Enhancing open source security
Case Study
Challenge
Anyone that need to secure their IT infrastructure have industry-standard PCAP applications such as Suricata, Bro, and Wireshark at their disposal. The problem is the scale and bandwidth at which enterprises operate today.
Solution
Integrating PCAP applications with Napatech’s FPGA-driven SmartNICs allows businesses to ensure proper security measures under all network conditions.
Benefits
Napatech FPGA SmartNICs provide zero packet loss, which is essential to attain complete visibility and a deeper understanding of both existing and potential vulnerabilities. With support for most open source applications, Napatech SmartNICs enable cost-effective hyperscale security solutions.
The benefits of open source cannot be ignored. Businesses can develop applications leveraging the collective knowledge of the open source community while reducing time-to-deployment. Developers can create innovative solutions tailored to a business’ immediate and long term needs, no longer relying on any particular commercial solution.
An excellent example of this is in the area of Network Security, where all enterprises are challenged to defend their networks against security threats, especially those that have yet to be identified. Unlike companies offering proprietary security solutions, the open source community presents many advantages that the area of network security can leverage.
The community is organized to ensure that the code can be examined by anyone and address security concerns as they are encountered. Open source software can therefore, merely by the nature of how it is developed, be faster and more thorough in addressing security vulnerabilities.
Another advantage of open source software is the ability to customize code to the enterprises’ specific and immediate security needs. Consider that more enterprises are embracing the practice of building out their IT networks using commercial off-the-shelf (COTS) components. Not only are these networks developed to meet their unique business requirements, but building out these networks can also prove to be more cost-effective with open source software.
Our solution
One crucial element in any security solution is the ability to capture and monitor traffic in real time to provide visibility and insight into attempts to breach networked systems. Napatech’s FPGA SmartNICs provide the ideal support for this capability. Combined with open source network security software and standard servers, an enterprise can deploy and tailor its own solution while benefiting from Napatech’s high-performance packet capture technology.
Key benefits
Napatech FPGA SmartNICs enable the customer to capture a perfect copy of all packets traversing a network, without any loss of information. This provides complete visibility which is vital to identify potential security breaches. Building Napatech into a custom security solution is easy since it is designed in a compact form factor that integrates well with standard servers. Napatech’s SmartNICs are fully reconfigurable and can be easily used by the open source community, as they support numerous industry standard PCAP applications.
CASE
Ensuring security; key to success in a hyperscale social network
Large social network companies must maintain hyperscale IT infrastructures that continuously deliver services to attract and retain users: the larger its user base, the larger is the potential for growing revenue. Rather than rely on traditional hardware and software companies to supply components for the underlying network infrastructure, more and more companies are building infrastructures using COTS hardware and open source software.
Because social networks hold the personal information of millions of users worldwide, their IT staff recognize security to be a constant and ongoing concern. Users expect a social network to be “always on”, and the social network provider cannot afford to allow any issue preventing user access. More importantly, these networks must protect themselves from anyone hacking into users’ accounts. If they cannot protect their users against a security attack, having that information leaked or stolen (e.g. passwords, credit card information) will discourage use of the social network, ultimately leading to a decline in network expansion and revenue generation.
A security solution that monitors traffic at hyperscale without disrupting service delivery is of utmost importance. Using Napatech FPGA SmartNICs is ideal given both the variety and amount of traffic the underlying infrastructure supports. With this technology, a social network can monitor and examine all traffic, enabling IT to identify every possible security vulnerability within the social network infrastructure.
Other key SmartNIC features that enable the social network to detect security breaches under all possible network conditions:
• Distribution of the network processing load via its multicore architecture, maximizing the number of packets processed at any given moment;
• Large packet buffers allow the application to process massive amounts of network traffic in real time, enabling zero packet loss;
• The merging of multiple ports into one time-ordered packet stream (with hardware timestamps), allowing precise analysis of all vulnerable network traffic;
• Proven hardware reliability to ensure maximum uptime for network monitoring activities in high-speed networks.
Anyone that needs to secure their IT infrastructure has industry-standard PCAP applications such as Suricata, Bro, and Wireshark at their disposal. The problem is the scale and bandwidth at which social network providers operate today. Integrating these applications with the Napatech SmartNIC allows social networks to ensure proper security measures under all network conditions, ideally eliminating any future breach or hack.
Conclusion
Building out a hyperscale security solution for corporate IT networks using COTS components is achievable regardless of the size of the network infrastructure and the amount of traffic generated. Some social networks today have embraced a DIY approach to deploy a security solution for their hyperscale infrastructures. They have recognized that complete packet capture is the only viable approach in monitoring security continuously. Using Napatech SmartNICs provides the ideal foundation for enabling such security monitoring on any given network.