Defense Communications as a Scarce Resource

Slides:

Advertisements

Similar presentations

Deloitte Technology Fast 500 Asia Pacific Winners Accelerating Your Network WACC Technology.

Advertisements

Unified Communications Bill Palmer ADNET Technologies, Inc.

A Flexible Cloud-Computing Platform Focus on solving business problems

Customer Insight: CSO's Perspective – What Edge? Microsoft Research EdgeNet, June 2006 Mark Ashida General Manager Windows Enterprise Networking.

Fred P. Baker CCIE, CCIP(security), CCSA, MCSE+I, MCSE(2000)

| Copyright © 2009 Juniper Networks, Inc. | 1 WX Client Rajoo Nagar PLM, WABU.

Ljubomir Ivaniš CPU d.o.o.

2  Industry trends and challenges  Windows Server 2012: Modern workstyle, enabled  Access from virtually anywhere, any device  Full Windows experience.

2  Industry trends and challenges  Windows Server 2012: Modern workstyle, enabled  Access from virtually anywhere, any device  Full Windows experience.

Mission Critical Messaging Platform Roni Havas Unified Communications Solution Specialist Specialists Technology Unit – EPG - Microsoft Israel

Virtual Private Networks COSC541 Project Jie Qin & Sihua Xu October 11, 2014.

Enabling IPv6 in Corporate Intranet Networks

Cisco Confidential 1 © 2010 Cisco and/or its affiliates. All rights reserved. Next Generation Monitoring in Cisco Security Cloud Leon De Jager and Nitin.

Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)

Unleashing the Power of Ubiquitous Connectivity with IPv6 Sandeep K. Singhal, Ph.D Director of Program Management Windows Networking.

Module 3 Windows Server 2008 Branch Office Scenario.

Network and Server Basics. 6/1/20152 Learning Objectives After viewing this presentation, you will be able to: Understand the benefits of a client/server.

E-business Infrastructure

Dan Stolts IT Pro Evangelist US DPE - North East Microsoft Corporation

At their deskAt their desk In a branchIn a branch On the roadOn the road Protect data & PCsProtect data & PCs Built on Windows Vista foundation Easy.

Grow strong branches with TradeWeb and the Microsoft ® Branch Office Solution.

Goal of The Paper  What exactly is a VPN?  Why do you need a VPN?  what are some of the technologies used in deploying a VPN?  How does a VPN work?

Microsoft Virtual Server 2005 Product Overview Mikael Nyström – TrueSec AB MVP Windows Server – Setup/Deployment Mikael Nyström – TrueSec AB MVP Windows.

Barracuda Networks Confidential1 Barracuda Backup Service Integrated Local & Offsite Data Backup.

Data Centers and IP PBXs LAN Structures Private Clouds IP PBX Architecture IP PBX Hosting.

Network Topology. Cisco 2921 Integrated Services Router Security Embedded hardware-accelerated VPN encryption Secure collaborative communications with.

Kaspersky Open Space Security: Release 2 World-class security solution for your business.

Copyright Microsoft Corp Ramnish Singh IT Advisor Microsoft Corporation Secure Remote Access Challenges, Choices, Best Practices.

CISCO CONFIDENTIAL – DO NOT DUPLICATE OR COPY Protecting the Business Network and Resources with CiscoWorks VMS Security Management Software Girish Patel,

Enabling Secure Always-On Connectivity [Name] Microsoft Corporation.

Virtual Private Network prepared by Rachna Agrawal Lixia Hou.

Week #10 Objectives: Remote Access and Mobile Computing Configure Mobile Computer and Device Settings Configure Remote Desktop and Remote Assistance for.

1 Windows Server Roadmap Update. 2 Agenda Windows Server Market Trends A Look Ahead NAP Collaboration Announcement Windows Server 2003 R2 Product Update.

Clinic Security and Policy Enforcement in Windows Server 2008.

SharePoint Farm On Azure IAAS Prepared By : Prakhar Rastogi Premier Field engineer Microsoft India.

1 Managed Security. 2 Managed Security provides a comprehensive suite of security services to manage and protect your network assets –Managed Firewall.

Technology Overview. Agenda What’s New and Better in Windows Server 2003? Why Upgrade to Windows Server 2003 ?  From Windows NT 4.0  From Windows 2000.

Preparing your Fabric & Apps for Windows Server 2003 End of Support Jeff Woolsey Principal Program Manager.

Remote Access Chapter 4. Learning Objectives Understand implications of IEEE 802.1x and how it is used Understand VPN technology and its uses for securing.

Windows 2003 Overview Lecture 1. Windows Networking Evolution Windows for Workgroups – peer-to-peer networking built into the OS Windows NT – separate.

Module 8 Configuring Mobile Computing and Remote Access in Windows® 7.

VIRTUAL PRIVATE NETWORK By: Tammy Be Khoa Kieu Stephen Tran Michael Tse.

