. The engine to a car. Silicon.

Moore’s law is stalling. While the rest of the industry slows down from the physics of traditional approaches, we have unlocked new dimensions of innovation. By rethinking silicon design entirely, we can deliver industry-leading performance today and create a “fast lane” to the future. We are excited to introduce our groundbreaking programmable silicon architecture, Cisco Silicon One. The first member of this new family, Cisco Silicon One Q100, delivers over twice the network capacity and twice the power efficiency over any other silicon. It is the first routing silicon to break through the 10Tbps barrier without compromising carrier-class capabilities (e.g., feature richness, large buffers, advanced programmability). And Cisco Silicon One is available right now; we won’t make you wait for it.

The innovations in Cisco Silicon One bring significant value to lowering operational costs as well. In the past, multiple types of silicon have been used across a network and even within a single device. Feature development was inconsistent. Telemetry varied dramatically.

Operators had to spend too much time and effort coordinating and testing parity of new features across the network. Now, a single silicon architecture can serve different market segments, different functions, and various form factors for a unified experience that dramatically reduces costs of operations and time-to-value for new services.

Optics

Optic costs matter. At lower interface speeds, optics were roughly 10% of the total solution cost, and systems accounted for the remaining 90%. At 400G and beyond, that equation flips. Optics become the dominant part of the total spend.This dynamic needs to change, a long-term strategy is required to make it easier to deploy both short-reach and long-haul optics solutions.

Cisco is investing in technologies like silicon photonics to accelerate the adoption of 400G and prepare for the future beyond 400G. Our recent acquisition of Luxtera brings a highly automated wafer-scale manufacturing process to Cisco that improves production volumes and quality.

Software

If silicon is the engine of a car, the software is the steering and suspension to enable phenomenal handling. Even the world’s most advanced silicon can be wasted without the right software to steer correctly and operate smoothly. Imagine the ride at 400 km/h without proper steering and suspension. Any unfortunate bump or turn could be disastrous.

To redefine the economics of operating a network, the Internet of the future needs software that recognizes operations is just as important as functionality. Cisco IOSXR7, the new release of our industry-leading Networking Operating System (NOS), has been overhauled to prioritize operations – with simplicity and automation. It has been simplified to reduce required resources, install procedures, and deployment efforts (e.g. zero-touch).

Most notably, XR7 has been completely modernized. XR7 is the first-of-its-kindcloud-enhanced NOS. XR7 can leverage new cloud-delivered SaaS deployment models from Cisco Crosswork Cloud to enhance operations. Now, operations team scan optionally consume insights and analytics as a service for agile, proactive management without the risks and resources of traditional models.

Systems

Now, we get to the “car” itself. With new silicon and new software, we can build new systems that have the performance, efficiency, and operational improvements to meet the next wave of traffic demand. Today, we introduce theCisco 8000 series routers, new systems optimized for high-density 100GbE and400GbE, including:

  • 2 fixed platforms – providing 10.8Tb/s of network bandwidth starting at I RU
  • 3 modular form-factor platforms – 8 slots, 12 slots and 18 slots delivering upto 115 Tbps, 172 Tbps and 260 Tbps respectively

These are systems designed without compromise and with a very bright future.No oversubscription. Full fabric redundancy. Power efficiency down to as little as4 Watts/Gb. That is 1/4 to 1/5th the amount of power that our nearest competitor uses. And a “clean sheet” design allows us to grow into 1.6 TbE interfaces and beyond.

Wait, there’s more. The most distinctive characteristic of the Cisco 8000 relates to trustworthiness. Networks are critical infrastructure as they connect industries,finance, utilities, and governments and service providers must maintain the integrity of their infrastructure. The chain of trustworthiness begins by knowing whether or not the hardware and software are authentic. The Cisco 8000 Series are equipped with tamper-proof hardware that serves as the root of trust to prevent any modification of the hardware or software. Next, the NOS, XR7, works with Cisco Crosswork Cloud to provide real-time visibility and control to deliver the trustworthy networks that the Internet requires.

Architectures

To grow to the size and capabilities that the next generation will demand, the Internet requires fundamental changes. We reinvented from the ground up, the DNA, the performance curve, operations, trust, and even the rules. We reinvented what Cisco does best.

And these reinventions will allow us to build the future on new architectures –converged, cloud-enhanced, and trustworthy. We that work in the networking industry will hopefully remember this moment years from now. I hope it is just as vivid a memory as Brandi Chastain’s winning goal 20 years ago.

Continue Reading

Trending

Copyright © 2019 World Wide Worx