Network-centric Zero-trust and Software Defined Perimeter Controls

Posted by MantisNet on Aug 21, 2019 11:28:09 AM

In the beginning, networks and the Internet writ-large were designed with the notion of intrinsic security based on a perimeter wherein a person, application or third-party was verified and subsequently granted an all-inclusive ‘trusted’ status. Suffice to say, this approach has resulted in damages and incalculable losses on a global scale. Trust placed on verification at only of a few points of access has proven to be lacking. To put it mildly, according to the Cloud Security Alliance in their Software-Defined Perimeter Architecture Guide, “Today’s network security architectures, tools and platforms all fall short of meeting the challenges presented by our current security threats.”  With recent (network) technology advances, we are now capable of building continuous verification to enable zero-trust.

Read More

Tags: network engineering, cyber security, Real-Time Monitoring, mantis

NetOps and SecOps in the Data plane

Posted by MantisNet on Jan 15, 2019 11:35:14 AM

We had the pleasure of supporting the Software Engineering Institute at Carnegie Mellon University’s conference, FloCon: Using Data to Defend. The presentations and discussions at the event provided validation that changes are coming to network and cyber security. More mathematical solutions are being developed to fuel machine learning and algorithms to combat malicious and other network traffic of interest. If you missed the event, an overview and video of our presentation is below.

Read More

Tags: network engineering, Real-Time Monitoring, DNS Monitoring, Data-In-Motion, mantis

100G Network Monitoring: The High-Speed Dilemma

Posted by MantisNet on Dec 14, 2017 9:36:34 AM
2017 proved to be an explosive year for 100G, as well as for other "high-speed" networking technologies ("high-speed" being anything 25G+). According to Crehan Research, the data center Ethernet switching market saw its strongest growth in five years during 2017.
Read More

Tags: network engineering

Network Monitoring Step 2: The Next-Generation of Packet Brokers

Posted by MantisNet on Nov 9, 2017 9:40:10 AM
A new class of highly intelligent Virtual Switches and Next-Generation Packet Brokers (NPB) is on the rise.

Cloud computing and software-defined networking (SDN) have made development and operations teams far more aware of the importance of their networking infrastructure than ever before. In the age of DevOps, private, hybrid, and public cloud computing - the network is the fabric that holds the compute infrastructure together.

Read More

Tags: network engineering, network preformance, cyber security

Network Monitoring Step 1: SPAN Ports vs. TAPs

Posted by MantisNet on Oct 4, 2017 7:17:07 PM
While deploying network monitoring tools, IT managers are often faced with questions, such as: "Can we do this and still ensure that we aren't impacting the production network?" or "Can I make sure that I can see 100% of network traffic?" or "What is the best way to get data into my monitoring and test tools?" 
Read More

Tags: network engineering, test/lab automation, network preformance, cyber security, IT operations