build a wall
play

Build A Wall Perimeter wall 1 // Guardicore Spoiler Alert: Wall - PowerPoint PPT Presentation

Dec 24, 2022 •353 likes •531 views

Security Common Practice: Build A Wall Perimeter wall 1 // Guardicore Spoiler Alert: Wall Will be Breached 2 // Guardicore The answer: Micro-segmentation Welcome To Zero Trust 3 // Guardicore Micro-segmentation : Walls don t work

  1. Security Common Practice: Build A Wall Perimeter wall 1 // Guardicore

  2. Spoiler Alert: Wall Will be Breached 2 // Guardicore

  3. The answer: Micro-segmentation Welcome To Zero Trust 3 // Guardicore

  4. Micro-segmentation : Walls don ’ t work in data centers Diverse Multiple Roaming Constant Protection Locations Requirements Change Needs Hybrid cloud Fixed walls (e.g., Modern and legacy Manual rule environments span firewalls, VLANs) can’t deployment models have management can ’ t keep multiple physical follow moving assets different protection pace with DevOps and IT locations requirements automation 4 // Guardicore

  5. The solution: Guardicore’s approach ▪ Provide full visibility ▪ Abstract enforcement from infrastructure ▪ Policy based on context, not IPs 5 // Guardicore

  6. Provide full VISIBILITY See Critical IT Assets Through a Human Lens 6 // Guardicore

  7. Abstract enforcement from infrastructure Create Granular, Platform-Independent Policies, Based on context, not IP Bare Metal Cloud Virtual Containers Machines 7 // Guardicore

  8. Environment Segmentation 8 // Guardicore

  9. Critical Application Ring-Fencing 9 // Guardicore

  10. Third-Party Access Control 10 // Guardicore

  11. Identity-Based Access Control 11 // Guardicore

  12. Architecture: Agent-based overlay 12 // Guardicore

  13. Policy Enforcement on NIC ▪ With Mellanox: Complete network level visibility ▪ No agent on workload Automatic Policy updates ▪ Single centralized managed policy ▪ 13 // Guardicore

  14. Use Cases What is it used for? 14 // Guardicore 14 // Guardicore Confidential

  15. Restricted Appliances / 3 rd -Party OSs Challenges Agentless Segmentation ✓ OS agnostic • Locked-down OS ✓ Participates in the same network policy • Managed exclusively by the 3rd party ✓ Zero Trusted - Ring fence your vendor appliance ✓ Complete traffic visibility for the entire • You need to “ Trust ” it • Requires separate security controls, environment ✓ No performance impact implemented by: ✓ No reliance on the 3rd party vendor • Firewalls ✓ No network changes, no downtime • Top of rack switches • Network appliances 15 // Guardicore

  16. Bare-Metal as a Service Challenges Agentless Segmentation ✓ Distributed policy • OS belongs to the customer, with full ✓ Centrally managed access and control ✓ Built for scale • Cannot trust the OS ✓ DevOps ready - support automation • Separation between tenants by ✓ Detached from the OS, controlled by configuring top-of-rack switches and the provider network appliances ✓ No network changes, no downtime • Limited amount of rules • Managed individually • Hard to maintain and control 16 // Guardicore

  17. High Performance Computing Challenges Agentless Segmentation ✓ Offload the security to the hardware • Overall performance as key factor ✓ Make “ space ” for the things that • Dropping everything that does not matter the most on the OS ✓ Securing every server individually support performance ✓ Use the power of the high- • As a result, security is compromised performance DPU to reduce latency and improve throughput 17 // Guardicore

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Were gonna build a wall! A guide to managing conflicts and danger zones in shared

Were gonna build a wall! A guide to managing conflicts and danger zones in shared

Were gonna build a wall! A guide to managing conflicts and danger zones in shared working and alternative service delivery models James Doble Cherwell and South Northants Councils What are we talking about and why? Shared

334 views • 12 slides
Wall Ball Wall Proposal Not Simply a wall, a way of

Wall Ball Wall Proposal Not Simply a wall, a way of

Wall Ball Wall Proposal Not Simply a wall, a way of crea8ng a new dimension of play and connec8on within our community Presented by Will

1.45k views • 19 slides
Chapter 3: Planning and Scheduling Bin Packing Problem Suppose you plan to build a wall system

Chapter 3: Planning and Scheduling Bin Packing Problem Suppose you plan to build a wall system

Chapter 3: Planning and Scheduling Bin Packing Problem Suppose you plan to build a wall system for your books, CDs, DVDs, and stereo set. It requires 24 wooden shelves of various lengths: 6, 6, 5, 5, 5, 4, 4, 4, 4, 2, 2, 2, 2, 3, 3, 7, 7, 5,

613 views • 13 slides
The Party Wall etc Act 1996 An introduction By Mark Duckworth MRAC CSRT MFPWS C.BUILD E FCABE

The Party Wall etc Act 1996 An introduction By Mark Duckworth MRAC CSRT MFPWS C.BUILD E FCABE

The Party Wall etc Act 1996 An introduction By Mark Duckworth MRAC CSRT MFPWS C.BUILD E FCABE AssocRICS Chartered Building Engineer & RICS (evaluative) Mediator Technical competence with emotional intelligence In Introduction M&M

