Intent-based Networking - Fujitsu · Explosion of data Complexity 2-3X spend on network operations vs network ... Cisco’s Intent Based Networking Shift IT Time to Business Focus

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential

Intent-based NetworkingPowered by Cisco Digital Network Architecture

Ronald Tan

Regional Sales Director

Enterprise Networking Sales

2nd November 2017


Retail Healthcare Education

Transportation Finance Government

• 40% of incumbents risk of being displaced in 5 years

• 26% more profitable business that have Digitize

• By 2020, 75% organizations will be Digitize or preparing to

Digitize

The Network is the

Cornerstone of Digital

Success or Failure

Digitization Technology Trends

- Mobility

- Internet of Technology

- Cloud

- Security

Less than 15%

organizations have a

digital ready network

Next 2 years this will

grow by 3 times

Scale Complexity Security

Scale

1 million new devices online every hour (2020)

Mobile, IoT, Cloud, AI, Machine Learning

Explosion of data

Complexity

2-3X spend on network operations vs network

80 - 95% manual operations

Dynamic user, devices, apps environnent

Security

3 months to detect breach

$4M average cost per breach

Increased attack surface and sophistication

Unprecedented Demands on the Network


Intent-based Networking with Cisco

Digital Business

Intent Context

Security

Learning

Network

Powered By Intent. Informed by Context.

SecurityMobile IoT MultiCloud


Cisco’s Intent Based Networking

Shift IT Time to Business Focus

Network

Provisioning Time

Savings

67%

Improve Issue

Resolution

80%

Reduced Security

Breach Impact

48%

Reduced Operating

Expense

61%


Business Imperatives

How do you defendagainst threats?

How do you scale for the mobility & IoT

explosion?

How deliver a great user experience?

How do you manage across a multi-cloud

world?

Security Scale Assurance Cloud

Ransomware IoT Mobility SaaS


Security


Da

taA

va

ilab

ility

Evolution of Security Threats


Secure Segmentation and Onboarding:Software Defined Access

Completely Automated | Policy follows Identity | Minimize Lateral Threat Movement

Guest Virtual Network

Group 5 Group 6

IoT Virtual Network

Group 3 Group 4

Employee Virtual Network

Group 1 Group 2

Users

Devices

Apps

Drag policy

to apply

IT Simplicity

• No VLAN, ACLs or IP Address

management required

• Single network fabric

• Define one consistent policy

Security

• Simplified Micro-Segmentation

• Policy enforcement


Seeing and Acting on ALL Threats

How Do You Provide Security While Maintaining Privacy?

Encrypted Traffic

Non-Encrypted

Traffic

of organizations are victims

of malicious activity*

80%

of attacks used encrypted

traffic to evade detection*

41%

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Confidential

Machine Learning Identifies Malware Infrastructure view of the data

Google Search

Firefox self-repair

Bestafera Malware

Encrypted Traffic Analytics

Malware in Encrypted Traffic

Security AND Privacy

Detection: 99.99% Accuracy


IoT


‘Shadow’ Internet of Things Coming to Every Business

63M network

connections per

second by 2020


Automate IoT Deployments at ScaleSoftware Defined Access

Box by BoxManual | Error Prone

AutomationScalable | Simple

Mass Scalability | Users, Device & IoT Segmentation | Policy-based Automation

2from hours

to 15 minutes

4from hours

to 5 minutes

5from hours

to 5 minutesProvisionDesign Policy


Comparison of Total Workflow Time

The Old Method The New Method

Total Workflow for One DeviceFifty Devices

25minutes50days11hours


Assurance


Where is IT Spending There Time?

Finding the Source of an issue, is a complex, end-to-end problem

WAN

Office Site Network Services DC

Client Density

Client Firmware

AP Coverage

RF Noise/Interf.

WLC Capacity

WAN QoS,

Routing, ...

WAN Uplink

Usage

Authentication

End-User

ServicesConfiguration

Addressing

Impacts Join/Roam

Impacts Join/Roam

Impacts

Quality/

Throughput

Impacts Both*Impacts Both*

Impacts

Both*

Impacts

Both*Impacts

Both*

Impacts Quality/Throughput

Impacts Quality/Throughput

Impacts Join/Roam

APs

Local WLCs

ISE

DHCP

Mobile Clients

CUCM

Prime

43%Of IT time spent

troubleshooting;

#1 consumer of time

Source: Cisco DNA Customer Survey, June 2016


Office Site Network

Services DC

WAN

Local

WLCs

APsMobile Clients

DHCP

CUCM

NMS

The Best Data: End-to-End Assurance

SFCD

CSNOW

BOX

Cloud Apps

On-boarding

& connectivity

Configuration

compliance

Visibility &

performance

Network health


DNA Center ApplianceAutomation Software Module

Assurance Software Module

Digital Network Architecture Components

DNA Center

Policy Design

ProvisionAssuranc

e

Router Wireless LAN

Controller

Access

Point

Switch

Cisco® Identity Services Engine

DNA-Ready Hardware


Cloud - WAN


Wifi @ Branch New Applications Cloud – O365

Voice Services Video Services CRMUSER EXPERIENCE

SECURED

SIMPLE yet SCALABLE

COMPLIANCE


Second Wave of SDN Is Coming to the WAN

Managing the network is getting more complex

Apps are moving to

the cloud

80/20 now becomes

20/80

Mobile/IoT device

proliferation

Collaboration

QoS

Internet edge moving

to the branch

More requirements for

security


Customers want to…

Simplify WAN/Branch

management

& Secure

Reduce WAN and

operating costs

Optimize application

experience


Market Leading Routing + SD WAN

Vedge Router + vEdge SW

DNA Center

+ SD-WAN

Leading Routing & SD-WAN Platforms

Cloud-managed & Feature-rich SD-WAN


Cisco SD-WAN

DC

IaaS

SaaS

vDC

Need Simplicity, Lower Cost, Application Experience

Users

Devices

Things

Applications

AnalyticsCloud Delivered

Top Use Cases:

• SD-WAN

• Cloud Onramp


Innovations Overwhelming the WAN

Data Center | IaaS

SaaS | vDC

Expensive Bandwidth

Up to 30%Infra spend in WAN

Device Proliferation Apps Moving to Cloud

Millions of connections every second40% 20x 4x

WAN OpEx

SavingsImproved Application

Experience More

Bandwidth

Viptela Advantage


Why Cisco – SDWAN ViptelaTrusted by Fortune 500 Enterprises

The Most-Deployed Enterprise Grade SD-WANThousands of sites, every major industry, including:

RETAIL HEALTHCARE FINANCIAL SERVICES ENERGY

Most deployed and trusted by Fortune 500 enterprises

Winning 95% of competitive POCs

Standards Compliant: …and more


The Journey to the New Network

Cisco and Partner Services Help You Make Your Transformation

Infrastructure ReadinessOpen and Programmable

Policy Based AutomationSimplify, scale network deployment for Cloud,

Mobile, IoT

Intent-based NetworkConstantly learning, adapting, protecting

Analytics for AssurancePredictive performance with machine learning

Secure FoundationRapid threat detection and mitigation


Cisco Intent Based-Networking Solutions

Users Devices Apps

Connecting Trusted Users to Trusted Devices with an Uncompromised Experience

Documents

Intent-based Networking - Fujitsu · Explosion of data Complexity 2-3X spend on network operations vs network ... Cisco’s Intent Based Networking Shift IT Time to Business Focus