Special Coverage Series

Network Computing

Special Coverage Series


Network Security 2014: 5 Predictions

Here are some trends security industry executives say network security professionals can expect to see next year.

Staying on top of network security means not just ticking items off a to-do list, but also looking out for what's ahead. With that in mind, we culled a few interesting predictions from the minds of security experts and industry executives on what organizations can expect on the network security front in 2014.

1. Mobile Biometrics

Biometrics on mobile devices will play a bigger role in authenticating users to network services, one security executive predicted.

"Biometrics emerging on mobile endpoints, either as applications that gather users’ behaviors or as dedicated features on mobile endpoints that scan personal features à la the iPhone 5s finger scan, will emerge in 2014," said Manoj Nair, senior vice president and general manager at EMC's RSA security division. "If these features are open and extensible, it could lead to real innovation in ensuring the identities of remote users."

2. Application-Centric Networking

Cisco's launch of its Application Centric Infrastructure this fall pushed the concept of application-centric networking front and center, along with the promise of making network security more agile and automated. Tufin CTO Reuven Harrison said the IT industry should expect to see the first wave of products from a range of vendors that set the table for application-oriented IT architecture and management.

"New application-centric models will enable organizations to architect their networks, security and infrastructure in alignment with their business strategies, which are increasingly dependent on applications," he said.

Security, like other elements of infrastructure, will be treated vertically in this new application-centric architecture, Reuven added. "Instead of siloed security at each one of the layers -- application, server, hypervisor, storage and network -- we'll start seeing a convergence that enables a more holistic approach to security. Security will also be automated and orchestrated wherever possible," he said.

3. Application and Network Security Converge

While application-centric networking aims to break down silos, other industry trends also will help bridge divisions across the enterprise, another security executive said.

"Due to increasing consumption of cloud services and innovations such as NGFWs [next-generation firewalls], which force network security teams to consider application-related security and risk issues, network and application security will continue to converge in a big way," said Ranjeet Vidwans, vice president of marketing and business development at Identropy. "The common ground will be risk management."

4. NSA-Driven Uptick In SSL Encryption

This trend has already begun. Yahoo recently announced it was expanding its use of encryption to protect its users from NSA snooping, following a similar move by Google.

[The disclosures of NSA spying eroded customers' trust in the security of WAN connections from service providers, according to Greg Ferro. Read his analysis in "WAN Encryption Tops The Agenda After NSA Revelations."]

"The Snowden revelations have heightened awareness for these issues among consumers, enterprises and cloud providers," said Paige Leidig, senior vice president at CipherCloud. "As result, I expect an increase in demands for greater data privacy from all directions."

5. Zero-Trust Segmentation Adoption

Forrester Research has pushed the concept of a "zero-trust model" for network security where all network traffic is considered untrusted, including internal traffic.. To address the challenges of managing distributed networks and access for business partners, more organizations will adopt a zero-trust model in 2014, Danelle Au, director of solutions marketing at Palo Alto Networks, predicts.

"Implementations will vary widely from enterprise to enterprise, from those that need to create distributed boundaries of zero trust to those that focus on data center segmentation," she wrote in a blog post. "The key network security requirement, however, will be solutions that can be deployed with minimal impact to the network, while providing comprehensive visibility, control and safe application enablement."



Related Reading


More Insights



Network Computing encourages readers to engage in spirited, healthy debate, including taking us to task. However, Network Computing moderates all comments posted to our site, and reserves the right to modify or remove any content that it determines to be derogatory, offensive, inflammatory, vulgar, irrelevant/off-topic, racist or obvious marketing/SPAM. Network Computing further reserves the right to disable the profile of any commenter participating in said activities.

 
Disqus Tips To upload an avatar photo, first complete your Disqus profile. | Please read our commenting policy.
 

Editor's Choice

Research: 2014 State of Server Technology

Research: 2014 State of Server Technology

Buying power and influence are rapidly shifting to service providers. Where does that leave enterprise IT? Not at the cutting edge, thatís for sure: Only 19% are increasing both the number and capability of servers, budgets are level or down for 60% and just 12% are using new micro technology.
Get full survey results now! »

Vendor Turf Wars

Vendor Turf Wars

The enterprise tech market used to be an orderly place, where vendors had clearly defined markets. No more. Driven both by increasing complexity and Wall Street demands for growth, big vendors are duking it out for primacy -- and refusing to work together for IT's benefit. Must we now pick a side, or is neutrality an option?
Get the Digital Issue »

WEBCAST: Software Defined Networking (SDN) First Steps

WEBCAST: Software Defined Networking (SDN) First Steps


Software defined networking encompasses several emerging technologies that bring programmable interfaces to data center networks and promise to make networks more observable and automated, as well as better suited to the specific needs of large virtualized data centers. Attend this webcast to learn the overall concept of SDN and its benefits, describe the different conceptual approaches to SDN, and examine the various technologies, both proprietary and open source, that are emerging.
Register Today »

Related Content

From Our Sponsor

How Data Center Infrastructure Management Software Improves Planning and Cuts Operational Cost

How Data Center Infrastructure Management Software Improves Planning and Cuts Operational Cost

Business executives are challenging their IT staffs to convert data centers from cost centers into producers of business value. Data centers can make a significant impact to the bottom line by enabling the business to respond more quickly to market demands. This paper demonstrates, through a series of examples, how data center infrastructure management software tools can simplify operational processes, cut costs, and speed up information delivery.

Impact of Hot and Cold Aisle Containment on Data Center Temperature and Efficiency

Impact of Hot and Cold Aisle Containment on Data Center Temperature and Efficiency

Both hot-air and cold-air containment can improve the predictability and efficiency of traditional data center cooling systems. While both approaches minimize the mixing of hot and cold air, there are practical differences in implementation and operation that have significant consequences on work environment conditions, PUE, and economizer mode hours. The choice of hot-aisle containment over cold-aisle containment can save 43% in annual cooling system energy cost, corresponding to a 15% reduction in annualized PUE. This paper examines both methodologies and highlights the reasons why hot-aisle containment emerges as the preferred best practice for new data centers.

Monitoring Physical Threats in the Data Center

Monitoring Physical Threats in the Data Center

Traditional methodologies for monitoring the data center environment are no longer sufficient. With technologies such as blade servers driving up cooling demands and regulations such as Sarbanes-Oxley driving up data security requirements, the physical environment in the data center must be watched more closely. While well understood protocols exist for monitoring physical devices such as UPS systems, computer room air conditioners, and fire suppression systems, there is a class of distributed monitoring points that is often ignored. This paper describes this class of threats, suggests approaches to deploying monitoring devices, and provides best practices in leveraging the collected data to reduce downtime.

Cooling Strategies for Ultra-High Density Racks and Blade Servers

Cooling Strategies for Ultra-High Density Racks and Blade Servers

Rack power of 10 kW per rack or more can result from the deployment of high density information technology equipment such as blade servers. This creates difficult cooling challenges in a data center environment where the industry average rack power consumption is under 2 kW. Five strategies for deploying ultra-high power racks are described, covering practical solutions for both new and existing data centers.

Power and Cooling Capacity Management for Data Centers

Power and Cooling Capacity Management for Data Centers

High density IT equipment stresses the power density capability of modern data centers. Installation and unmanaged proliferation of this equipment can lead to unexpected problems with power and cooling infrastructure including overheating, overloads, and loss of redundancy. The ability to measure and predict power and cooling capability at the rack enclosure level is required to ensure predictable performance and optimize use of the physical infrastructure resource. This paper describes the principles for achieving power and cooling capacity management.