527 views • 20 slides
Kanban Tetris Game instructions Objective: Build Walls for our Customers Acceptance Criteria

Kanban Tetris Game instructions Objective: Build Walls for our Customers Acceptance Criteria

Kanban Tetris Game instructions Objective: Build Walls for our Customers Acceptance Criteria Walls are 32 wide Only the wall face matters blocks can hang out the back of the wall Maximize the Contiguous Area Step 1:

210 views • 16 slides
QTYUIOP APEX4-04-02 FW/BLANKET DESIGN NECESSARY AND DESIRABLE ATTRIBUTES Adequate tritium

QTYUIOP APEX4-04-02 FW/BLANKET DESIGN NECESSARY AND DESIRABLE ATTRIBUTES Adequate tritium

FLAT WALL HELICAL FIRST WALL AND INTEGRATED ONCE-THRU FW/BLANKET CONCEPTS by C.P.C. Wong, S. Malang, M. Sawan, M. Friend, * S. Majumdar, E. Mogahed, B. Merrill Variation to the ARIES-AT approach Flat wall helical first wall and

830 views • 16 slides
Bacteria Without a Cell Wall L-forms Pros & Cons of Cell Wall Cell membrane Cell wall DNA

Bacteria Without a Cell Wall L-forms Pros & Cons of Cell Wall Cell membrane Cell wall DNA

A New Chassis for Synthetic Biology: Bacteria Without a Cell Wall L-forms Pros & Cons of Cell Wall Cell membrane Cell wall DNA Cell membrane ribosomes RNA metabolites Bacterium with Bacterium cell wall without cell wall Previous

673 views • 35 slides
HAMPTON INN HOTEL RENOVATION CORRIDORS WALL VINYL WINDOW TEATMENTS WALL ART CARPET WALL ART

HAMPTON INN HOTEL RENOVATION CORRIDORS WALL VINYL WINDOW TEATMENTS WALL ART CARPET WALL ART

HAMPTON INN HOTEL RENOVATION CORRIDORS WALL VINYL WINDOW TEATMENTS WALL ART CARPET WALL ART WALL ART SCONCES GUEST ROOMS CARPET TILE SLEEPER SOFAS HEAD BOARD CASE GOODS CARPET OVERALL LOOK GUEST ROOMS Cushioned Pinned Bed Board

474 views • 10 slides
M D I D I Building Innovation presents MAGIX Wall The Fast Track Strong Partition Wall System

M D I D I Building Innovation presents MAGIX Wall The Fast Track Strong Partition Wall System

M D I D I Building Innovation presents MAGIX Wall The Fast Track Strong Partition Wall System Why MAGIX Wall? Traditionally, masonry wall has been widely used in construction world, although it has many concerns. For example it takes a long

347 views • 13 slides
PSP Training for Everyone Dan Wall Dan Wall TSP Symposium 2007 Problem More and more

PSP Training for Everyone Dan Wall Dan Wall TSP Symposium 2007 Problem More and more

PSP Training for Everyone Dan Wall Dan Wall TSP Symposium 2007 Problem More and more organizations are now adopting the TSP and attempting to use it in non software situations. The purpose of the PSP for Engineers course is to provide the

588 views • 14 slides
IOSH BRANCH PRESENTATION 25/09/2019 A ARCARI 1 Activity Primary time line what was the real

IOSH BRANCH PRESENTATION 25/09/2019 A ARCARI 1 Activity Primary time line what was the real

Case 1 Where's my Wall? Construction (or Demolition) A 12M retaining wall collapsed that supported sloping ground 1m to 4m at the front of the house. The wall was built between1.5 and - 2.5 M high and collapsed into a busy pavement. Significance -

402 views • 4 slides
Beyond the Wall: Near-Data Processing for Databases Sam Xi ,

Beyond the Wall: Near-Data Processing for Databases Sam Xi ,

Beyond the Wall: Near-Data Processing for Databases Sam Xi , Ore Babarinsa, Manos Athanassoulis , Stratos Idreos HARVARD UNIVERSITY 1 Memory Wall Memory Wall HARVARD

645 views • 36 slides
Magic Wall (working title) David Croft SCOPE Sessions, 18.08.2011 Magic Wall THE PRINCIPLE

Magic Wall (working title) David Croft SCOPE Sessions, 18.08.2011 Magic Wall THE PRINCIPLE

Magic Wall (working title) David Croft SCOPE Sessions, 18.08.2011 Magic Wall THE PRINCIPLE Electromagnetic Spectrum Human Eye Model Magic Wall THE HARDWARE Its not a Kinect (Damnit) Has built in IR laser projector Only outline

859 views • 63 slides
W S Proposed Tree planting e within proposed landtake o w r 7 k CLANE a NAAS s g e

W S Proposed Tree planting e within proposed landtake o w r 7 k CLANE a NAAS s g e

A3 A B C D E F G H I J K L M N O P FOR INFORMATION CPO Line 1 23 24 Sallins Link Road 2 Proposed Wall on boundary of plot No. 106 (ref. EIS LM-22, property R21, Table 10.5) Existing Boundary Wall 3 Proposed Wall to tie in

