0
1<br />BYOD – Bring Your Own Device<br />How a Campus Nightmare Is AvertedPresented by: Michael McNameeNCAIS Innovate 2011...
2<br />Evolution of the Access Device<br /><ul><li>Ethernet
No need for QoS
One per user
IT sanctioned
Security per port
Ethernet and Wi-Fi
Data QoS
One per user
IT sanctioned
Security per user
Wi-Fi only
Multimedia QoS
Many per user
Staff & Student owned
Security per context</li></li></ul><li>3<br />Creates a New Network Imperative<br />FixedNetworkInvestment<br />0 mobile d...
4<br />Evolution of the Access Policies<br />ROLE<br />Based Access<br /><br />CONTEXT<br />Based Access<br />?<br />VLAN...
5<br />Enterprise Mobility: A Perfect Storm<br />Multimedia<br />Collaboration<br />Mobile Devices<br />Virtual Desktops<b...
> 50% of staff adopting video
Social Business: Jive, Chatter, Yammer
Connections: Lync,  Telepresence, Facetime
Virtual Desktops:45M installations by 2013
Citrix XenDesktop, VMware View</li></ul>Fortune 100<br />>80% deploying iPad & iPhone<br />Smartphones<br />289M in 2010 ...
6<br />Can I work from home?<br />No!<br />Exponential Pressure on IT Departments<br />Can I use my iPad?<br />No!<br />Ca...
7<br />Trapped Budgets in Existing NetworksNot Suited For Mobility<br />VLAN<br />100<br />VLAN<br />200<br />VLAN<br />30...
Siloed services
Built for client-server
No single view of users or devices
No context awareness</li></ul>REMOTEOFFICE<br />WIRELESS<br />WIRED<br />VPN<br />OUTDOOR<br />“Failure to put a comprehen...
8<br />Introducing Aruba MOVE™: Access Network Architecture for Mobility<br />Integrated<br />Mobility Services <br /><ul>...
9<br />New Mobility Services<br />Authorization<br />Security<br />RF<br />Management<br />Access Management<br />Industry...
10<br />New Access On-Ramps<br />Aruba S3500 Series<br />Industry’s only mobility access switch, truly unifying wireless a...
11<br />Bring Your Device to Campuswith SecurEdge Mobile Device Access Control Solution<br />End User<br />Requirements<br...
12<br />Bring Your Device to Campus<br />Device Self Registration<br />Device Visibility<br />Device Fingerprinting<br /><...
Auto-identification of user, device, application
Monitoring, reporting per user and per device</li></ul>Registration Server<br />Mobility Controller<br />802.11n AP<br />L...
Upcoming SlideShare
Loading in...5
×

Manging Student Devices on the School Wireless Network

1,017

Published on

0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
1,017
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
29
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Transcript of "Manging Student Devices on the School Wireless Network"

  1. 1. 1<br />BYOD – Bring Your Own Device<br />How a Campus Nightmare Is AvertedPresented by: Michael McNameeNCAIS Innovate 2011<br />Read more at SecurEdgeNetworks.com<br />
  2. 2. 2<br />Evolution of the Access Device<br /><ul><li>Ethernet
  3. 3. No need for QoS
  4. 4. One per user
  5. 5. IT sanctioned
  6. 6. Security per port
  7. 7. Ethernet and Wi-Fi
  8. 8. Data QoS
  9. 9. One per user
  10. 10. IT sanctioned
  11. 11. Security per user
  12. 12. Wi-Fi only
  13. 13. Multimedia QoS
  14. 14. Many per user
  15. 15. Staff & Student owned
  16. 16. Security per context</li></li></ul><li>3<br />Creates a New Network Imperative<br />FixedNetworkInvestment<br />0 mobile device,<br />4 ports / user<br />1 mobile device, <br />2 ports / user<br />2-3 mobile devices, <br />1 port / user<br />MobilityNetworkInvestment<br />2000<br />2005<br />2010<br />
