Presentation is loading. Please wait.

Presentation is loading. Please wait.

SDN/NFV DDoS Requirements "The Mobile Use Case – 5G" Bipin Mistry, VP Product Management © 2015 Corero www.corero.com.

Published byMarylou Wilkinson Modified over 8 years ago

Similar presentations

Presentation on theme: "SDN/NFV DDoS Requirements "The Mobile Use Case – 5G" Bipin Mistry, VP Product Management © 2015 Corero www.corero.com."— Presentation transcript:

1 SDN/NFV DDoS Requirements "The Mobile Use Case – 5G" Bipin Mistry, VP Product Management © 2015 Corero www.corero.com

2 The Shift from Transport Centric to Service Centric Architectures  Yesterday’s SP Network – Access Access Edge, Pre-Agg, Aggregation, Transport Core, Centralized Services/services complex Not open Security - maybe as an overlay, some level of encryption - DDoS – either RTBH, scrubbed or passed on downstream © 2015 Corero www.corero.com 2

3 Example: 4G/LTE Mobile Network 3 User plane Control+user plane Control plane Trusted Untrusted DDoS Mitigation IoT Public Wifi

4 Threat mitigation 3GPP addresses security of interfaces mainly  Security specified for radio interface, backhaul link, core interfaces  protects traffic against interception, modification, replay  Subscriber authentication  protects against theft of service, impersonation of other subscribers, fraud  There’s a new trend in 3GPP to cover also platform security – by  standardizing requirements (solutions are proprietary)  This leaves a lot to address otherwise:  Flooding, crashing or compromising nodes by exploiting implementation flaws,  compromising network elements via weak O&M procedures, …  IP network security, network element security  Out of scope here: physical site protection, organizational security measures (e.g. malicious insider threat)

5 The Shift from Transport Centric to Service Centric Architectures  Tomorrow’s SP Network Architecture: Service/subscriber centric Virtualized - At the Network and Application level Programmable Server Centric - Not appliance centric - White box solutions Elastic Intelligent – Analytics driven Service Velocity Has to be SECURE!!!! – What type of security ? © 2015 Corero www.corero.com 5

6 5G – as an example

7 Smart network convergence An open ecosystem for innovation New network and service capabilities Business models based on shared resources Better sustainability and scalability The “5G Vision” Technology Enablers Software Defined Networks (SDN) Mobile Edge Computing (MEC) Network Function Virtualization (NFV) Big Data and Machine Learning 100110010011 13 Source: “5G Vision” (5GPPP) © 2015 Corero www.corero.com

8 8 The Big Picture: Software-Defined Mobility Cloud Radio Access Networks Network Function Virtualization RRH BBU Base station workloads shift onto virtualized compute (Macro/Small Cell) vEPC, vePDG Gi/SGi-LAN Programmable infrastructure for separation of Control/Forwarding Plane, granular control of service paths through virtual functions infrastructure through abstraction layers Orchestrators/Big Data Apps Mobile Edge Computing Highly distributed computing environment that can be used to deploy applications and services in close proximity to mobile users Service support functions and applications shift to open standards IMS OSS/BSS Apps Software Defined Networking

9 Security – Specifically DDoS

10  Our average customer sees almost 4.5 attacks per day!  Some customers see many more  Across all verticals and segments  No one is immune! The Problem is Real – and Pervasive 10 © 2015 Corero www.corero.com

11 The “5G Vision” 13 Source: “5G Vision” (5GPPP) © 2015 Corero www.corero.com

12 Thank You

Download ppt "SDN/NFV DDoS Requirements "The Mobile Use Case – 5G" Bipin Mistry, VP Product Management © 2015 Corero www.corero.com."

Similar presentations

Leverage existing residential gateways to securely offload mobile data.

Leverage existing residential gateways to securely offload mobile data.
All rights reserved © 2006, Alcatel Grid Standardization & ETSI (May 2006) B. Berde, Alcatel R & I.

All rights reserved © 2006, Alcatel Grid Standardization & ETSI (May 2006) B. Berde, Alcatel R & I.
Current impacts of cloud migration on broadband network operations and businesses David Sterling Partner, i 3 m 3 Solutions.

