Presentation is loading. Please wait.

Presentation is loading. Please wait.

Defense Communications as a Scarce Resource

Published byAmia Armstrong Modified over 10 years ago

Similar presentations

Presentation on theme: "Defense Communications as a Scarce Resource"— Presentation transcript:

1

2 Defense Communications as a Scarce Resource
Sandeep K. Singhal, Ph.D Director, Windows Networking Microsoft Corporation

3 Agenda Trends in enterprise networking
Windows networking vision and roadmap Windows Vista and Windows Server 2008: Features at a glance Collaboration with MoD Looking into the future Summary

4 Trends in Enterprise Networking
Server consolidation and growth of data centers Increasingly mobile and remote staff Evolving security requirements

5 Trends in Enterprise Networking
Server consolidation and growth of data centers Single networking fabric for web, file, database, and backup Increased network traffic load on servers Increased load on Internet firewalls Increasingly mobile and remote staff Evolving security requirements

6 Trends in Enterprise Networking
Server consolidation and growth of data centers Single networking fabric for web, file, database, and backup Increased network traffic load on servers Increased load on Internet firewalls Increasingly mobile and remote staff Remote access solutions stretch experience, support, and management Greater reliance on WAN (over Internet) links from branch offices Multiple client access technologies and devices Evolving security requirements

7 Trends in Enterprise Networking
Server consolidation and growth of data centers Single networking fabric for web, file, database, and backup Increased network traffic load on servers Increased load on Internet firewalls Increasingly mobile and remote staff Remote access solutions stretch experience, support, and management Greater reliance on WAN (over Internet) links from branch offices Multiple client access technologies and devices Evolving security requirements Enterprise edge disappearing with mobile workforce & devices Diverse user population (contractors, vendors) require securing resources in addition to networks Federation and regulatory needs require policy-based isolation domains

8 Windows Networking Vision: Secure Seamless Network
3/25/2017 1:29 PM Windows Networking Vision: Secure Seamless Network Data Center IPsec Isolation X X Main Office Key points: 1. IPv6 is a key building block for Seamless Network Vision 2. End to end connectivity enables access to my data, my settings, my experience 3. Using Internet will require address scalability IPv6 requires. Branch Office Un-trusted PCs (e.g., guest) ©2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

9 Elements of a Secure, Seamless Network
Policy-based secure access to resources from anywhere End to end connectivity over the Internet using IPv6 All communications authenticated using end to end IPsec Connection-by-connection Access controlled by identity Trust boundaries defined by policy instead of topology Traffic management at the edges Network access protection (NAP) systems keeps systems healthy and protected from unhealthy systems Existing applications just work

10 Windows Networking Roadmap
Win Server 2003/ Win XP End host security Integrated Windows Firewall Win Server 2008/ Win Vista Intranet security domains Server and Domain Isolation (S&DI) Network Access Protection (NAP) IPv6 native and transition solutions for enterprises Future: Secure seamless networks Internet security domains Easy to deploy Easy to manage

11 Windows Vista and Windows Server 2008: Networking Features At A Glance
Trend Problem Vista/WS08 Impact Server consolidation and growth of data centers Slow data replication between data centers despite high speed connectivity Compound TCP enables data transfers at multi-gigabit speeds 200% increase in replication speed between Microsoft Redmond and Bay Area data centers Increasing network load limiting server scalability Built-in hardware offload and CPU load balancing for network traffic 50% increase in web requests/sec on same hardware (as measured by webbench)

12 Windows Vista and Windows Server 2008: Networking Features At A Glance
Trend Problem Vista/WS08 Impact Remote and Mobile workforce High latency limits network performance in branch offices Automatic tuning to optimize for WAN links File copy speed from US to Microsoft Australia increased by 1000% DCE* testing showed 200% improvement over 2Mbps satellite links Network losses limit throughput on WLAN, WWAN Loss detection and automatic recovery Loss recovery time reduced by 40% over satellite links in DCE testing Mobile PCs expose enterprise networks to viruses as they roam between networks Network access protection (NAP) solutions IT security compliance increased by 80% after deploying NAP on Microsoft network *Defense Communications Efficiency: Joint project between Microsoft and UK MoD