  17. 17. 4<br />Evolution of the Access Policies<br />ROLE<br />Based Access<br /><br />CONTEXT<br />Based Access<br />?<br />VLAN<br />Based Access<br />SecureX <br />in 2012 ?<br /><br /><br />Device ID<br /><br /><br />The Competition<br />
  18. 18. 5<br />Enterprise Mobility: A Perfect Storm<br />Multimedia<br />Collaboration<br />Mobile Devices<br />Virtual Desktops<br /><ul><li>Custom educational multimedia apps
  19. 19. > 50% of staff adopting video
  20. 20. Social Business: Jive, Chatter, Yammer
  21. 21. Connections: Lync, Telepresence, Facetime
  22. 22. Virtual Desktops:45M installations by 2013
  23. 23. Citrix XenDesktop, VMware View</li></ul>Fortune 100<br />>80% deploying iPad & iPhone<br />Smartphones<br />289M in 2010 1B in 2013*<br />Tablets<br />54.8M in 2011 300M in 2013*<br />10x growth by 2013!<br />(*) Source: Gartner<br />
  24. 24. 6<br />Can I work from home?<br />No!<br />Exponential Pressure on IT Departments<br />Can I use my iPad?<br />No!<br />Can I video conference?<br />No!<br />Can I connect outdoors?<br />No!<br />End<br />Users<br />IT Managers<br />
  25. 25. 7<br />Trapped Budgets in Existing NetworksNot Suited For Mobility<br />VLAN<br />100<br />VLAN<br />200<br />VLAN<br />300<br />VLAN<br />400<br />VLAN<br />500<br />Manager1<br />Manager2<br />Manager3<br />Manager4<br />Manager5<br /><ul><li>Disparate networks
  26. 26. Siloed services
  27. 27. Built for client-server
  28. 28. No single view of users or devices
  29. 29. No context awareness</li></ul>REMOTEOFFICE<br />WIRELESS<br />WIRED<br />VPN<br />OUTDOOR<br />“Failure to put a comprehensive mobility strategy in place typically leads to higher cost, lower security, silo-ed solutions, and unnecessary duplication of services.”— Gartner, July 2010<br />
  30. 30. 8<br />Introducing Aruba MOVE™: Access Network Architecture for Mobility<br />Integrated<br />Mobility Services <br /><ul><li>Centralized Control</li></ul>Thin Access<br /><ul><li>Rapid Service Delivery</li></ul>Zero touch deployments <br />for BYOD, Voice, Video<br /><ul><li>Context-based Policies</li></ul>User, Device, Location and Application Aware<br />DATACENTER<br />Thin Access On-Ramps<br />REMOTEOFFICE<br />WIRELESS<br />WIRED<br />VPN<br />OUTDOOR<br />
  31. 31. 9<br />New Mobility Services<br />Authorization<br />Security<br />RF<br />Management<br />Access Management<br />Industry’s only self-registration portal for smartphones and tablets<br />Highest Security<br />Device fingerprinting<br />IPv6 certified firewall<br />Suite B encryption<br />RF Optimizations<br />Apple Facetime QoS<br />Spectrum Enhancements<br />Multicast Enhancements<br />Network Management<br />Wireless & Wired<br />Device Visibility<br />Context Aware<br />
  32. 32. 10<br />New Access On-Ramps<br />Aruba S3500 Series<br />Industry’s only mobility access switch, truly unifying wireless and wired<br />Aruba AP-134/135<br />Industry’s only Gigabit AP with <br />firewall and spectrum analysis<br />Aruba AP-175 Series<br />Aruba’s industry-leading 802.11n technology – now available outdoors<br />Aruba VIA on Mobility Controllers<br />Now available for MAC OS X<br />Aruba Instant<br />Industry’s first enterprise-grade Wi-Fi that can be setup in under 3 minutes<br />
  33. 33. 11<br />Bring Your Device to Campuswith SecurEdge Mobile Device Access Control Solution<br />End User<br />Requirements<br />IT <br />Requirements<br /><ul><li>Ready for High Density</li></ul>Fair bandwidth to all devices<br /><ul><li>Always Secure</li></ul>Protect each device user<br /><ul><li>Easy to Connect</li></ul>Device Self Registration<br /><ul><li>Quick to Troubleshoot</li></ul>Monitor and locate each device<br /><ul><li>Zero Touch</li></ul>Auto install Certificate<br /><ul><li>High Performance</li></ul>QoS for each app<br />
