Design

How to simplify and secure virtualised network operations

4th June 2018
Anna Flockett
0

Largely based on hardware and operating cost savings, the business case for network virtualisation also depends on the expectations of greater flexibility and productivity. But how can operators of critical infrastructure be certain that their newly virtualised networks will deliver these benefits? A big factor in determining the overall cost savings of a virtualisation project is network operations.

Guest blog written by Jeff Gowan. 

It’s a common assumption that operational efficiency will be inevitably achieved by moving from hardware- to software-based network implementations; and that’s certainly a logical premise. For starters, functions that require manual operation will be replaced by automated processes, which would reduce the time and resources needed to perform the same task. But there is much more to consider when it comes to ensuring cost-efficient operations.

Those who manage critical infrastructure – whether it is a communications network or industrial control system – must be able to deliver the same, if not superior, level of reliability and security via a virtualized network as they have over their legacy hardware-based systems. Their ability to do so cost effectively depends on the capabilities of the virtualisation platform they choose.

Critical infrastructure operators must deliver very high availability to avoid costly down-time in their operations, and in some cases owing onerous penalties for missing service level agreement (SLA) targets. Achieving such a high calibre of reliability requires complete visibility into what’s happening in the network all the time as well as instant notifications and automated responses when faults or performance issues arise.

Another crucial aspect of operations is security. There are significant security implications as critical applications are virtualised and delivered from the network edge, rather than from a centralised data centre. Edge or on-premise locations are physically less secure than a massive data centre. That means security needs to be built into the hardware as well as baked into the software, so that operations staff can effectively protect the network and the applications running on it.

But virtualisation platforms that are built using the latest OpenStack distribution or that were originally designed for an IT network environment are not optimised to deliver these basic network monitoring and security capabilities.

That’s where the Wind River Titanium Cloud portfolio of virtualisation platforms comes in. Titanium Cloud is designed to meet these carrier-grade and industrial control system requirements so that operators can indeed achieve operational cost savings from virtualisation implementations.

In terms of performance and fault management, the platform provides a remote monitoring dashboard that shows system alarms, analytics, and tools, so that that operations teams are aware of issues before they can affect services. Importantly, measurements are collected for physical nodes and resources as well as virtual hosted resources. The platform also comprehensively logs all significant events. In addition, there are extensive management interfaces with open APIs that can be integrated with orchestration engines.

When it comes to security features, Titanium Cloud is comprehensive. At the hardware level, the platform provides Transport Layer Security (TLS) with certificate storage in Trusted Platform Module (TPM) 2.0 hardware to protect management operations. It also features the virtual TPM, which secures the platform software just as a guarded data centre protects physical equipment. Titanium Cloud leverages Intel’s Enhanced Platform Awareness and supports Unified Extensible Firmware Interface (UEFI) secure boot, cryptographically signed images and network-level Authentication, Authorisation and Accounting (AAA).

Wind River has only scratched the surface here on how Titanium Cloud is optimised for cost efficiency to deliver reliable, secure critical applications. For more detail, please see its recent white paper and video series: 'Virtualisation The Easy Way.'

Courtesy of Wind River.

Featured products

Product Spotlight

Upcoming Events

View all events
Newsletter
Latest global electronics news
© Copyright 2024 Electronic Specifier