499 views • 6 slides
Preparing students for COLLEGE CAREER COMMUNITY MAINLANDS WALL TO WALL CONCEPT IS A WIN FOR:

Preparing students for COLLEGE CAREER COMMUNITY MAINLANDS WALL TO WALL CONCEPT IS A WIN FOR:

Preparing students for COLLEGE CAREER COMMUNITY MAINLANDS WALL TO WALL CONCEPT IS A WIN FOR: MAINLAND HI HIGH S H SCHO HOOL Buccaneers wh who rec eceive a e a per ersonal alize zed f four year ear st cent pl plan f n for

683 views • 35 slides
Implementation of a Complete Wall Function for the Standard k- Turbulence Model in OpenFOAM 4.0

Implementation of a Complete Wall Function for the Standard k- Turbulence Model in OpenFOAM 4.0

Introduction on Near-wall Physics Wall Functions in OpenFOAM 4.0 New Wall Functions Implementation Case Test Implementation of a Complete Wall Function for the Standard k- Turbulence Model in OpenFOAM 4.0 Shengnan Liu Offshore Technology,

612 views • 35 slides
DCS/CSCI 2350: Social & Economic Networks What can we say about a network having friends as

DCS/CSCI 2350: Social & Economic Networks What can we say about a network having friends as

10/28/19 DCS/CSCI 2350: Social & Economic Networks What can we say about a network having friends as well as enemies? Structural Balance Reading: Ch 5 EK Mohammad T . Irfan 1 Agenda u Merge: different types of edges &

414 views • 8 slides
Compiler Construction Lecture 1: Introduction Thomas Noll Lehrstuhl f ur Informatik 2

Compiler Construction Lecture 1: Introduction Thomas Noll Lehrstuhl f ur Informatik 2

Compiler Construction Lecture 1: Introduction Thomas Noll Lehrstuhl f ur Informatik 2 (Software Modeling and Verification) noll@cs.rwth-aachen.de http://moves.rwth-aachen.de/teaching/ss-14/cc14/ Summer Semester 2014 Outline Preliminaries

1.04k views • 20 slides
Compiling C Code Philipp Koehn 28 October 2019 Philipp Koehn Computer Systems Fundamentals:

Compiling C Code Philipp Koehn 28 October 2019 Philipp Koehn Computer Systems Fundamentals:

Compiling C Code Philipp Koehn 28 October 2019 Philipp Koehn Computer Systems Fundamentals: Compiling C Code 28 October 2019 C Code 1 Source Code #include <stdlib.h> #include <stdio.h> int main(void) { printf("Hello

380 views • 17 slides
How Cython Works A one hour guide to compiler design (sarcasm) Josh Kantor May 15, 2008 Josh

How Cython Works A one hour guide to compiler design (sarcasm) Josh Kantor May 15, 2008 Josh

How Cython Works A one hour guide to compiler design (sarcasm) Josh Kantor May 15, 2008 Josh Kantor How Cython Works Goal for this talk Cython is an integral part of sage, and it is useful to be able to bend it to our will. However,

607 views • 24 slides
Election in Mesh, Cube and Complete Networks T-79.4001 Seminar on Theoretical Computer Science

Election in Mesh, Cube and Complete Networks T-79.4001 Seminar on Theoretical Computer Science

Meshes and Tori AB Hypercubes Complete Networks Election in Mesh, Cube and Complete Networks T-79.4001 Seminar on Theoretical Computer Science Heikki Kallasjoki 28.2.2007 T-79.4001 Seminar on Theoretical Computer Science Election in Mesh,

912 views • 31 slides
Introduction CSCE CSCE 479/879 479/879 Good for data with a grid-like topology Lecture 4:

Introduction CSCE CSCE 479/879 479/879 Good for data with a grid-like topology Lecture 4:

Introduction CSCE CSCE 479/879 479/879 Good for data with a grid-like topology Lecture 4: Lecture 4: Convolutional Convolutional Image data Neural Neural CSCE 479/879 Lecture 4: Networks Networks Time-series data Stephen Scott

372 views • 5 slides
iToM: An Internet Topology Mapping Project Kamil Sarac (ksarac@utdallas.edu) Department of

iToM: An Internet Topology Mapping Project Kamil Sarac (ksarac@utdallas.edu) Department of

iToM: An Internet Topology Mapping Project Kamil Sarac (ksarac@utdallas.edu) Department of Computer Science The University of Texas at Dallas Internet topology measurement/mapping Need for Internet topology measurement Help with

448 views • 16 slides
Deep Feedforward Networks Lecture slides for Chapter 6 of Deep Learning www.deeplearningbook.org

Deep Feedforward Networks Lecture slides for Chapter 6 of Deep Learning www.deeplearningbook.org

Deep Feedforward Networks Lecture slides for Chapter 6 of Deep Learning www.deeplearningbook.org Ian Goodfellow Last updated 2016-10-04 Roadmap Example: Learning XOR Gradient-Based Learning Hidden Units Architecture Design

483 views • 30 slides

More recommend