10 f5-mohamed tanana- f5 cloud brokering august 7th draft …tpf2017.tpix.net.tw/speaker/10...
TRANSCRIPT
Each layer in the Internet of Things is susceptible to a variety of attack vectors
DEVICE ATTACKS
NETWORK ATTACKS
APPLICATION ATTACKS
Source: IBM X-Force Research and Development
HQ
Branch
Branch
Branch
Mainframe
Mini Branch
Branch
Branch
Mainframe
HQ HQBranch
Branch
BranchMainframe
• Consumer Grade OTT
SD-WAN
HQ
Branch
Branch
Branch
VAS/SaaS
• Public Cloud• Business Grade OTT
NetworkPrivate Public
HQ
Branch
Branch
Branch
Mainframe
Mini Branch
Branch
Branch
Mainframe
HQ HQBranch
Branch
BranchMainframe
SD-WAN
HQ
Branch
Branch
Branch
VAS/SaaS
• Rise in Brokage
HostingPrivate Public
• Scale
• Security
• Service Continuity
• IPv6
• Policy Control
• Programmability
• Analytics
Monitored Pace Maker
Sugar Level monitor
Heart Rate MonitorStress Monitor
Sleep Monitor
Internet
Audio
On-board controller
Diagnostics
Telematics
Safety sensors
Source (image): Broadcom
(c) 2014 OVCC. All rights reserved.
Hospital
SP
Cloud
MC
Traditional
SD-WAN
HealthDept
Aged Care
Hospital;
Connected Home
VAS/SaaS
SD-WAN
HealthDept
Aged Care
Hospital;
Connected Home
VAS/SaaS
Connectivity
vRouter
vFirewall
vSSO
vAnalytics
PaaS/IaaS
IoT Platform
Cloud Broker
vDDOS
TeleMedicne
Voice Service
PeopleTracking
Assest Tracking
IoT Control
© 2017 F5 Networks 13
Data Traffic Management
• Gi Network Simplification
• Intelligent Traffic Mgmt
• Dynamic Service Chaining
• Policy Enforcement
• TCP Optimization
• Content Filtering
• CG-NAT/DS-Lite/MAP
• NSH
Signaling Traffic Management
• Domain Name System (DNS)
• SIP signaling
• Radius
• DHCP
• Diameter
• IoT signaling
• RestAPI
Virtualization / NFV
• 40G + Virtual Editions
• License Models
• SW=HW features
• Openstack,
• Mirantis
• Cisco
• VMWARE
Security
End-2-End Multi-Layered Dynamic Security• Device Security• Network &
Infrastructure Security
• Application Security• L4-L7 DDoS
Protection• Control plan
security: DNS, Diameter, SIP
F5 and IoT
• High Session Security
• ALG fixup
• Message and Protocol aware
• MQTT
• HTTP
• CoAP
• XMPP