Professional Documents
Culture Documents
So first off is whats the biggest trend in the campus today. And its absolutely about
mobility. Wireless originally was an overlay network from many customers. And it was
all about guess access as a convenience. But its really become an expectation of
everyone in the environment from employees to guests, shoppers, fans at stadiums,
everyone you can think about and as well talk about today, even students and classrooms
and patients and hospitals.
So its no longer a convenience. Its absolutely mission critical.
But wireless networks themselves are set and forget. Theyre very complicated. We
have radio issues. But also as customers are found, we have management issues,
organizational process changes and even thinking about how mobility changes the
business itself.
And this trend will only accelerate with the inert of things and devices growing to up to
50 billion by 2020 and continued enhancements and user expectations in terms of quality
and especially around instant access and ease of use just like in their consumer lives.
And so we all have to as a as a collective industry drive mobility across everything we
do. And a last mile delivery in the campus and the branch is essential to getting the full
value of the new wave of mobile applications and all of our mobile devices.
So if we think about what are the campus trends that are that are behind us from a
technology perspective, there is really three, one of the highlights today. The first is this
unified wired and wireless visibility. And this is all around we have siloed networks or
do we have a unified network. And this also like mobility itself is no longer an option
but a requirement. Having that standardized policy for wired and wireless LAN is
essential so that no matter which device I come in on to the network, no matter how
someone is interacting, you have the right policies around access so whether its an
HVAC system, a guest on their own iPhone device, an enterprise employee on their
laptop, you can recognize who is that user, what should they have access to, how do I
segment the traffic and to do all of this from a single pane of glass for management,
policy and quality of service and so really getting that unification in the way we approach
the network and stopping wired wireless rather as a overlay but really an essential
element of the campus.
The second is all about the wireless transition to 802.11ac and, you know, going beyond
Wave 1 and into Wave 2. We expect the 11ac to have faster adoption in previous
standards. So going from 802.11a, b, g to n and now ac, you know with all that that
alphabet soup, what we get is a step change in the ability of any application to run with
performance and confidence over wireless.
And so now, you have new used cases like video over WiFi, high density bandwidth and
high density access points. You have better reachability of as mobile devices are
moving around the environment. And so we see a huge change. Customers wanted to
future proof their networks and even new used cases being considered that can take
advantage of the 11ac transition.
And thirdly is around SDN and the campus. So SDN, software-defined networking has
been a hot topic in the industry initially around how do we get more granularity. What
were finding in the campus is this is an outstanding framework to separate control from
data and to think about how do I get key capabilities. And theres really three that we
found at HP, visibility, security and optimization and all three around using the network
infrastructure itself as opposed a collection of sensors and enforcers to drive the
invisibility, security and optimization. And so you now have new opportunities for
taking a best of breed wired and wireless approach and getting visibility across those
without any kind of overlay probes, securing the environment and extending the
distributed security into the inside of the enterprise and inside of the campus versus just
waiting and hoping that the perimeter and overlay solutions can work and finally
optimization, things like Microsoft Lync and making sure thats effective over wired and
wireless without latency or connectivity or quality issues.
And so that SDN environment overall is actually quite a large market growing to $8
billion by 20 to 17. But I think more importantly is its around the capabilities that that
framework can bring in at the campus.
And so then we come into what is converged campus. So HP has been leading in this
area for a couple of years now with unified wired and wireless. And we talked about that
as a baseline expectation. But now, as you heard, therere a lot of other capabilities that
have to be converged in not as separate overlays and not as differences but as ways to
interact and cooperate and enhance what else is going on in enterprise IT, security,
application delivery I talked briefly about those already as well as wired and wireless
management together and also even that policy management to get consistent business
level policies enforced automatically by the networks and finally accelerating mobilities
but not just unifying this for physical networks but with things like 802.11ac Wave 2 and
thinking about the campus as an end to end architecture including what is the upstream
wired implications of the change in mobility and traffic patterns. How do we do all of
that to accelerate mobility and the ubiquity of that fast and rapid access?
And so all of those pieces together is whats happening in the market that were calling
converged campus. And were building and architecting our solutions and our products
against this vision to not just unify wired and wireless but to bring in these enhanced
capabilities around security, delivery, policy and mobility acceleration.
So if we think about, you know, what does that mean for redefining the enterprise
networks, its really about simplifying and unifying this for mobile centricity, so
converging access we talked about that wired and wireless and also converging
services into the campus, treating the network as both a sensor and enforcer, so things
like I mentioned, security, visibility, optimization. Today, security is largely overlay,
separate appliances sitting on the outskirts or perimeter of the campus or datacenter and
visibility requiring, you know, new overlay probes or best efforts or manual
troubleshooting and optimization, which today is largely, you know, manually configured
static QoS policies.