  34. 34. 12<br />Bring Your Device to Campus<br />Device Self Registration<br />Device Visibility<br />Device Fingerprinting<br /><ul><li>Zero IT touch,context aware access
  35. 35. Auto-identification of user, device, application
  36. 36. Monitoring, reporting per user and per device</li></ul>Registration Server<br />Mobility Controller<br />802.11n AP<br />LAN & WLAN Management<br />
  37. 37. 13<br />The SecurEdge Campus<br />Integrated Network Services<br />Highest Density Wireless LANs<br /><ul><li>Unified Wireless, Wired Access</li></ul>Mobility Services in Enterprise Cloud<br />Mobility Access <br />Switches<br />Indoor and Outdoor APs<br />Only Context Aware Access Network<br />
  38. 38. 14<br />Mobility Enables Network Rightsizing<br />Thin On-Ramps<br />Common Policy<br />Single Interface<br />VPN<br />~70% Reduction in Access Network TCO<br />
  39. 39. 15<br />Rightsizing Example:2000 Employee Organization<br />$209<br />$491<br />3-Year Access Network TCO Per User<br /><ul><li>2,000 Students
  40. 40. 300 Staff
  41. 41. 75% use laptops
  42. 42. 25% use desktops
  43. 43. 80% use smartphones
  44. 44. 30% use tablets
  45. 45. 100% need VPN
  46. 46. 30% have off campus needs
  47. 47. Guest Access
  48. 48. Phase out desk phones</li></ul>$950<br />70% Lower<br />$1,211<br />SecurEdge<br />Solution<br />Other Solutions<br />Capex<br />Opex<br />
  49. 49. 16<br />Mobility Services<br />Authorization<br />Security<br />RF<br />Management<br /><ul><li>Device & User Authorization
  50. 50. Network, User & Data Security Policies</li></ul>Network Operations<br /><ul><li>RF Visibility & Management</li></li></ul><li>17<br />Mobility Services<br />Device & User Authorization<br />RF Visibility & Management<br /><ul><li>Network, User, Data Security
  51. 51. Network Operations</li></ul>Mobility<br />Controller<br />Device & Guest Registration<br />Management<br />OnlyUnified Mobility Services in Enterprise Cloud<br />
  52. 52. 18<br /><ul><li>Support for Mobile Devices
  53. 53. Device Fingerprinting
  54. 54. Stateful QoS for Apple Facetime
  55. 55. IPv6 interfaces and routing
  56. 56. Industry’s Best Security
  57. 57. Suite B encryption for Wi-Fi and VPN
  58. 58. USGv6, ICSA IPv6 certified firewall</li></li></ul><li>19<br /><ul><li>Device Visibility
  59. 59. Search, monitor, report, troubleshoot based on device type
  60. 60. Context Aware
  61. 61. User, device, location, time visibility across the entire access network </li></ul>Network(s) Management<br />
  62. 62. 20<br />Network Access Management <br /><ul><li>Self Registration
  63. 63. Guest account delivery with SMS
  64. 64. Certificate installation on Apple iPads, iPhones, and iPod Touches
  65. 65. Easily Customize Branding
  66. 66. Optimized view for mobile devices
  67. 67. Multimedia and ad content
  68. 68. Vendor, Technology Agnostic
  69. 69. Supports all major vendors
  70. 70. Wireless/Wired; Indoor/Outdoor
  71. 71. Installation Options
  72. 72. virtual appliance
  73. 73. hardware appliance
  74. 74. 10K concurrent user sessions</li></li></ul><li>21<br />Thin Access On-Ramps<br />AP-68<br />AP-120 Series<br />AP-105<br />AP-92/93<br />NEW!<br />Wi-Fi<br />Scale<br />CAMPUS<br />NEW!<br />AP-130 Series<br />Wired<br />OUTDOOR<br />AP-175<br />SMALL OFFICE<br />S3500<br />ArubaStack<br />CAMPUS<br />NEW!<br />SMALL OFFICE<br />NEW!<br />S3500<br />600<br />HOME OFFICE<br /> & ROAD<br />RAP<br />Performance<br />
