Cisco Sona


Published on

New trends on Networking integration. Intelligent Information Networking

1 Like
  • Be the first to comment

No Downloads
Total views
On SlideShare
From Embeds
Number of Embeds
Embeds 0
No embeds

No notes for slide
  • Paul & team to supply scripting
  • Cisco Sona

    1. 1. SONA: ENTERPRISE ARCHITECTURE FOR A REAL-TIME WORLD William Ruh, Senior Director Cisco Systems
    2. 2. Today’s Business Imperative: Real-Time Interactions Fast Faster Real-Time PRODUCTION TRANSACTIONS INTERACTIONS
    3. 3. The Real-Time Supply Chain Production Transactions Interactions Monitoring local operations Limited visibility , monthly planning cycle Just-in-time inventory management Real-time to sense, decide and respond Web-based collaboration across value chain Fast Faster Real-Time
    4. 4. <ul><li>Business Need </li></ul><ul><li>Reduce transportation costs, spoilage from changed orders </li></ul><ul><li>Installed GPS-enabled logistics system to link delivery trucks and control center </li></ul><ul><li>Impact </li></ul><ul><li>Re-route dynamically based on up-to-the-minute customer needs </li></ul><ul><li>Improved customer satisfaction and increased revenue by 15% </li></ul><ul><li>Projected $100 million reduction in operating expenses </li></ul>Supply Chain Interactions Cemex Optimized Cement Delivery
    5. 5. Industry Inflection Points Historically Drive New Architectures Source: Gartner, Cisco NETWORK OF NETWORKS Pervasive, open networks enable client-server to extend beyond corporate boundaries (TCP/IP) INTERNET SERVICE ORIENTED New Network Architecture The network and applications work together as an integrated system (messages) INTELLIGENT INFORMATION NETWORK PACKET NETWORKS CLIENT-SERVER Demand for networks to connect multivendor devices (packets) Integrated system for terminal to mainframe connectivity (VTAM) PROPRIETARY NETWORK MAINFRAME We Are At A New Inflection Point
    6. 6. Addressing a Market in Transition <ul><li>Dramatic growth in number of applications in the enterprise (from 50 to 500) </li></ul><ul><li>Transition from monolithic apps to SOA (not 500 apps, but 2,500 “application services”) </li></ul><ul><li> Exponential growth in application message traffic </li></ul>Message Traffic Integration Costs <ul><li>Growth in number, cost, and complexity of systems to enable application integration and security </li></ul><ul><li>“ Conga line” of appliances, new 1RU, 2RU devices </li></ul><ul><li>Management headache, high operations/ people costs </li></ul>
    7. 7. Network = Most Scalable Platform Since the Microprocessor Services Services Enterprise Commercial Service Providers Home Voice Data Video Mobility
    8. 8. Cisco’s 3–5 Year Technology Vision: The Intelligent Information Network Time Network Intelligence The Intelligent Movement of Data / Voice / Video Across a System of Networks INTEGRATED TRANSPORT INTEGRATED SERVICES Virtualized Resources and Services INTEGRATED APPLICATIONS Network-Enabled Applications PHASE 1 PHASE 2 PHASE 3
    9. 9. Cisco’s Technology Strategy Three Components – No Compromises Intelligent Information Network Resilient design Integrated security and management Adaptive system functionality Programmable ASICs Distributed architecture Endpoint-to-endpoint performance Future-proof architecture Investment protection Integrated technologies FASTER LASTING SMARTER Global Systems Approach
    10. 10. Faster Custom silicon as advanced as recognized industry players # Transistors (Million) Feature Size/ # Metal Layers Chip Size (mm2) Chip 42 25 37.5 29 50 91 56 97 0.18  /6M 0.18  /6M 0.18  /6M 0.15  /7M 0.18  /6M 0.18  /6M 0.13  /7M 0.18  /6M 217 300 128 210 243 180 334 350 Pentium4 Itanium Athlon Ultra-III PPE FFE Metro NT3