You think about the new world order. We need to secure within the perimeter of the
enterprise including the campus. What if there is an infected device? Can we quarantine
it?
We need to get faster visibility thats more centered on the user and the application flow.
So someone calls a helpdesk and complains. Can we quickly and easily create a path
through the network that says where is that user and what is actually happening?
And some of our customers have even flying to us the term mean time to innocence
where a lot of times youll get a complaint that turns out not to be a network concern at
all. But its very difficult to prove that wire rapidly and to isolate what is the actual
concern and how can that be addressed.
And then finally, on optimization, its not just about static. As the world goes mobile and
more and more real time apps are run cloud native and over mobility, dynamic
optimization, not just static and based on business policy, not interfaced QoS is whats
going to be required.
Next, we have mobility solutions, things that are vertical specific and contextual. And
Ill touch on those a little bit later. And finally, we can never forget the importance of
resiliency and reliability end to end. And HP has always prided itself on quality and
system interoperability throughout the network. And thats something that will always
continue.
And as a result of this, you know when we think about how do we achieve these goals, it
has to be based on simplicity, simple architecture simply interoperated with clarity of
layers and roles. And the result for customers will be agility around being able to adapt
to new things happening in the environment, agility of the infrastructure, agility of the IT
team, trust both around security but also trusted transformation and risk mitigation as the
campus of all and finally efficiency again efficiency of both the internal IT operations
as well as just capital and financial efficiency and making sure that money is well spent
in securing and optimizing the campus network.
So we come to the converged campus portfolio and what HP is doing to make this vision
a reality. And weve got, you know, a few points here. And of course, at the end of the
day, it does come down to what is the solution that I would actually deploy.
And its all about leveraging traditional infrastructure like access switches, access points,
wireless LAN controllers, et cetera. Its about leveraging a traditional infrastructure in
new ways. And so thats where you see mobility acceleration I talked about that with
a high performance fabric within the wired infrastructure and connecting and extending
that out with policy to have a consistent user experience across wired and wireless.
Its run application optimization. And something that HP has always led on is how do we
optimize not with the network as a center but how do we optimize with applications as a
center, so something like Microsoft Lync. And instead of the network having to guess,
well, is the traffic Microsoft Lync? And if so, what should I do about it?
We let Microsoft Lync tell the network, Here I am. Heres whos engaging in a point to
point phone call. And the network then can automatically deploy a dynamic policy that
will ensure an outstanding quality of experience for the duration of that Lync call but
then tear that down immediately after and return resources and allocation of QoS to the
network.
Then moving around the visibility, maintaining continuous network uptime is essential.
And thats something that we prided ourselves on. I talked about some of the
visualization techniques that you could get in a future with SDN. But also there is the
straightforward uptime with network visibility.
Efficiency around IT operations and also economics. We at HP are architecting simpler
networks, so for example two tier instead of three tier in the campus, but also just around
how does that IT operations team work. Can we get things done easier and more simply
and focus more on business policy and less on a day to day operations?
And then finally, on a security side, its all about centralized control but distributed
enforcement. And HP wants to take the network infrastructure that exists today and use it
as a leverage point for all the other investments in security, so things like IPS. How can
you extend the reach of that capability throughout the campus to secure whats going on
for text data and keep the enterprise safe?
So that was a bit of the overview around where we stand from a vision perspective and
some of the technologies behind this. But now, I wanted to turn more towards industry
solutions and give three examples of problems that we see in the market and ways that we
think we can address some.
So starting with hospitality, this is an area where WiFi is essential. And through a
number of surveys, weve heard not only, you know, is WiFi important. But actually, 94
percent of guests consider it important, so basically everyone coming into the hotel. And
some even want things like wired internet cable to play their own content. There are
even travel sites that have toughed up to help travelers identify which hotel they should
select based on the WiFi speed.
Of course, BYOD must be supported. But how can mobile content support be allowed.
And we now have over a 50 percent so 55 percent of guests are selecting hotels based
on that content availability.
And then also you think about guest engagement through social media and analytics.
You know this may today be more on the larger hotels and casinos. But you can think
over time, the entire industry is going to be thinking around how do I understand whos
in my environment, where are they, what are they doing and how can I optimite at the
flow and presence in location of the services that Im providing to my guests, at the same
time big challenges, of course, limited budgets. But also lot of hotels are self reporting
that they cant keep up pace of guest exploitation (ph), you know, insufficient budgets but
also more importantly, theres so much complexity of trying to layer on individual
services that its really daunting.