13 Windows Vista and Windows Server 2008: Networking Features At A Glance
Trend Problem Vista/WS08 Impact Remote and Mobile workforce Overlapping private addresses make remote management hard Full IPv6 support enabled end to end connectivity IPv6 enabled throughout Microsoft by deploying only few new servers Ad-hoc collaboration in war zones, conferences hard in absence of infrastructure setup Windows Meeting Space allows sharing presentations, files, notes Windows Meeting Space widely used within Microsoft for ad-hoc collaboration Hard to deploy quality of service solutions to manage expensive WAN resources Policy based enterprise QoS (eQoS) eQoS deployed on Microsoft WAN links with existing router hardware to prefer certain app traffic

14 Windows Vista and Windows Server 2008: Networking Features At A Glance
Trend Problem Vista/WS08 Impact Security Mobility and de-perimeterization increasing threat surface Server and domain isolation (SDI) solutions enable policy based security solutions Universidade de Vila Velha (UVV) deployed SDI to increase security and simplify management Security policy management hard to deploy and manage -Group policy based SDI deployment solution -IPsec management integrated with Windows Firewall City of Sopporo, Japan deployed SDI with Nil cost for users across 870 different departments

15 Case Study: Defense Communication Efficiency
Players UK MoD Microsoft Started 2004 Goal Improving efficiency on satellite networks Approach Phased engagement consisting of problem definition, joint solution development, joint testing, feedback and refinement Outcome Windows Server 08/Vista autotuning, Compound TCP, and loss recovery improvements Benefits to MoD GBP 500M per year spending on satellite links – even 10% efficiency improvement is significant savings Benefits to Microsoft Microsoft: Validation of algorithms on Large Network Emulator as well as on real satellite network as part of JWID 05

16 Case Study: Defense Communication Efficiency
Players UK MoD Microsoft Started 2004 Goal Improving efficiency on satellite networks Approach Phased engagement consisting of problem definition, joint solution development, joint testing, feedback and refinement Outcome Windows Server 08/Vista autotuning, Compound TCP, and loss recovery improvements Benefits to MoD GBP 500M per year spending on satellite links – even 10% efficiency improvement is significant savings Benefits to Microsoft Microsoft: Validation of algorithms on Large Network Emulator as well as on real satellite network as part of JWID 05 Engagement continuing beyond Windows Server 2008/Windows Vista Several areas identified such as IPv6, compression, QoS Framework for managing IP: Facilitates free flow of ideas and testing results

17 Looking into the Future
Remote work Easy and reliable network access from anywhere Better manageability of mobile PCs Extend Intranet NAP and isolation to remote worker Branch offices Further efficiency in fetching data over WAN links Preserve end to end security solutions Security domains Easier deployment Easier management Easier support

18 Summary Windows Server 08 and Windows Vista
Provide substantial advances that address key issues faced by evolving enterprise networks Influenced by partnership with MoD Address business issues impacting MoD Plan and prepare for secure seamless networks Trends in enterprise networking demand such networks IPv6, IPsec and NAP are key building blocks for these networks Windows Server 2008 and Windows Vista enable enterprises to deploy these networks

19 Questions Sandeep K. Singhal, Ph.D Director, Windows Networking
+1 (425) Questions

20 Backup

21 Windows Networking Vision: Secure Seamless Networks
3/25/2017 1:29 PM Windows Networking Vision: Secure Seamless Networks Internet IS your network Applications just work All communications authenticated Connection-by-connection Access controlled by identity Trust boundaries defined by policy instead of topology Traffic management at the edges Network Immune Systems Key points: 1. IPv6 is a key building block for Seamless Network Vision 2. End to end connectivity enables access to my data, my settings, my experience 3. Using Internet will require address scalability IPv6 requires. IPsec isolation Lab Guest Enterprise Network ©2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.

22

Download ppt "Defense Communications as a Scarce Resource"

Similar presentations

2005 2006 2007 2008 Deloitte Technology Fast 500 Asia Pacific Winners Accelerating Your Network WACC Technology.

