Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.
Lancope Expects Increased NetFlow, sFlow Adoption in '08
New, complex technologies demand enterprises utilize flow data for security and network operations benefits
4 Min Read
ATLANTA -- Lancope®, Inc., the provider of the StealthWatch™ System, the most widely used network behavior analysis (NBA) and response solution, today announced its prediction that flow data, including Cisco IOS NetFlow™ and sFlow®, will continue strong adoption in 2008 due to its extensive network operations and security benefits for newer, more complex technologies such as Multi-Protocol Label Switching (MPLS), quality of service (QoS) for Voice over Internet Protocol (VoIP), Internet Protocol version 6 (IPv6) and Wide Area Network (WAN) optimization. Moreover, Lancope recently released its 2007 customer survey results which validate this assertion, revealing that over 50 percent of its customers currently enable NetFlow or sFlow and another 36 percent are planning to enable at least one type of flow data, whether NetFlow, sFlow or IPFIX, in the coming year.
Enterprises that leverage flow-based technologies can cost-effectively obtain critical information about traffic flowing across their WANs. NBA technologies analyze this network traffic in real-time, providing immediate, end-to-end visibility into suspicious network activities and network performance issues. By utilizing NetFlow and sFlow-based NBA solutions, security and network operations teams gain the intelligence they need to protect critical information assets and ensure network performance by preventing costly downtime, repair and loss of reputation.
In 2008, Lancope predicts significantly more organizations will enable NetFlow and sFlow as they roll out the following technologies:
IPv6 – There are many benefits associated with IPv6, including improved and more flexible connectivity, an easier way for devices to auto-configure their own addresses, expanded IP address space and improved security. Because the federal government must implement next generation Internet Protocols by June 2008, many vendors are rapidly working to incorporate IPv6 into their technologies and service offerings. The key challenge facing security and network operations teams is that current IP network configurations and many of the applications running on the network are designed to support IPv4, not necessarily IPv6. By analyzing flow data, IT teams can gain detailed network visibility to mitigate potential pitfalls of IPv6 migrations.
MPLS – Adoption of MPLS services has significantly increased in recent years. While the benefits of rolling out MPLS-based networks are obvious – reduced congestion due to added flow path control, easier creation of VPN tunnels, improved QoS and reduced network complexity – there are many security implications to consider. Often, these networks render ineffective the traditional technologies used to monitor and secure the network, resulting in loss of visibility into network performance and difficulty securing each location within the MPLS cloud. One way to regain visibility throughout the network is by enabling, collecting and analyzing flow data. NBA technologies that consume NetFlow and sFlow provide full visibility to help manage network performance, availability, and security for all remote sites.
WAN Optimization – Recent research from the Aberdeen Group found that companies that have implemented WAN acceleration and optimization have achieved a 1,158% average improvement in response times for business critical applications. Enhancing the benefits of WAN optimization, flow-based NBA technologies provide detailed WAN visibility, identifying candidates for acceleration and analyzing WAN traffic by or between sites. By leveraging NetFlow or sFlow, NBA represents another opportunity to reclaim network traffic visibility that is lost when data is compressed, enabling rapid incident resolution and better management of infrastructure costs.
QoS for VoIP – With newer, faster and cheaper technologies such as VoIP rapidly being deployed, it is increasingly important to ensure sufficient bandwidth for high priority network traffic, including VoIP calls and live media streams, which must be processed quickly and in real time. In traffic bottlenecks, flow-based NBA technologies provide preferential treatment for priority network traffic while maximizing network throughput and capacity utilization, thereby minimizing packet loss and delay.
“Until recently, many organizations have been unaware of the inherent advantages of turning on NetFlow or sFlow, which already exist in their network infrastructure,” said Adam Powers, CTO of Lancope. “In 2007 alone Lancope saw a dramatic increase in adoption of flow data among our customers and we anticipate additional uptick in 2008. Not only is flow data virtually transparent to the network, but it also yields numerous benefits for security and network operations by solving many collective issues associated with IPv6, MPLS, WAN optimization and QoS. It’s a cost-effective and efficient way to help our customers truly know what’s happening on their networks.”
Read more about:
2007About the Author(s)
You May Also Like
More Insights
Webinars
Why Effective Asset Management is Critical to Enterprise Cybersecurity
May 21, 2024Finding Your Way on the Path to Zero Trust
May 22, 2024Extending Access Management: Securing Access for all Identities, Devices, and Applications
June 4, 2024Assessing Software Supply Chain Risk
June 6, 2024Preventing Attackers From Wandering Through Your Enterprise Infrastructure
June 19, 2024
Events
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024
