Upload
marketingarrowecscz
View
142
Download
1
Embed Size (px)
Citation preview
Paula
NEW APP DEPLOYMENT
APP CLONING
APP SERVER OPERATIONS
REPORTING/PLANNING
Marco
N/W INFRA MGMT
L4-L7 N/W SVC MGMT
ACCESS CONTROL
CONFIG & CHANGE
MGMT
IS MY APP HEALTHY? N/W SERVICES
HEALTHY?
COLLABORATION
TRADITIONAL DC PUBLIC CLOUD HYBRID DC, SDDC
Data Center(s)
Load Balancing DDoS Protection
Firewall
RBAC
ITSM
Public Cloud - Shared Responsibility Security Model
CP Global Infrastructure
Data Centers
Zones
Regions
Edge
Locations
Networking Services
Compute Database Storage
Deployment & Management
Client-Side Data Encryption & Data
Integrity Authentication
Server-Side Encryption (File System and/or
Data)
Network Traffic Protection (Encryption,
Integrity, Identity)
Operating System, Network and Firewall Configuration
Platform, Applications, Identity & Access Management
Customer Data Customer’s responsibility
• Protecting the confidentiality, integrity, and availability of their data in the cloud
• OS and application-level security
Cloud Provider responsibility
• Providing a global secure infrastructure and services
Ph
ysic
al to
Hyp
erv
iso
r O
S a
nd
Ap
plic
atio
n
Clo
ud
Pro
vid
er
Custo
mer
Deployment and Scalability (Heat)
Metering (Ceilometer)
Compute (Nova)
Identity (Keystone)
Images (Glance) Object Store (Swift)
Storage (Cinder)
LBaaS VPNaaS FWaaS
DNS DHCP L2/L3
Manag
em
ent
Console
(H
orizon)
Network (Neutron)
Fe
atu
res
Key Features
• All BIG-IP Modules available
• Bring you own licenses (BYOL) initially
• Single NIC support
• Dynamic Routing
• Max throughput: 1Gbps
• 30 day free trial via Eval License (BYOL) 25M
200M
1Gbps
Public Cloud - Shared Responsibility Security Model
CP Global Infrastructure
Data Centers
Zones
Regions
Edge
Locations
Networking Services
Compute Database Storage
Deployment & Management
Client-Side Data Encryption & Data
Integrity Authentication
Server-Side Encryption (File System and/or
Data)
Network Traffic Protection (Encryption,
Integrity, Identity)
Operating System, Network and Firewall Configuration
Platform, Applications, Identity & Access Management
Customer Data Customer’s responsibility
• Protecting the confidentiality, integrity, and availability of their data in the cloud
• OS and application-level security
Cloud Provider responsibility
• Providing a global secure infrastructure and services
Ph
ysic
al to
Hyp
erv
iso
r O
S a
nd
Ap
plic
atio
n
Clo
ud
Pro
vid
er
Custo
mer
IDENTITY AND ACCESS MANAGEMENT (IAM) APPLICATION PROTECTION
Protecting your Applications and Information – Wherever they reside
…integrates with existing to enhance security
NGFW
Vulnerability Scanning
IDS
Packet / Forensics
Data Loss Prevention
HSM
APT Scanning
IPS
P A R T N E R E C O S Y S T E M
F5 APPLICATION PROTECTION F5 IDENTITY & ACCESS MANAGEMENT
SSL Inspection & Interception
WAF DDoS Protection
DNS Security
Web Fraud Protection
IP Intelligence Carrier Class Firewall
Identity Federation
App Access Mgmt
Enterprise Mobility Gateway
Secure Web Gateway
Remote Access