Presentation is loading. Please wait.

Presentation is loading. Please wait.

Customer Insight: CSO's Perspective – What Edge? Microsoft Research EdgeNet, June 2006 Mark Ashida General Manager Windows Enterprise Networking.

Published byMia Rodriguez Modified over 11 years ago

Similar presentations

Presentation on theme: "Customer Insight: CSO's Perspective – What Edge? Microsoft Research EdgeNet, June 2006 Mark Ashida General Manager Windows Enterprise Networking."— Presentation transcript:

1 Customer Insight: CSO's Perspective – What Edge? Microsoft Research EdgeNet, June 2006 Mark Ashida General Manager Windows Enterprise Networking

2 The Evolution of Our Thinking Industry Trends Consolidation of functionality vs. appliances Mobility driving more devices, roaming users, policies Trust boundaries are vague - hard to define & control Network Access Protection (NAP) Defined initial requirements with customers Early & consistent review with Microsoft IT dept Refined functionality with feedback from pilot programs Technology Adoption Program (TAP), Vista Beta Customers

3 What Edge? VLANs, IPsec, internal firewalls, NAC appliances Jericho Forum Logical L3+ vs. L2 Internet Logical CorpNet Restricted Zone Non-domain joined, Non- IPSec Devices Seamless Network Gateways Provisioning Servers New PC X Employee, Partner, Guest PC IPSec Security Internet DHCP, DNS, AAA

4 Thinking Evolution Network Access Protection Abstraction HealthState QuarantineAgent Enforcement 802.1x, IPsec NetworkInfrastructure RADIUS Policy store

5 Thinking Evolution Network Access Protection Abstraction HealthState QuarantineAgent Enforcement 802.1x, IPsec NetworkInfrastructure RADIUS Policy store Assets Control Plane Enforcement/Network

6 Thinking Evolution HealthState QuarantineAgent Enforcement 802.1x, IPsec RADIUS Policy store Control Plane MOMPakMOMPakMOMPak UIDiag MOM NetworkInfrastructure Assets Enforcement/Network Reporting SingleDashboard

7 Thinking Evolution Clients NetworkInfrastructure RADIUS Policy store Network State Database (in MOM) NAPConfigurationHelpDeskSecurityPerformanceProvisioning DHCP WINS DNS VM/TPM

8 What CSOs want. Want it soon – they want PAC not NAC Fined grained admission per resource based upon Fined grained based upon rich information such as: Identity (permanent and temporary) Machine state (health) Application Entry point Time of day, etc. Interoperability with current infrastructure/desktops Multi-vendor solution Federated trust would be nice Manageability

9 What CSOs dont want Dont make it uneconomical for us to deploy Help desk Management Multiple solutions Dont break Provisioning/Logon/SSO Is 802.1x the right enforcement method? Practical deployment issues – beaconing, provisioning, multimac on single port, VMs,

10 Unashamed Vista/LHS Plug Network Diagnostics – why cant you connect and repair NAP Agent – why you cant connect/Help desk MOM Desktop NAP Agent – events/alarms from desktop, expanding to all networking elements on desktop (QoS, etc.) IPsec – giving you virtual logical groups anywhere in the world (240k desktops at MS) with much reduced deployment costs Adaptive NEW IP Stack – much better throughput, up to 80+Mbs on a 100Mbs port vs. 20 previously IP Offload – 10Ge announced now IPv6 – on by default

Download ppt "Customer Insight: CSO's Perspective – What Edge? Microsoft Research EdgeNet, June 2006 Mark Ashida General Manager Windows Enterprise Networking."

Similar presentations

www.itexpo.com October 10-13, 2006 San Diego Convention Center, San Diego California VoIP/SOA Integration Impact on IT Apps, Processes, & Overall Business.

October 10-13, 2006 San Diego Convention Center, San Diego California VoIP/SOA Integration Impact on IT Apps, Processes, & Overall Business.
Defense Communications as a Scarce Resource

Defense Communications as a Scarce Resource
Encrypting Wireless Data with VPN Techniques

Encrypting Wireless Data with VPN Techniques
And many others…. Deliver networking as part of pooled, automated infrastructure Ensure multitenant isolation, scale and performance Expand.

And many others…. Deliver networking as part of pooled, automated infrastructure Ensure multitenant isolation, scale and performance Expand.
Selecting the Right Network Access Protection (NAP) Architecture Infrastructure Planning and Design Published: June 2008 Updated: November 2011.

Selecting the Right Network Access Protection (NAP) Architecture Infrastructure Planning and Design Published: June 2008 Updated: November 2011.
Ljubomir Ivaniš CPU d.o.o.

Ljubomir Ivaniš CPU d.o.o.
Tech·Ed North America /6/2017 9:33 AM

Tech·Ed North America /6/2017 9:33 AM
Network Access Protection & Network Admission Control March 10, 2005 Teerapol Tuanpusa Network Consultant Cisco Systems Thailand Jirat Boomuang Technology.

Network Access Protection & Network Admission Control March 10, 2005 Teerapol Tuanpusa Network Consultant Cisco Systems Thailand Jirat Boomuang Technology.
URP Usage Scenarios for NAS Yoshihiro Ohba August 2001 Toshiba America Research, Inc.

URP Usage Scenarios for NAS Yoshihiro Ohba August 2001 Toshiba America Research, Inc.
IP ADDRESS MANAGEMENT [IPAM]

IP ADDRESS MANAGEMENT [IPAM]
Enabling IPv6 in Corporate Intranet Networks

Enabling IPv6 in Corporate Intranet Networks
5.1 Overview of Network Access Protection What is Network Access Protection NAP Scenarios NAP Enforcement Methods NAP Platform Architecture NAP Architecture.

5.1 Overview of Network Access Protection What is Network Access Protection NAP Scenarios NAP Enforcement Methods NAP Platform Architecture NAP Architecture.
Red Corp Blue Subnet1 Blue Subnet3Blue Subnet2 Blue Subnet5 Blue Subnet4 Red Subnet2 Red Subnet1 Blue Sales Net Red HR Net Multitenant.

Red Corp Blue Subnet1 Blue Subnet3Blue Subnet2 Blue Subnet5 Blue Subnet4 Red Subnet2 Red Subnet1 Blue Sales Net Red HR Net Multitenant.
Scott Roberts Lead Program Manager Microsoft Session Code: WSV320.

Scott Roberts Lead Program Manager Microsoft Session Code: WSV320.
Building on the Foundation of Windows Vista: Introduction to Windows 7: Security and Management Dan Stolts IT Pro Evangelist Microsoft

Building on the Foundation of Windows Vista: Introduction to Windows 7: Security and Management Dan Stolts IT Pro Evangelist Microsoft
Network Security In Education A Balancing Act Doug Klein CTO Vernier Networks, Inc.

Network Security In Education A Balancing Act Doug Klein CTO Vernier Networks, Inc.
1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.

1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.
A Technical Overview of Microsoft Forefront Client Security (FCS) Howard Chow Microsoft MVP.

A Technical Overview of Microsoft Forefront Client Security (FCS) Howard Chow Microsoft MVP.
Unleashing the Power of Ubiquitous Connectivity with IPv6 Sandeep K. Singhal, Ph.D Director of Program Management Windows Networking.

Unleashing the Power of Ubiquitous Connectivity with IPv6 Sandeep K. Singhal, Ph.D Director of Program Management Windows Networking.
Module 3 Windows Server 2008 Branch Office Scenario.

Module 3 Windows Server 2008 Branch Office Scenario.

Similar presentations

Ads by Google