Windows Small Business Server 2003 Setting up and Connecting David Overton Partner Technical Specialist.

Module 11: Implementing ISA Server 2004 Enterprise Edition.

IP Security IP sec IPsec is short for Internet Protocol Security. It was originally created as a part of IPv6, but has been retrofitted into IPv4. It.

1 Evolution and Revolution: Windows 7 and Desktop Virtualization How to Accelerate Migration to Windows 7 Miguel Sian, Sr. Enterprise Solutions Consultant.

EXC303 - Exchange Server 2007 SP1 Overview Martin Coetzer Technical Consultant Microsoft.

Communications Efficiency Sandeep K. Singhal, Ph.D Director, Windows Networking Microsoft Corporation.

Terminal Services Technical Overview Olav Tvedt TVEDT.info Microsoft Speaker Community

Enabling Secure Always-On Connectivity [Name] Microsoft Corporation.

Security fundamentals Topic 10 Securing the network perimeter.

Deploying IPv6, Now Christian Huitema Architect Windows Networking & Communications Microsoft Corporation.

Understand Network Isolation Part 2 LESSON 3.3_B Security Fundamentals.

1 Active Directory Service in Windows 2000 Li Yang SID: November 2000.

IS3220 Information Technology Infrastructure Security

Asif Jinnah Field Desktop Services Enabling a Flexible Workforce, an insider’s view.

Enabling Secure Always-On Connectivity Gustav Kaleta Partner Technology Advisor Microsoft Corporation.

© 2010 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks.

No boundaries with Unified Web Security Solutions Steven Vlastra Sr. Systems Engineer - Benelux.

Clouding with Microsoft Azure

Your Office 365 Journey Prepare, Migrate, and Operate with Barracuda

9/14/2018 2:22 AM THR2026 Set up secure and efficient collaboration for your organization with Office 365 Joe Davies Senior Content Developer Brenda Carter.

Storage Trends: DoITT Enterprise Storage

Virtual Private Network

File Transfer Issues with TCP Acceleration with FileCatalyst

Enabling the hybrid cloud with remote access appliances

Ron Carovano Manager, Business Development F5 Networks

Beyond FTP & hard drives: Accelerating LAN file transfers

Microsoft Data Insights Summit

Microsoft Virtual Academy

Presentation transcript:

Defense Communications as a Scarce Resource Sandeep K. Singhal, Ph.D Director, Windows Networking Microsoft Corporation

Agenda Trends in enterprise networking Windows networking vision and roadmap Windows Vista and Windows Server 2008: Features at a glance Collaboration with MoD Looking into the future Summary

Trends in Enterprise Networking Server consolidation and growth of data centers Increasingly mobile and remote staff Evolving security requirements

Trends in Enterprise Networking Server consolidation and growth of data centers Single networking fabric for web, file, database, and backup Increased network traffic load on servers Increased load on Internet firewalls Increasingly mobile and remote staff Evolving security requirements

Trends in Enterprise Networking Server consolidation and growth of data centers Single networking fabric for web, file, database, and backup Increased network traffic load on servers Increased load on Internet firewalls Increasingly mobile and remote staff Remote access solutions stretch experience, support, and management Greater reliance on WAN (over Internet) links from branch offices Multiple client access technologies and devices Evolving security requirements

Trends in Enterprise Networking Server consolidation and growth of data centers Single networking fabric for web, file, database, and backup Increased network traffic load on servers Increased load on Internet firewalls Increasingly mobile and remote staff Remote access solutions stretch experience, support, and management Greater reliance on WAN (over Internet) links from branch offices Multiple client access technologies and devices Evolving security requirements Enterprise edge disappearing with mobile workforce & devices Diverse user population (contractors, vendors) require securing resources in addition to networks Federation and regulatory needs require policy-based isolation domains

Windows Networking Vision: Secure Seamless Network 3/25/2017 1:29 PM Windows Networking Vision: Secure Seamless Network Data Center IPsec Isolation X X Main Office Key points: 1. IPv6 is a key building block for Seamless Network Vision 2. End to end connectivity enables access to my data, my settings, my experience 3. Using Internet will require address scalability IPv6 requires. Branch Office Un-trusted PCs (e.g., guest) ©2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

Elements of a Secure, Seamless Network Policy-based secure access to resources from anywhere End to end connectivity over the Internet using IPv6 All communications authenticated using end to end IPsec Connection-by-connection Access controlled by identity Trust boundaries defined by policy instead of topology Traffic management at the edges Network access protection (NAP) systems keeps systems healthy and protected from unhealthy systems Existing applications just work

Windows Networking Roadmap Win Server 2003/ Win XP End host security Integrated Windows Firewall Win Server 2008/ Win Vista Intranet security domains Server and Domain Isolation (S&DI) Network Access Protection (NAP) IPv6 native and transition solutions for enterprises Future: Secure seamless networks Internet security domains Easy to deploy Easy to manage

