Security & Mobility Now
Security is top-of-mind everywhere, especially right here where Juniper experts share their thoughts on the latest security breakthroughs and product advancements
OliverT

Security in the Virtualized Data Center

by Juniper Employee ‎12-20-2010 09:36 AM - edited ‎02-08-2011 05:02 PM

I’d like to pick up where Doug left off on the subject of Juniper’s recent acquisition of Altor Networks. The topic of how to secure a highly virtualized data center has certainly been front and center for us and our customers for much of the past year. While the future is often difficult to predict, several trends have been relatively clear:

 

  • The scale requirements for protecting the data center perimeter continue to grow as the aggregate bandwidth connecting data centers to the Internet grows – this growth in bandwidth is driven by factors such as consolidation (e.g. from 7 data centers down to 3), increasing bandwidth requirements of applications (richer media apps) and increased VDI deployments (logically placing employee desktops inside the data center).
  • As I’ve noted previously, the sophistication of threats is driving up processing power and memory for each unit of bandwidth requiring security services.
  • The quantity of “east-west” traffic (machine-to-machine traffic for which neither end of the connection is outside the data center) has increased as application architectures become more componentized (e.g., web services, SOA).
  • Notwithstanding the rapid adoption of virtualization, not all workloads in the data center will be virtualized for the foreseeable future.

So, what do these trends portend?

 

  1. Solutions which depend entirely on physical appliances or virtual firewalls will invariably fall short in securing all aspects of the data center of the future.
  2. The scale challenges will be dealt with in three distinct ways: (1) by scaling the capacity of individual appliances (Moore’s Law helps here), (2) by banding multiple appliances into a single logical collection and (3) by delivering a significant amount of security services for east-west traffic utilizing general purpose compute power on the hosts which generate the traffic.
  3. Orchestrating and managing the collection of physical and virtual security appliances as one logical security “substrate” will be the key to delivering a more secure data center with low TCO.

What excites me about having highly scalable SRX appliances and highly distributed Altor firewalls in the same portfolio is that Juniper can now provide the optimal mix of real and virtual appliances to meet the needs of a broad range of customers. Stitching these assets into a seamless offering is the task we have set for ourselves in 2011.

Comments
by kamran shakil(anon) on ‎05-20-2011 07:00 PM

GOOD ONE . bookmarked it !

 

kamran shakil

ccie sec #28832

Post a Comment
Be sure to enter a unique name. You can't reuse a name that's already in use.
Be sure to enter a unique email address. You can't reuse an email address that's already in use.
Type the characters you see in the picture above.Type the words you hear.
About Security & Mobility Now

Discussing a wide range of topics impacting enterprises and
data center security.

Subscribe RSS Icon

Our Bloggers

Kyle Adams
Senior Software Engineer

Profile | Subscribe

Ritesh Agrawal
Director
Software Engineering

Profile | Subscribe

Erin K. Banks
Senior Technical Marketing Manager

Profile | Subscribe

Ajay Bharadwaj
Product Manager

Profile | Subscribe

Paul Bristow
Senior Director
Product Management

Profile | Subscribe

Michael Callahan
Vice President
Product Marketing

Profile | Subscribe

Henrik Davidsson
Director
Security Sales

Profile | Subscribe

Scott Emo
Director
Product Marketing

Profile | Subscribe

Mora Gozani
Senior Manager
Product Marketing

Profile | Subscribe

Steve Hanna
Distinguished Engineer

Profile | Subscribe

Ashur Kanoon
Sr. Manager
Technical Marketing

Profile | Subscribe

Seema Kathuria
Manager
Product Marketing

Profile | Subscribe

Kevin Kennedy
Senior Director
Product Management

Profile | Subscribe

Dave Killion
Software Engineer

Profile | Subscribe

Rebecca Lawson
Senior Director
Product Marketing

Profile | Subscribe

Rajoo Nagar
Senior Manager
Product Marketing

Profile | Subscribe

Erin O'Malley
Manager
Product Marketing

Profile | Subscribe

Galina Pildush
Strategy & Planning
Architect

Profile | Subscribe

Edward Roberts
Director
Product Marketing

Profile | Subscribe

Bill Shelton
Director Field Sales

Profile | Subscribe

Ashutosh Thakur
Product Line Manager

Profile | Subscribe

Troy Vennon
Software Engineer

Profile | Subscribe

Brad Woodberg
Product Manager

Profile | Subscribe

Labels
Copyright© 1999-2013 Juniper Networks, Inc. All rights reserved.