& cplSiteName &

Pushing Your Products to the Brink

Jeff Harris
3/9/2017
50%
50%

You cannot test everything. The test matrix of every protocol, every speed, every combination of users and every security feature -- one at a time -- would take forever. Most products undergo testing of each of their critical features in isolation, not in combinations. And when they test interfaces between their products to others, they only verify the interface functionality.

There are dozens, upon dozens, upon dozens of network security tools, monitoring/analytics tools, performance optimization tools and more. Every enterprise network is different in what tools they integrate and how they are configured, but they all face the same issue of complexity. And the increasing introduction of new devices into corporate networks only exacerbates the problem.

With this in mind, there is no substitute for testing under the most realistic conditions. Testing under nominal load conditions without including a diverse set of the latest threat conditions can lead to vulnerabilities. And a downed network is a costly one. The cost of unplanned data center outages caused by a choke point or faulty device can cost nearly $9,000 a minute.

So how do we find the problem and fix it quickly?

The importance of testing
Network architects spend a lot of time planning before implementing. They design the perfect deployment. But the reality is that it's impossible to know if a point of failure or crippling attack is just around the corner. This is especially true for networks that have evolved into an assortment of technologies old and new, as organizations incrementally modernize their infrastructures.

The smart architects will build a lab staging environment where they can test the end-to-end design. But many are not going as far as they should. They test under average load conditions, or simulate a few sets of basic attacks, pass and then claim victory. To ensure resiliency and security down the road, it takes a wide range of realistic attack flows: It takes emulating large-scale DDoS attacks, or the latest malware, and mixing that in with HTTP traffic, packetized voice traffic and streaming traffic. The more realistic your load conditions, the more confidence you will have in your results.

Fortunately, running these kinds of tests is a lot simpler than you might think.

How network equipment manufacturers find their breaking point
All network equipment manufactures test comprehensively. That does not mean that you should ignore it in your architecture, since you will often be integrating their equipment in ways they may not have even envisioned. You should test yourself and ask yourself the same questions they do:

  • How do you estimate where your network's break point might be?
  • Is there only one kind of "break" or can large-scale traffic cause just as big of a problem as attacks?
  • Is it possible to identify conditions that cause the system to get bogged down and then figure out how to compensate?

    Enterprises have access to the same test resources the network equipment manufactures use. It is a matter of scaling them properly. Learn how to leverage the same resources they do and make sure your architectures are resilient.

    Learning from the results
    Ultimately, more realistic testing will result in better standard IT operations and, in turn, lead to more efficient operations and network resiliency (read: lower opex). Cyber attacks and IT problems can happen to any business, and a lot of it is out of your control. But you can prepare. You can test, find weak spots and have a plan to address related issues as they arise. You may not be able to test every condition and scenario, but testing under realistic conditions is a good start. The network landscape is constantly changing -- from new equipment additions to updates and patches to existing equipment -- so testing using real-world scenarios has become more important than ever.

    — Jeff Harris, VP, Solutions Marketing, Ixia


    CALLING ALL TEST, ASSURANCE AND MONITORING COMPANIES:
    Make sure your company and services are listed free of charge at Testapedia, the comprehensive set of searchable databases covering the companies, products, industry organizations and people that are directly involved in defining and shaping the telecom test and measurement industry.



    (0)  | 
    Comment  | 
    Print  | 
  • Newest First  |  Oldest First  |  Threaded View        ADD A COMMENT
    More Blogs from Column
    Riverbed's Phil Harris explains how service providers are well positioned to help enterprises discover new business opportunities in IoT and throughout their cloud migration.
    With the traditional operator business dying, CSPs must adopt new operating models to deliver digital services.
    Protecting the web-scale content user experience lies in utilizing emerging analytics and automation technologies.
    Achieving the world's first interoperable 5G New Radio (NR) data connections at 3.5GHz and 28GHz.
    As networks extend into the cloud, security and monitoring need to step up their games accordingly, writes Jeff Harris of Ixia.
    Featured Video
    From The Founder
    Light Reading founder Steve Saunders grills Cisco's Roland Acra on how he's bringing automation to life inside the data center.
    Flash Poll
    Upcoming Live Events
    March 20-22, 2018, Denver Marriott Tech Center
    March 22, 2018, Denver, Colorado | Denver Marriott Tech Center
    March 28, 2018, Kansas City Convention Center
    April 4, 2018, The Westin Dallas Downtown, Dallas
    April 9, 2018, Las Vegas Convention Center
    May 14-16, 2018, Austin Convention Center
    September 25-27, 2018, Denver, Colorado
    October 23, 2018, Georgia World Congress Centre, Atlanta, GA
    November 8, 2018, The Montcalm by Marble Arch, London
    November 15, 2018, The Westin Times Square, New York
    December 4-6, 2018, Lisbon, Portugal
    All Upcoming Live Events
    Hot Topics
    Trump Says Foxconn Will Make iPhones in US
    Dan Jones, Mobile Editor, 1/15/2018
    Net Neutrality Moves Are as Futile as Trump's Comb-Over
    Iain Morris, News Editor, 1/18/2018
    Huawei, ZTE Face US Federal Ban
    Iain Morris, News Editor, 1/15/2018
    Analyst: Verizon's Fixed 5G Is a Loss Leader for Mobile
    Dan Jones, Mobile Editor, 1/16/2018
    Ericsson Lurches to $1.8B Write-Down
    Iain Morris, News Editor, 1/16/2018
    Animals with Phones
    Live Digital Audio

    A CSP's digital transformation involves so much more than technology. Crucial – and often most challenging – is the cultural transformation that goes along with it. As Sigma's Chief Technology Officer, Catherine Michel has extensive experience with technology as she leads the company's entire product portfolio and strategy. But she's also no stranger to merging technology and culture, having taken a company — Tribold — from inception to acquisition (by Sigma in 2013), and she continues to advise service providers on how to drive their own transformations. This impressive female leader and vocal advocate for other women in the industry will join Women in Comms for a live radio show to discuss all things digital transformation, including the cultural transformation that goes along with it.

    Like Us on Facebook
    Twitter Feed