Current impacts of cloud migration on broadband network operations and businesses David Sterling Partner, i 3 m 3 Solutions.
Use Cases for I2RS I2RS Interim Meeting Nicolai Leymann, Deutsche Telekom AG 19.04.2013.

Use Cases for I2RS I2RS Interim Meeting Nicolai Leymann, Deutsche Telekom AG
Making Cellular Networks Scalable and Flexible Li Erran Li Bell Labs, Alcatel-Lucent Joint work with collaborators at university of Michigan, Princeton,

Making Cellular Networks Scalable and Flexible Li Erran Li Bell Labs, Alcatel-Lucent Joint work with collaborators at university of Michigan, Princeton,
Grant agreement n°318514 SDN architectures for orchestration of mobile cloud services with converged control of wireless access and optical transport network.

Grant agreement n° SDN architectures for orchestration of mobile cloud services with converged control of wireless access and optical transport network.
© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Software Defined Networking.

© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Software Defined Networking.
Tunis, Tunisia, 28 April 2014 Business Values of Virtualization Mounir Ferjani, Senior Product Manager, Huawei Technologies 2.

Tunis, Tunisia, 28 April 2014 Business Values of Virtualization Mounir Ferjani, Senior Product Manager, Huawei Technologies 2.
SDN and Openflow.

SDN and Openflow.
Zhang Fu, Marina Papatriantafilou, Philippas Tsigas Chalmers University of Technology, Sweden 1 ACM SAC 2010 ACM SAC 2011.

Zhang Fu, Marina Papatriantafilou, Philippas Tsigas Chalmers University of Technology, Sweden 1 ACM SAC 2010 ACM SAC 2011.
Unified Logs and Reporting for Hybrid Centralized Management

Unified Logs and Reporting for Hybrid Centralized Management
The End of Internet Architecture Author: Timothy Roscoe Presented by Gross, Zhaosheng Zhu.

The End of Internet Architecture Author: Timothy Roscoe Presented by Gross, Zhaosheng Zhu.
1© Copyright 2015 EMC Corporation. All rights reserved. SDN INTELLIGENT NETWORKING IMPLICATIONS FOR END-TO-END INTERNETWORKING Simone Mangiante Senior.

1© Copyright 2015 EMC Corporation. All rights reserved. SDN INTELLIGENT NETWORKING IMPLICATIONS FOR END-TO-END INTERNETWORKING Simone Mangiante Senior.
Jaehoon (Paul) Jeong, Hyoungshick Kim, and Jung-Soo Park

Jaehoon (Paul) Jeong, Hyoungshick Kim, and Jung-Soo Park
1 3 rd SG13 Regional Workshop for Africa on “ITU-T Standardization Challenges for Developing Countries Working for a Connected Africa” (Livingstone, Zambia,

1 3 rd SG13 Regional Workshop for Africa on “ITU-T Standardization Challenges for Developing Countries Working for a Connected Africa” (Livingstone, Zambia,
Cloud Usability Framework

Cloud Usability Framework
1 When Cloud Networking meets Cloud Computing: Software-Defined Networking (SDN) Customer Application Faan DeSwardt Infrastructure Architecture Manager.

1 When Cloud Networking meets Cloud Computing: Software-Defined Networking (SDN) Customer Application Faan DeSwardt Infrastructure Architecture Manager.
N. GSU Slide 1 Chapter 04 Cloud Computing Systems N. Xiong Georgia State University.

N. GSU Slide 1 Chapter 04 Cloud Computing Systems N. Xiong Georgia State University.
Abstraction and Control of Transport Networks (ACTN) BoF

Abstraction and Control of Transport Networks (ACTN) BoF
COPYRIGHT © 2012 ALCATEL-LUCENT. ALL RIGHTS RESERVED. COMMUNICATIONS DRIVERS & TRENDS FOR SMART GRIDS Istanbul April 29-30

COPYRIGHT © 2012 ALCATEL-LUCENT. ALL RIGHTS RESERVED. COMMUNICATIONS DRIVERS & TRENDS FOR SMART GRIDS Istanbul April 29-30

Similar presentations

Ads by Google