And so we think about, well, how do we differentiate the guest experience, how do we
enhance the staff productivity through collaboration and operations and how do we make
this easy on IT for deployment and management given the realities of that front. And so
you think about things like, you know, straightforward connectivity for the business
center and the hotel. How do I get in high density WiFi for meeting rooms and lobbies,
public areas, et cetera and even things like enabling wireless POS transactions, the
implication being you can come out from behind the desk and check people in on the
floor and walk with them wherever they need to go and more beyond that, staff
collaboration, things like compliance with PCI but also using Skype for business or other
voice and collaboration tools to make sure the staff is effective and finally all of this
again with that focus on ease of management end to end unified policy that makes the
entire approach practical to do?
Taking another example on education, so little bit of different frontier. Increasingly, we
have schools providing mobile devices to their students. And many teenagers regardless
of that are bringing in their own smartphones and seem even have the BYOD trend in
schools.
In the United States, you know youll have a ton of school districts implementing one
piece of technology for every students, but at the same time a lot of challenges with the
effectiveness of education. Most eight graders want to go to college. But not all of them
can graduate from high school. And only a smaller portion here, 37 percent, say theyre
prepared to succeed in college.
And so what can IT do? Well, IT is very stressed. There are lot of devices, not enough
staff, high cost. But the same time, theyre being asked, Please help improve student
outcomes, enable new models of learning with digital interaction, get those devices that
the student have to be more effective as learning tools.
And so we worked along this to improve learning outcomes and thinking around how we
bring the classroom to the 21st century. And this is an area where HP has always been
very strong in education. And now, were taking that to the next steps.
So there is the connectivity aspect, things like high density WiFi and making sure we
support that or also going further and saying lets say we have an online test and lets say
students are taking a test on their own devices. Or lets say the teacher wants to share
resources like a printer or presentation or see what students are doing.
All of these things can now be enabled with an HP network and with overlay SDN
capabilities in a very simple way. And just as one example, you can imagine the teacher
says, All right. Its time for a test. And everyones going to do their online
assessments.
The teacher from their from their own controlled environment and console can let the
network know its time for a test. And then what happens is all the students will be
allowed to access that e-learning site for their evaluation and assessment. But they will
not be allowed to access any other sites during the exam. But going beyond the security,
the optimization policies for that test environment will be insured to guarantee a great
experience so the students dont drop during the test, which can be a major concern and
issue to have any connectivity problems in that regard. And so you can now have
students in a secure and safe environment learning what they need to do and moving
forward with e-learning and assessments.
And then well just take a third example from healthcare, you know. And healthcare, you
know, not unlike education and hospitality, therere this twin trends of increasing
exploitations but also rising costs. Healthcare costs continue to increase. Staffing
shortages including in IT is a problem.
But the population, you know, in the U.S. and more broadly is aging. Therere more
options like care delivery at home. Patients have higher expectations. And they want to
be empowered and be involved in their own care.
Patients are now looking at WebMD and even googling advice for their own care. And
so how can healthcare providers proactively engage them through social media
recognizing the mobility trends?
And so we think about all these challenges of cost and efficiency in the healthcare
system. Again, some of these capabilities that weve talked about can make a big
difference, wireless access, freeing up clinical staff to move around freely rather than be
tied to terminals, reducing medical errors by supporting obviously this, the transition to
medical or electronic health records or going further and having those health records be
available anytime anywhere thats important and even patients and guests enjoying their
stay more with wireless internet access, care teams collaborating, sharing with remote
doctors, videos, presentations, X-ray photos, et cetera so that they can really provide as a
virtual and remote team the best care possible, security and compliance, thinking about
how do I guarantee that those records in that data is protected not unlike things like PCI
compliance how do I bring in things like IPS services embedded into the network and
other aspects of device quarantine in case of an infection that I can have a stronger
security posture and also thinking about things like location based services that ties to
wireless and getting the best flow out of that environment, optimizing asset utilization
and so on so that the hospital can improve its own operations based on knowledge and
analytics that gains from the networks.
So if we come back to, you know, how do these three examples and look at what
benefits can we get from converging the campus both to improve simplicity but also to
increase our ability to get new capabilities, weve got these two sides. One is around
growth and then also thinking about the security side of that. You know, with that many
devices coming into the system in such a short period of time, how do we how do we
you know, without asking all of our students to power down and not use those devices,
how do we gracefully handle the security threats that might be that we might be facing
with that many devices and being able to just allow people to bring in their own devices,
you know, from home and be able to use those in district network? So the real the real
challenge was also capacity and the security aspect of what was happening with that kind
of growth and wireless connections.