Windows Vista and Windows Server 2008: Networking Features At A Glance Trend Problem Vista/WS08 Impact Server consolidation and growth of data centers Slow data replication between data centers despite high speed connectivity Compound TCP enables data transfers at multi-gigabit speeds 200% increase in replication speed between Microsoft Redmond and Bay Area data centers Increasing network load limiting server scalability Built-in hardware offload and CPU load balancing for network traffic 50% increase in web requests/sec on same hardware (as measured by webbench)

Windows Vista and Windows Server 2008: Networking Features At A Glance Trend Problem Vista/WS08 Impact Remote and Mobile workforce High latency limits network performance in branch offices Automatic tuning to optimize for WAN links File copy speed from US to Microsoft Australia increased by 1000% DCE* testing showed 200% improvement over 2Mbps satellite links Network losses limit throughput on WLAN, WWAN Loss detection and automatic recovery Loss recovery time reduced by 40% over satellite links in DCE testing Mobile PCs expose enterprise networks to viruses as they roam between networks Network access protection (NAP) solutions IT security compliance increased by 80% after deploying NAP on Microsoft network *Defense Communications Efficiency: Joint project between Microsoft and UK MoD

Windows Vista and Windows Server 2008: Networking Features At A Glance Trend Problem Vista/WS08 Impact Remote and Mobile workforce Overlapping private addresses make remote management hard Full IPv6 support enabled end to end connectivity IPv6 enabled throughout Microsoft by deploying only few new servers Ad-hoc collaboration in war zones, conferences hard in absence of infrastructure setup Windows Meeting Space allows sharing presentations, files, notes Windows Meeting Space widely used within Microsoft for ad-hoc collaboration Hard to deploy quality of service solutions to manage expensive WAN resources Policy based enterprise QoS (eQoS) eQoS deployed on Microsoft WAN links with existing router hardware to prefer certain app traffic

Windows Vista and Windows Server 2008: Networking Features At A Glance Trend Problem Vista/WS08 Impact Security Mobility and de-perimeterization increasing threat surface Server and domain isolation (SDI) solutions enable policy based security solutions Universidade de Vila Velha (UVV) deployed SDI to increase security and simplify management Security policy management hard to deploy and manage -Group policy based SDI deployment solution -IPsec management integrated with Windows Firewall City of Sopporo, Japan deployed SDI with Nil cost for 12000 users across 870 different departments

Case Study: Defense Communication Efficiency Players UK MoD Microsoft Started 2004 Goal Improving efficiency on satellite networks Approach Phased engagement consisting of problem definition, joint solution development, joint testing, feedback and refinement Outcome Windows Server 08/Vista autotuning, Compound TCP, and loss recovery improvements Benefits to MoD GBP 500M per year spending on satellite links – even 10% efficiency improvement is significant savings Benefits to Microsoft Microsoft: Validation of algorithms on Large Network Emulator as well as on real satellite network as part of JWID 05

Case Study: Defense Communication Efficiency Players UK MoD Microsoft Started 2004 Goal Improving efficiency on satellite networks Approach Phased engagement consisting of problem definition, joint solution development, joint testing, feedback and refinement Outcome Windows Server 08/Vista autotuning, Compound TCP, and loss recovery improvements Benefits to MoD GBP 500M per year spending on satellite links – even 10% efficiency improvement is significant savings Benefits to Microsoft Microsoft: Validation of algorithms on Large Network Emulator as well as on real satellite network as part of JWID 05 Engagement continuing beyond Windows Server 2008/Windows Vista Several areas identified such as IPv6, compression, QoS Framework for managing IP: Facilitates free flow of ideas and testing results

Looking into the Future Remote work Easy and reliable network access from anywhere Better manageability of mobile PCs Extend Intranet NAP and isolation to remote worker Branch offices Further efficiency in fetching data over WAN links Preserve end to end security solutions Security domains Easier deployment Easier management Easier support

Summary Windows Server 08 and Windows Vista Provide substantial advances that address key issues faced by evolving enterprise networks Influenced by partnership with MoD Address business issues impacting MoD Plan and prepare for secure seamless networks Trends in enterprise networking demand such networks IPv6, IPsec and NAP are key building blocks for these networks Windows Server 2008 and Windows Vista enable enterprises to deploy these networks

Questions Sandeep K. Singhal, Ph.D Director, Windows Networking Sandeep.Singhal@microsoft.com +1 (425) 706-6570 Questions

Backup

Windows Networking Vision: Secure Seamless Networks 3/25/2017 1:29 PM Windows Networking Vision: Secure Seamless Networks Internet IS your network Applications just work All communications authenticated Connection-by-connection Access controlled by identity Trust boundaries defined by policy instead of topology Traffic management at the edges Network Immune Systems Key points: 1. IPv6 is a key building block for Seamless Network Vision 2. End to end connectivity enables access to my data, my settings, my experience 3. Using Internet will require address scalability IPv6 requires. IPsec isolation Lab Guest Enterprise Network ©2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.