    11. 11. Networked Resources Come In Fixed Packages Memory Processing Storage I/O Networked Infrastructure Component
    12. 12. Duplicated, Isolated, Wasted Resources Multiple Components Under-utilized Capacity Memory Processing Storage I/O
    13. 13. Virtualization Allows You to Treat Your Networking Resources as Shared Pools Memory Processing Storage I/O Memory Processing Storage I/O
    14. 14. Resources Can Be Brought Together On Demand Memory Processing Storage I/O
    15. 15. Virtualization Lets You Overcome Physical Boundaries and Eliminate Waste Virtual Networked Infrastructure <ul><li>Consolidated, policy-based management </li></ul><ul><li>Simpler alignment of IT resources to business requirements </li></ul>Memory Processing Storage I/O
    16. 16. Virtualizing the Data Center Processor Virtualization Storage Virtualization File Virtualization Network Virtualization Service Virtualization Virtualization Virtual “Backplane” Between All Resources Utility Network Processor Pool Networking Pool Storage Pool INTELLIGENT SAN SWITCHING Replication NAS Volume Mgmt. Backup Assist INTELLIGENT ETHERNET SWITCHING FW IDS SSL VPN SLB Blade Servers DB Servers Web,E-mail Servers INTELLIGENT SERVER SWITCHING
    17. 17. AON: Network Speaking the Language of Applications APPLICATIONS PACKET NETWORKING Business Applications Application Infrastructure APPLICATION-ORIENTED NETWORK Packet Network ERP WEB MFG FIN CRM SCM INTELLIGENT NETWORKING
    18. 18. <ul><li>Network operations on application messages: </li></ul><ul><ul><li>Log </li></ul></ul><ul><ul><li>Route </li></ul></ul><ul><ul><li>Transform </li></ul></ul><ul><ul><li>Validate </li></ul></ul><ul><ul><li>Notify </li></ul></ul>Enabling Real-Time Application Monitoring Through the Network POLICY-BASED APPLICATION ORIENTED NETWORKING Application messaging read by the network ABC Co $25,000 Urgent 2 days Customer Order Order Entry Finance Normal Approval Exception Approval Shipment Billing 1011010 1011010 1011010 1011010 1011010 1011010 1011010 1011010 PURCHASE ORDER
    19. 19. Cisco AON Core Capabilities Business Event Visibility Application-level Security Intelligent Messaging <ul><li>Reliable messaging </li></ul><ul><li>Content based routing </li></ul><ul><li>Transformation </li></ul><ul><li>Protocol switching </li></ul><ul><li>Message distribution </li></ul><ul><li>Message load balance </li></ul><ul><li>Authentication </li></ul><ul><li>Authorization </li></ul><ul><li>Encryption/Decryption </li></ul><ul><li>Data integrity/ non-repudiation </li></ul><ul><li>Digital signatures </li></ul><ul><li>Centralized PKI mgt. </li></ul><ul><li>Event capture, filtering </li></ul><ul><li>Logging for audit </li></ul><ul><li>Automatic notification </li></ul><ul><li>Policy controlled </li></ul><ul><li>Feed to dashboards </li></ul><ul><li>Link to Network events </li></ul><ul><li>Hardware Acceleration (SSL, Crypto, XML) </li></ul><ul><li>Message level Caching and Compression </li></ul><ul><li>High Availability, Failover, Load Balancing </li></ul>Application Optimization Extensibility <ul><li>ADK (for custom adapters) </li></ul><ul><li>SDK (for custom bladelets) </li></ul><ul><li>AON Technology Partners </li></ul>
    20. 20. Application Security Gateway Use Case: Cisco IT ( <ul><li>Secure, integrated entry point for all Cisco online B2B orders </li></ul><ul><li>Lower cost: one box </li></ul><ul><li>Multiple application-level security functions </li></ul><ul><ul><li>Log </li></ul></ul><ul><ul><li>Validate messages </li></ul></ul><ul><ul><li>Authenticate/Authorize </li></ul></ul><ul><ul><li>Manage digital certificates/ keys </li></ul></ul><ul><ul><li>Verify digital signatures </li></ul></ul><ul><ul><li>SSL sessions based on application ID </li></ul></ul>AON