Michael Dickman: When you started looking for a vendor and their solutions, what
were some of the key things you were looking for?
(Jeff Diche): (ph): So when we start of looking for a vendor of their solutions, the key
thing that we were looking for was a vision, an overall vision and a roadmap that each
vendor had. And what we know is from HP is that they really had a top to bottom
solution where we not only could put in the wireless infrastructure but they had servers
and, you know, the switches and, you know, that the software security.
Especially, when we are looking down the road, we were looking at as the real
interesting piece was what the software defined networking in the open architecture that
HP had. And that really getting us interested because with an open architecture solution
like SDN from HP, you know, it really gave us flexibility down the road. So no matter
what choices we made, we knew that with an open architecture, we would be able to, you
know, have flexibility for choices and growth down the road as to be to be able to
adapt to changing situations.
And so one of the things with SDN and with NetProtect the NetProtect software that
runs on SDN is that now we are looking for a security solution that would be able to
handle all of the different threats that we were seeing from all of these devices that were
on our network. And obviously, with that being into the devices, you know, going from
1,000 to 20,000, you know, you could spend a lot of money on a lot of different firewalls
and hardware types of solutions, you know, the millions of dollars, that kind of thing.
But with SDN, and what HP had to offer was the NetProtect software. We were able to
at the port level be able to handle all the threats right at the port level with all of the
devices that were connected to each access point in addition to any devices connected by
with by the wired network onto the switchboards.
And so with that, weve then had a single pane of glass that we could manage all of our
switches and all of our access points from HP using the IMC product and then on top of
that be able to handle the persistent threats that are out there with the NetProtect app
running on SDN. We were able to deploy that since we had IMC on it on a single pane
of glass being able to manage all of those places. We were able to deploy that in less
than an hour just because of the capabilities of IMC and being able to push down scripts
to just all the connections and configurations on the switches and then just a virtual host
operating system with running space operating system back on our VMware server
running on a c7000 HP c7000. We were able to then deploy the SDN controller on that
31X operating system.
Michael Dickman: Thats great. But whats been the result? Tell us about some of the
benefits youve gained with your network and how HP has helped you.
(Jeff Diche): (ph): So the results that weve had here with HP and going with the single
vendor architecture with HP switches and wireless and the open architecture SDN
solution is that, you know, now we do have a single pane of glass management system
that were able to see all of our switches and access points, over 1,000 access points and
all of the security threats that are happening all at once on this IMC management console.
And we can see, you know, the usage and, you know, what kind of bottlenecks if there
are any if and being able to handle that capacity and see what wed need instantly by
looking at this IMC console. And so that the reality is that we really have now these
challenges with what HP has been able to offer with their single solution and single
architecture solution with the HP hardware and software with SDN.
And so with the SDK that goes with the HP SDN architecture, we were able to ask the
iboss company to join in this and create an app using SDK to enhance the security and
comparable what Net Protector could do with the tipping point database.
We also now have an iboss advanced persistent threat module that runs on top of the
SDN controller as well. And that also is able to really handle the command and control
threats that are out there that you know, the SNC threats where if there is a device thats
misbehaving, the iboss the module that was developed with the SDN SDK is able to
lock down or quarantine that device, mobile device for a period of time and also then
alert on our on our consoles that we have some threats out there on some on some
similar users, handheld devices or tablets. And so that thats thats been a great
enhancement too to the overall solution.
So we really feel like weve weve got a great solution here with the single architecture
and the open architecture SDN being able to handle both the security and also this
capacity of what we need to do to handle the number of devices that were trying to
support. And of course, with, you know, that kind of an architecture too, it saved us quite
a bit of money compared to what we thought wed have to spend three years ago. We
were looking at several billion just to handle the security aspect of trying to manage this
then.
And now, with the software defined networking, SDN controller running, it were able
to for just a fraction of that cost, were able to handle all of the threats at every port
level right at the switch level. So instead of having to install multiple firewalls and other
threat management solutions, we have a single threat management solution with SDN and
NetProtect and the iboss chip (ph), our module running in SDN. So its it saved us
several hundred thousand dollars just being able to manage this with one systems and
network infrastructure manager and just a single software defined networking solution.
Michael Dickman: Thank you so much, Jeff (ph), for joining us today and sharing your
story. We really appreciate it.
(Pat Devine): OK. Excellent. At this time, Id like to thank todays speaker, Michael
Dickman, for taking the time to join us today. I also like to thank todays sponsor, HP
networks for making this event possible.
And as always, thank you for taking the time to join us today. Have a great day.
END