Avaya Offers End-to-End Network Security Solutions for BYOD
Cybersecurity threats within organizations are on the rise, driven by increased employee mobility and bring your own device policies.
While enterprises need to look at holistic solutions to solve these security challenges (i.e., from a data as well as voice viewpoint), migrating from time-division multiplexing to SIP trunking and cloud-based communications solutions pose particular security threats to businesses as investments in SIP and Unified Communications as a Service grow exponentially.
In addition, businesses are discovering how challenging it is to develop an effective BYOD strategy. Many customers I’ve talked to don’t want to manage the overhead of virtual private network solutions and instead are moving toward a VPN-less offering—a decision that not only reduces overhead but also lessens the complexities involved in supporting BYOD policies.
Avaya has developed two cutting-edge offerings that deliver an end-to-end BYOD strategy: Defense in Depth (also known as the Castle Approach) and Defense in Breadth solutions.
Defense in Depth is a multilayered security approach that covers the voice network end to end, freeing remote workers while securing the organization’s voice and data infrastructure.
The solution begins with the Avaya Session Border Controller, which provides organizations with the ability to extend their unified communications collaboration environment outside the enterprise network securely and still deliver extended capabilities (i.e., voice, video, instant messaging and collaboration) to remote workers using a VPN-less solution with encryption for both signaling and media.
The Defense in Depth solution also allows organizations to secure their core UC infrastructure with the Avaya intrusion detection system, intrusion prevention system and SIP firewalling capabilities embedded with Avaya Session Border Controller. Furthermore, Avaya secure SIP trunking using ASBC prevents toll fraud and denial of service/distributed denial of service attacks.
With devices connecting to already-secured voice networks, Avaya applies a number of security solutions to ensure that they are authorized for the VPN-less network.
For example, the Avaya Identity Engines Portfolio delivers a single sign-on capability through Active Directory and enables fingerprint authentication for BYOD equipment that can be tied to access control, policy management and posture.
The Avaya IDE solution integrates with a Citrix (XenMobile) and other mobile device management solutions that check whether the BYOD equipment is “jailbroken” (i.e., has been tampered with to circumvent policies, procedures or protocols) and has the correct software version. With IDE, Avaya is extending the flexibility of BYOD to connect not only on premise but also from remote locations to allow employees to work from anywhere any place at any time.
The integration between Avaya SBC and IDE will be in our upcoming ASBC release 7.0 due to be out in August 2015.
The Avaya Defense in Breadth solution using Avaya Fabric Connect and Fabric Attach solution, combined with the Defense in Depth solution, provides organizations with end-to-end Avaya layered security for BYOD.
Avaya Defense in Depth and Defense in Breadth solutions focus on meeting the challenges of tomorrow, including the Internet of Things, which can allow smart devices to connect to the Internet without human intervention.
With an increasing demand for smart cities and the relevance of IOT, security does not have to be an overwhelming challenge if an effective network infrastructure is in place, consisting not only of a smart foundation that enables and accelerates IOT, but does so in the most secure manner.
Today’s legacy networks, built on a server/client topology, expose an organization’s network surface area, leaving it open to hackers who can use IP hopping to gain full exposure to the network. Fabric technology from Avaya, using an Ethernet-based topology, significantly reduces the network’s surface exposure, making it completely invisible. Avaya fabric has no IP and is based on Institute of Electrical and Electronics Engineers/Internet Engineering Task Force standards for Shortest-Path Bridging.
An enterprise end-to-end approach to network security has become a necessity, rather than a luxury, for organizations. Avaya not only delivers the best mobile and cloud-enabled communications solutions in the industry, but also offers strategies to help organizations implement them in the most secure manner.
To learn more about Avaya Defense in Depth and Defense in Breadth solutions, please contact your local account team for more information.