Deloitte Technology Fast 500 Asia Pacific Winners Accelerating Your Network WACC Technology.
Unified Communications Bill Palmer ADNET Technologies, Inc.

Unified Communications Bill Palmer ADNET Technologies, Inc.
A Flexible Cloud-Computing Platform Focus on solving business problems

A Flexible Cloud-Computing Platform Focus on solving business problems
Customer Insight: CSO's Perspective – What Edge? Microsoft Research EdgeNet, June 2006 Mark Ashida General Manager Windows Enterprise Networking.

Customer Insight: CSO's Perspective – What Edge? Microsoft Research EdgeNet, June 2006 Mark Ashida General Manager Windows Enterprise Networking.
Fred P. Baker CCIE, CCIP(security), CCSA, MCSE+I, MCSE(2000)

Fred P. Baker CCIE, CCIP(security), CCSA, MCSE+I, MCSE(2000)
| Copyright © 2009 Juniper Networks, Inc. | www.juniper.net 1 WX Client Rajoo Nagar PLM, WABU.

| Copyright © 2009 Juniper Networks, Inc. | 1 WX Client Rajoo Nagar PLM, WABU.
Ljubomir Ivaniš CPU d.o.o.

Ljubomir Ivaniš CPU d.o.o.
2  Industry trends and challenges  Windows Server 2012: Modern workstyle, enabled  Access from virtually anywhere, any device  Full Windows experience.

2  Industry trends and challenges  Windows Server 2012: Modern workstyle, enabled  Access from virtually anywhere, any device  Full Windows experience.
2  Industry trends and challenges  Windows Server 2012: Modern workstyle, enabled  Access from virtually anywhere, any device  Full Windows experience.

2  Industry trends and challenges  Windows Server 2012: Modern workstyle, enabled  Access from virtually anywhere, any device  Full Windows experience.
Mission Critical Messaging Platform Roni Havas Unified Communications Solution Specialist Specialists Technology Unit – EPG - Microsoft Israel

Mission Critical Messaging Platform Roni Havas Unified Communications Solution Specialist Specialists Technology Unit – EPG - Microsoft Israel
Virtual Private Networks COSC541 Project Jie Qin & Sihua Xu October 11, 2014.

Virtual Private Networks COSC541 Project Jie Qin & Sihua Xu October 11, 2014.
Enabling IPv6 in Corporate Intranet Networks

Enabling IPv6 in Corporate Intranet Networks
Cisco Confidential 1 © 2010 Cisco and/or its affiliates. All rights reserved. Next Generation Monitoring in Cisco Security Cloud Leon De Jager and Nitin.

Cisco Confidential 1 © 2010 Cisco and/or its affiliates. All rights reserved. Next Generation Monitoring in Cisco Security Cloud Leon De Jager and Nitin.
Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)

Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)
Unleashing the Power of Ubiquitous Connectivity with IPv6 Sandeep K. Singhal, Ph.D Director of Program Management Windows Networking.

Unleashing the Power of Ubiquitous Connectivity with IPv6 Sandeep K. Singhal, Ph.D Director of Program Management Windows Networking.
Module 3 Windows Server 2008 Branch Office Scenario.

Module 3 Windows Server 2008 Branch Office Scenario.
Network and Server Basics. 6/1/20152 Learning Objectives After viewing this presentation, you will be able to: Understand the benefits of a client/server.

Network and Server Basics. 6/1/20152 Learning Objectives After viewing this presentation, you will be able to: Understand the benefits of a client/server.
E-business Infrastructure

E-business Infrastructure
Dan Stolts IT Pro Evangelist US DPE - North East Microsoft Corporation

Dan Stolts IT Pro Evangelist US DPE - North East Microsoft Corporation
At their deskAt their desk In a branchIn a branch On the roadOn the road Protect data & PCsProtect data & PCs Built on Windows Vista foundation Easy.

At their deskAt their desk In a branchIn a branch On the roadOn the road Protect data & PCsProtect data & PCs Built on Windows Vista foundation Easy.

Similar presentations

Ads by Google