  75. 75. 22<br />Network Edge Solutions<br />Policy Enforcement<br />Policy Enforcement<br /><ul><li>Wired Access Point
  76. 76. Tunnel traffic to controller
  77. 77. Policy enforcement at controller
  78. 78. Integrated Controller*
  79. 79. Wired AP for 8 APs
  80. 80. Terminate tunnels from Wireless APs
  81. 81. Ethernet Switch
  82. 82. Layer 2 forwarding
  83. 83. Rule-based policy enforcement</li></ul>AirWave<br />Tunnel from wireless AP<br />LAN Core<br />S3500<br />Tunnel from wired port<br />MobilityController<br />* Roadmap<br />
  84. 84. 23<br />VPN for Mac OS X<br /><ul><li>Zero Touch
  85. 85. Downloaded and installed by the user
  86. 86. Automatic connections when remote
  87. 87. Seamless Mobility
  88. 88. Firewall policies tied to user role
  89. 89. Same policy as in campus, branch
  90. 90. Best in Class Security
  91. 91. Suite B encryption for 802.11i, VPN
  92. 92. IPSec VPN with SSL fallback
  93. 93. Integrates with Aruba Content Security Service</li></ul>VIA is also available for Win7 32- & 64-bit<br />
  94. 94. 24<br />Mobility Controllers<br />CAMPUS<br />Scale<br />6000 Series<br />BRANCH<br />OFFICE<br />3000 Series<br />SMALL OFFICE<br />NEW!<br />650/651<br />NEW!<br />S3500<br />620<br />Instant<br />Performance<br />
  95. 95. 25<br />Instant™ Access Points<br /><ul><li>Virtual Controller Technology
  96. 96. Adaptive Radio Management
  97. 97. Stateful firewall & rogue AP protection
  98. 98. Stateful QoS for voice & video
  99. 99. Instant WLAN Install
  100. 100. Over the air provisioning
  101. 101. Single screen user interface
  102. 102. Cloud-based Management
  103. 103. Network operations by AirWave
  104. 104. Software Upgradable to Join Controller-based WLAN
  105. 105. IAP-105: Dual radio, integrated antennas
  106. 106. IAP-92/93: Single radio external/integrated antennas
  107. 107. 16 IAPs per group</li></li></ul><li>CONFIDENTIAL © Copyright 2011. Aruba Networks, Inc. All rights reserved<br />SecurEdge Customers<br />
  108. 108. 27<br />ATB Financial<br />Unified <br />Access Network<br />Challenge<br /><ul><li>Integrate wireless and wired network access management and increase mobility for users</li></ul>Solution<br /><ul><li>WLAN at 50 branches, S3500 in evaluation
  109. 109. Aruba AirWave for centralized management</li></ul>Insert Pic<br />Result<br /><ul><li>>50% reduction in switch acquisition, deployment and cabling costs
  110. 110. Unified security policies for staff, contractor and guest access</li></ul>Insert Logo<br />
  111. 111. 28<br />Boston Medical Center<br />Unified <br />Access Network<br />Challenge<br /><ul><li>Increase visibility, control and performance for the, primarily wireless, access network</li></ul>Solution<br /><ul><li>600+ Aruba 802.11n APs for high performance WLAN for mobile device
  112. 112. Aruba S3500 in evaluation</li></ul>Insert Pic<br />Result<br /><ul><li>Critical EMR, CPOE, ED and OR application delivery over Wi-Fi
  113. 113. Single policy infrastructure for wireless and wired guest access, regulatory compliance</li></ul>Insert Logo<br />
  114. 114. 29<br />University of Tennessee<br />Unified <br />Access Network<br />Challenge<br /><ul><li>Wireless only access at residence halls, with application performance similar to wired</li></ul>Solution<br /><ul><li>2000+ 802.11n AP Aruba WLAN with Aruba S3500 in evaluation
  115. 115. Aruba AirWave for integrated management</li></ul>Insert Pic<br />Result<br /><ul><li>Reduced costs for deployment and maintenance of the access network
  116. 116. Easy of troubleshooting and planning with integrated management</li></ul>Insert Logo<br />