    21. 21. CPG Supplier #1 RFID Tag Read CPG Supplier #2 RFID Tag Read WMS Filtering and Aggregating RFID Messages at the Edge for Retail Co., Medical Products Co. AON in ISR AON in Cat6K, 7600 TAG TAG TAG TAG TAG TAG TAG TAG TAG TAG TAG TAG <ul><li>Event aggregation </li></ul><ul><li>Message logging </li></ul><ul><li>Content-based routing </li></ul><ul><li>Message copy </li></ul><ul><li>Digital Signature </li></ul><ul><li>Logging </li></ul><ul><li>Partner Integration </li></ul><ul><li>Application Level Event (ALE) Filtering </li></ul><ul><li>Message-level Security </li></ul><ul><li>Reliable Messaging </li></ul><ul><li>Reader Virtualization and Management </li></ul>
    22. 22. AON: Shared SOA Infrastructure Services addressing Deployment Challenges PACKET NETWORK SERVICE PROVIDERS SERVICE CONSUMERS Business Processes Mobile Apps Portals Dashboards APPLICATIONS Operational Benefits Hardware Acceleration, Pervasive Location, Availability, Manageability BEA SAP IBM MS Oracle Sun Shared SOA Infrastructure Services (Messaging, Logging Transformation, Security, Protocol Bridging, Reliable Delivery, Rules-based Routing, Monitoring SLAs, Events) Mainframe .NET Java Packaged Apps Pervasive, Universally Shared, Reusable Utilities in the Network APPLICATION- ORIENTED NETWORK Policy Controls Flexible, Real-time, Distributed Enforcement
    23. 23. <ul><li>Logging, Auditing </li></ul><ul><li>Translation/ Protocol Switching </li></ul><ul><li>Message Transformation </li></ul><ul><li>WSDL Filtering </li></ul><ul><li>Rules-based, Content-based Routing </li></ul><ul><li>Reliable Delivery </li></ul><ul><li>Monitoring </li></ul><ul><li>Caching </li></ul><ul><li>Load-balancing and Failover </li></ul>AON as Web Services Intermediary Browser-based Apps (J2EE) Trading Applications HR Applications Business Process Engine Branch Office SOAP-Compliant Client Apps (VB) External Web Services Customer Apps Back Office SOAP-Compliant Client Apps (VB, J2EE) Web Service Interfaces
    24. 24. AON as XML/ Web Services Security Gateway 2. Service Provider JAVA/Apache AXIS 1.1 Client Service Provider SOAP .NET Endpoint AON Certificate Generation/ Import 2. Decrypt SOAP Request Message data field, Log and Sign message body Encrypt SOAP Response message data field SOAP/HTTP SOAP/HTTP 1. Validate part of SOAP Request Message against its XSD schema 1. Service Provider SOAP Client <ul><li>Schema Validation </li></ul><ul><ul><li>XSD schema validation (partial document) on incoming SOAP request message identified by XPath expression </li></ul></ul><ul><ul><li>Forward valid SOAP request message to endpoint, discard invalid messages </li></ul></ul><ul><li>Encryption/ Decryption </li></ul><ul><ul><li>WSS standard field-level encryption/ decryption </li></ul></ul><ul><ul><li>Interoperates with SOAP/ Apache AXIS 1.1 client implementation of WSS </li></ul></ul><ul><li>Digital Signatures of SOAP request message body </li></ul><ul><li>Logging of meta-data about the SOAP request message </li></ul>3. Encrypt SOAP Response Message data field
    25. 25. Implementing IIN….Enterprise Cisco Service-Oriented Network Architecture Server Storage Clients Application Services Infrastructure Services Devices Application Layer Interactive Services Layer Networked Infrastructure Layer Places In the Network Security Mobility Storage Voice & Collaboration Compute Identity Business Applications Collaboration Applications PLM HCM Procurement SCM ERP CRM Instant Messaging IPCC IP Phone Video Delivery Meeting Place Unified Messaging Campus Branch Data Centre Enterprise Edge WAN/ MAN Tele- worker Middleware and Application Platforms Cisco Offerings
