下载PDF
SaaS Gains Essential Visibility for Service Assurance and Security of Customer Facing Network
技术
- 网络安全和隐私 - 网络安全
- 平台即服务 (PaaS) - 连接平台
适用功能
- 商业运营
用例
- 网络安全
- 服务备件管理
服务
- 系统集成
挑战
该软件公司是 NETSCOUT 的客户,已有五年多时间,并且依靠 nGeniusONE 服务保障平台来监控和分析其私有数据中心中的关键业务服务的性能。软件服务的可用性和性能是其成功的基石。借助 NETSCOUT,他们能够尽早发现问题并减少查明原因所需的时间,从而快速解决问题,而且通常可以在客户受到影响之前就解决问题。与当今许多现代企业一样,这家软件公司的网络和云服务总监在为客户、员工和合作伙伴提供应用程序的持续可用性和性能方面主要关注两个方面:服务保障和安全!IT 员工会尽力避免或快速解决任何可能妨碍用户访问在线服务的问题,无论这些问题是与性能问题还是拒绝服务 (DDoS) 问题有关。考虑到最近数据中心和基础设施的几次变化,以及将部分服务迁移到 VMware 和云端的计划,IT 团队已采取措施确保他们在整个环境中具有可视性,以防止服务保障和安全中断。
关于客户
该公司是全球领先的云软件提供商,为保险业务提供支持。该公司专注于保险代理和经纪业务,是创新领域的领导者,也是保险技术的先驱,通过富有创意的云软件为世界上一些最大、最知名的保险公司提供支持。该公司拥有 1,500 多名员工,是代理和经纪管理系统的强大提供商,为北美和欧洲的客户提供服务。由于他们帮助实现保险生命周期的自动化,他们让全球数百万人能够保护和维护对他们来说最重要的事物。他们进一步帮助其业务客户利用新机会,提高业务效率和盈利能力,并持续提供高水平的客户服务。该公司每年通过提供软件即服务 (SaaS) 解决方案获得超过 3.5 亿美元的收入,因此他们非常重视数字应用程序和网络服务。
解决方案
经过多年的合作,IT 团队与当地 NETSCOUT 团队建立了牢固的战略关系,在汇报了组织目标后,他们制定了一项计划,以解决公司通过重新设计的基础设施模型向客户和员工提供服务的方向。凭借在北美和欧洲的多个数据中心、许多关键应用程序(包括面向客户的几个应用程序)以及用于支持帐户和服务交付的内部应用程序,他们创建了一种双管齐下的方法来提供服务保障和安全的可见性。首先,他们在全球数据中心扩展了现有的 nGeniusONE 部署,增加了额外的 InfiniStreamNG 设备,并结合了基于软件的 nGenius 5000 系列数据包流交换机,以确保在主要数据中心需要的地方提供可见性和分析。其次,为了保护面向客户的 SaaS 产品,他们制定了一项新的安全策略来应对 DDoS 攻击威胁,利用 NETSCOUT 创新的 Arbor Cloud Connect 和本地 Arbor Edge Defense 解决方案。
运营影响
相关案例.
Case Study
Enel Secures Italian Power Generation Network
Electric energy operators around the world are working to increase the reliability and cyber resiliency of their systems. This includes Enel, a global power company that manages and monitors the Italian power grid. This grid:• Serves 31 million customers• Has a net installed energy capacity exceeding 31 gigawatts• Includes more than 500 power generation plants,including hydroelectric, thermoelectric, and wind• Is managed and monitored by Enel 24/7/365• Is operated by Terna, the Italian Transmission System Operator (TSO)Enel is responsible for the availability of the grid’s underlying ICS and industrial network. It also manages Regional Control Centers and Interconnection Centers which connect with the TSO. The TSO manages the flow of energy to the grid plus controls and remotely regulates the power generation of power plants, increasing and decreasing power production as required. The complex system of interaction and cooperation between Enel and the TSO has strong security implications as well as operational and business challenges.
Case Study
Securing the Connected Car Ecosystem
In-vehicle communications and entertainment system hosts high-value or sensitive applications. API libraries facilitate communication and sharing of vehicle data. These API libraries are vulnerable to reverse engineering and tampering attacks and may even result in loss of passenger safety. Attackers can inject malware that may be able to migrate to other in-car networks such as the controller-area-network (CAN) bus which links to the vehicle’s critical systems. Software provided for dealers to interface with cars through the OBD2 port is vulnerable to reverse engineering and tampering attacks. Hackers may be able to abuse these tools to inject malicious code into the ECUs and CAN bus. Attackers can lift the cryptographic keys used, and use that to build their own rogue apps/software. Their cloned version of the original app/software may have altered functionality, and may intend to gain access to other in-car networks.
Case Study
Secure and Cloud-based Data Marketplace
The great promise of new connected concepts of industry like 'Industry 4.0' is their ability to deliver a historically unparalleled level of responsiveness and flexibility. While modern supply chains are already heavily integrated and designed to be fluid and fast moving, a large swathe of manufacturing still remains beholden to economies of scale, large production runs, and careful preplanning.The Industrial Internet of Things (IIoT) is set to change this by allowing small-batch or even custom manufacturing on a truly industrial scale. With machines whose functions are not set in stone, but flexible and determined by their operating software and with a new form of connectivity bringing industrial engineers, product manufacturers, and end users closer together than ever before. Ad-hoc adjustments to automotive parts, for example, during active product runs or the bespoke manufacturing of custom sneakers become very viable options indeed.Much of this remains a theoretical vision, but IUNO, the German national reference project for IT security in Industry 4.0 demonstrates the new capabilities in action with a secure technology data marketplace running a smart drinks mixer.
Case Study
Expedia Hosted by 2lemetry Through AWS
Expedia is committed to continuous innovation, technology, and platform improvements to create a great experience for its customers. The Expedia Worldwide Engineering (EWE) organization supports all websites under the Expedia brand. Expedia began using Amazon Web Services (AWS) in 2010 to launch Expedia Suggest Service (ESS), a typeahead suggestion service that helps customers enter travel, search, and location information correctly. According to the company’s metrics, an error page is the main reason for site abandonment. Expedia wanted global users to find what they were looking for quickly and without errors. At the time, Expedia operated all its services from data centers in Chandler, AZ. The engineering team realized that they had to run ESS in locations physically close to customers to enable a quick and responsive service with minimal network latency.
Case Study
OTA Software Updates for Smart Energy (gridX)
gridX has a requirement for over-the-air software updates for their gridBox devices and used the Yocto Project for their builds. The driver for the requirement was having the ability to quickly support new features, as well as deploying bug fixed and path known security vulnerabilities. New software updates with a US stick manually to all gridBox devices in the field would be prohibitively expensive and labor-intensive.
Case Study
Transformed IT Infrastructure Improves Business Agility
A global security, storage, and systems management software provider planned to demerge into two separate companies. To prepare, it undertook a major overhaul of its IT infrastructure and operations strategy. A key requirement: streamlining the Hosting Group, which handled compute, storage, and middleware operations. These functions had grown complex and had a wide geographic distribution. The company planned to bring them under closer in-house management.The company looked to increase its business agility so it could quickly and creatively respond to customer demands with improved internal collaboration and optimized go-to- market and IT service delivery capabilities. Modernizing IT functions, and making them more responsive, was critical to achieving these goals.