  117. 117. 30<br />University of California, Santa Barbara<br />Unified <br />Access Network<br />Challenge<br /><ul><li>A single policy and point of management for wired and wireless networks</li></ul>Solution<br /><ul><li>Aruba 802.11n APs and S3500s
  118. 118. Aruba AirWave for integrated management</li></ul>Result<br /><ul><li>Integrated security policies across wireless and wired access
  119. 119. Eliminate wired port VLAN requests</li></li></ul><li>31<br />SAP<br />Paperless<br />Office<br />Challenge<br /><ul><li>Access to business apps, documentation and customer information on the go</li></ul>Solution<br /><ul><li>Aruba global wireless LAN solution being designed to support more than 15,000 iPads</li></ul>Insert Pic<br />Result<br /><ul><li>Large scale test environment for SAP iOS app for SAP customers
  120. 120. Easy roll-out of new services and custom applications within SAP</li></li></ul><li>32<br />Ottawa Hospital<br />Mission Critical Mobile Apps<br />Challenge<br /><ul><li>Instant delivery of life and mission critical applications to staff, nurses and doctors</li></ul>Solution<br /><ul><li>Aruba application aware network ensuring QoS for >10,000 iPad, iPod Touch and iPhone devices by 2013</li></ul>Insert Pic<br />Result<br /><ul><li>Application quality assurance for custom Ottawa hospital iOS apps
  121. 121. Cost savings in patient care with paperless service model</li></li></ul><li>33<br />Australian Open<br />High Density Guest Access<br />Challenge<br /><ul><li>Extend WLAN coverage to support mobile devices used by the audience</li></ul>Solution<br /><ul><li>Aruba Amigopod enabling secure guest access authentication with intelligent ad content during authentication</li></ul>Insert Pic<br />Result<br /><ul><li>High performance indoor and outdoor Wi-Fi access for staff, audience, press
  122. 122. 1.6 million impressions, 4,624 users registered, 31,595 sessions</li></ul>Insert Logo<br />
  123. 123. 34<br />Liberty University<br />Video over 802.11n Wi-Fi<br />Challenge<br /><ul><li>Reduce the cost of delivering TV service to the dorms with IPTV over Wi-Fi</li></ul>Solution<br /><ul><li>Broadcast television available over 802.11n. Available across the entire 5,000 acre, 123 building Liberty campus
  124. 124. Common wireless network for data, broadcast video and voice.
  125. 125. Saved over $1M by using Wi-Fi for IPTV</li></ul>Why SecurEdge<br />We run 16 channels of standard and high definition IP Television across the entire Liberty University campus over Wi-Fi”<br /> - Jimmy Graham<br />Liberty University<br /><ul><li>Multimedia-Grade Wi-Fi: Optimized multicast, application aware QoS and RF management
  126. 126. Video Case Study: http://bit.ly/dHof8p</li></li></ul><li>35<br />University of San Diego<br />Pervasive Outdoor Wi-Fi<br />Solution<br />Challenge<br />Why SecurEdge<br /><ul><li>Connect iPads, smartphones outdoors
  127. 127. Efficient landscape irrigation
  128. 128. Public safety incident reports
  129. 129. Parking citations
  130. 130. Event ticketing and concessions
  131. 131. ~75 Outdoor APs (mix of 80, 85 & 175)
  132. 132. Wi-Fi integration with Rainbird irrigation system
  133. 133. Seamless integration with campus Wi-Fi
  134. 134. Scalable for large outdoor deployment
  135. 135. Application optimization to support a mix of apps</li></li></ul><li>36<br />Follow us! @SecurEdgeNetFor more updates on wireless design, deployment and security, follow us on twitter or read our blog at www.securedgenetworks.com<br />
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×