    26. 26. Interactive Services Layer Customer Value and Cisco Differentiation APPLICATION SERVICES Application Delivery & Optimization Application-Oriented Networking <ul><li>Intelligent message routing (translation, transformation, reliable delivery) , SOA support </li></ul><ul><li>Application-to-application security </li></ul><ul><li>Application message/ business event visibility and responsiveness </li></ul><ul><li>Application Velocity System </li></ul><ul><li>Wide Area Application Services </li></ul><ul><li>Content Services Switch/ Content Services Module </li></ul><ul><li>Application Control Engine </li></ul>SECURITY SERVICES <ul><li>App security </li></ul><ul><li>VPN / SSL </li></ul><ul><li>Virtual firewalls </li></ul><ul><li>Anti-X </li></ul><ul><li>DDoS </li></ul><ul><li>NAC </li></ul><ul><li>HTTP inspection </li></ul>MOBILITY SERVICES <ul><li>Indoor </li></ul><ul><li>Outdoor </li></ul><ul><li>Metro area </li></ul><ul><li>Location based roaming </li></ul><ul><li>Voice </li></ul>STORAGE SERVICES <ul><li>VSAN & IVR </li></ul><ul><li>Data replication </li></ul><ul><li>Remote backup </li></ul><ul><li>Tape acceleration </li></ul><ul><li>Point in time copy continuous data protection </li></ul>IDENTITY SERVICES <ul><li>802.1X </li></ul><ul><li>RADIUS </li></ul><ul><li>ACLs </li></ul>COMPUTE SERVICES <ul><li>RDMA </li></ul><ul><li>Server virtualization </li></ul><ul><li>I/O virtualization </li></ul>VOICE SERVICES <ul><li>IPT </li></ul><ul><li>E911 </li></ul><ul><li>Presence Services </li></ul>INTERACTIVE SERVICES LAYER INFRASTRUCTURE SERVICES Identity Services Compute Services Voice & Collaboration Services Storage Services Mobility Services Security Services Adaptive Mngmnt Services
    27. 27. The Challenge… Main office Branch office mySAP Business Suite
    28. 28. Cisco and SAP Join Forces ERP WEB MFG FIN CRM SCM SSL Intelligent Packet Network Application Oriented Network Enterprise Services Architecture Business Processes Accessible Through Enterprise Services AON ESA
    29. 29. Remote Management of Subsidiaries/Branches mySAP AON Management Console Start-up/Shut down Checking status Master data update Intercompany process Network Subsidiary: Nairobi Headquarters AON AON
    30. 30. Remote Management of Subsidiaries/Branches Subsidiary: Nairobi Headquarters mySAP Cluster AON Management Console Network AON AON Send Invoice Transformation, Protocol translation, digital signing, encryption Decrypt, & Authenticate Content Based Route to Fastest Server Process Order
    31. 31. Cisco SONA Accelerates the Network's Role in Transforming Business Processes On Demand, Adaptive Enterprise, etc. Disruptive Technologies (e.g. RFID, Infiniband) Virtualization, GRID Computing SOA SONA
    32. 32. Key Takeaways <ul><li>The network is the only common, single element that connects and enables all components of the IT infrastructure </li></ul><ul><ul><li>Only Cisco offers a comprehensive network infrastructure and intelligent networking services </li></ul></ul><ul><li>Cisco SONA enables businesses to benefit from the “network multiplier” effect </li></ul><ul><ul><li>Optimizing business processes and applications </li></ul></ul><ul><li>Cisco lifecycle services, proven enterprise architectures and experience across industries can help you meet your business imperatives in real-time </li></ul>Convergence and Integration Virtualization Automation