Sec conf london_v07

•

0 likes•293 views

What will it take to make virtualized LTE security a practical option? Stoke examines the drivers, roadblocks and milestones in this presentation first given in London in May, 2014

Technology

© 2014 Stoke
Securing the LTE Core – the Road
to NFV
| Proprietary and Confidential
Dilip Pillaipakam
Vice President, Product Management and Marketing

© 2014 Stoke
The LTE Security Framework
2
S9
S1-C
Internet
S1-U S5/S8
S6A
Gx
Gz/Gy
Other LTE
Network
S11
RAN-Core
Border
SEG
The border between RAN and Core (S1) requires protection against specific risks to
critical infrastructure at that interface
Control Plane Functions
-  IKE
-  AAA
-  Routing
DRA
SBC
IMS
Core
SGW
MME
CSCF
Internet Border
Policy / Charging
Control
SGi
Data Plane Functions
-  Forwarding
-  QoS
-  ACL
-  Packet Inspection
Device and
Application

© 2014 Stoke
LTE Security at the S1 Link –
Emerging Trends
3
Challenge Requirements
Stronger Security
•  2048 bit key length
•  PKI
Signaling Protection -
New Threat Vectors
•  Protect core - exponential transaction increase
•  S1 protocol/state validation
VoLTE Rollout
•  Low latency transport
•  Sub-1 second recovery
Elastic Deployment
•  Virtualized security gateway on COTS
•  SDN integration
Scalable Small Cell
Deployments
•  Dense session aggregation
•  Intelligent load balancing

© 2014 Stoke
Use Case: Macro and Small Cell
Security
4
»  Unsecured backhaul
»  Rapidly increasing throughput
»  High tunnel density
»  Ultra-low latency
»  Directly impacts subscriber QoE
44
MME
SGW
Office
Home
Outdoor
Metrocell
Small
Cells
4G LTE
EPC
Millions of
Tunnels
MME
SGW
EPC
E2E Latency Budget = 100 ms
VoLTE:
Low Latency
Small Packets
High Bandwidth

© 2014 Stoke
Office
Home
Outdoor
Metrocell
Small
Cells
Use Case: Signaling Overload
»  Signaling Overload Threats
»  Application initiated
»  Compromised eNodeBs
»  Natural disasters
»  Prioritized Traffic
»  Already connected subscribers
»  Specific eNodeBs
SGW
4G LTE
EPCMillions of
Service
Requests
MME
Application
Update
Server
QoE: Prioritize
5

© 2014 Stoke
The LTE Security Framework
vSEG Phase 1
6
S9
Internet
S5/S8
S6A
Gx
Gz/Gy
Other LTE
Network
S11
RAN-Core Border
Control Plane Functions
-  IKE
-  AAA
-  Routing
DRA
SBC
IMS
Core
SGW
MME
CSCF
Internet Border
Policy / Charging
Control
SGi
Data Plane Functions
-  Forwarding
-  QoS
-  ACL
-  Inspections
Device and
Application
»  vSEG on COTS hardware on
Linux
»  Similar deployment and
operational model as today
»  Benefits:
»  Removes restriction of physical
chassis
»  scale to very large number of line
cards
SEG
v-SEG
(DP)
v-SEG
(CP)

© 2014 Stoke
The LTE Security Framework
vSEG Phase 2
7
Other LTE
Network
SGW
MME
DRA
SBC
CSCF
Internet Border
Policy / Charging Control
Internet
S1-C
S1-U
Internet
V-EPC
RAN-Core Border
v-SEG
(DP)
v-SEG
(CP)
Security
Gateway Cloud
QoS InspectionACLs
IKE AAA Routing
SEG Controller
SDN
Controller
»  Disaggregate control plane and
data plane functions to scale each
function independently.
»  Can be integrated with Operator's
SDN infrastructure
»  Benefits
»  Fully elastic on-demand
deployment
»  Capacity can be added dynamically
by adding more service nodes
»  Scale some functions
disproportionately

© 2014 Stoke
Conclusions
8
»  Each domain of the LTE Security Framework provides
protection against specific threats and therefore has unique
functional and performance requirements
»  S1 Link has stringent performance and latency requirements
»  Purpose built platforms will remain the mainstay for next few
years
»  Virtualization has benefits, but is not the answer for all use
cases
| Proprietary and Confidential

What's hot

Network Slicing overview_v6

Marie-Paule Odini

Realising the Immediate Benefits of SDN and NFV

Napier University

In this lecture we will present an overview of different ways to get more visibility into the data center network. In-band telemetry, traditional packet monitoring tools and unique Switch capabilities are generating data how the network can generate valuable data on both data plane and control plane and how this data collection can be formed into meaningful results. The session will cover the different network components in the data center from The Switch ASIC to Software up to the management tools

PLNOG22 - Avi Alkobi - Network Telemetry, Visibility and all in between, can ...

PROIDEA

NovoNet Vision and Operators' Perspective for ONAP

ITU

5G Microservices

Lumina Networks

Aci presentation

Joe Ryan

Introduction to Tungsten Fabric and the vRouter

Liz Warner

Fostering the Evolution of Network Based Cloud Service Providers.

Cisco Service Provider

SDN/NFV architecture vision and reality

Colt Technology Services

Relatore: Andrea Dainese, Network & Security Architect, speaker, advisor, Cisco CCIE #38620 E’ un dato di fatto che oggi le infrastrutture stanno diventando sempre più complesse e difficili da mantenere. Ed è ancora più difficile e costoso trovare risorse in grado di operare e far evolvere correttamente reti e datacenter. Vedremo assieme come e perchè siamo arrivati a dover introdurre tecnologie complesse, quali scelte abbiamo per approcciare consapevolemtne il problema e come sta evolvendo la professione del networker, in senso lato. Concluderemo con una panoramica sulle soluzioni disponibili nel mercato, focalizzandoci sulle peculiarità di Cisco ACI, in modo da poterla valutare e paragonare correttamente.

CisCon 2018 - SDN, complessità e TCO: non c’è un modo più semplice?

AreaNetworking.it

Microservices K8S

Lumina Networks

Revolutionizing IT and Telecom Industry with OpenStack, SDN and NFV

PLUMgrid

About the European Advanced Networking Test Center  Vendor independent network quality assurance since 1991  Unique technical expertise of network design and testing in latest technology areas  20-year testing experience matches highest quality standards. Cisco’s NSO is an orchestration tool  Enabled by Tail-f division of Cisco  Interfaced with two layers  Northbound programmable interface to service tools (CLI, JSON- RPC, REST...)  Southbound network elements interface (NETCONF, SNMP...) EANTC verification areas of Cisco’s NSO  Service enablement, restoration, verification  Configuration push, update, repair and error mitigation  Multi-vendor capabilities

Independent Validation of Cisco’s Multi Vendor Support

Cisco Service Provider

Service providers and the broader vendor community have made progress in virtualizing key vCPE network functions. Concurrently, there is a strong push to bring these functions to the cloud. This session will discuss how Openstack is enabling this transformation and the role played by technologies like SDN and NFV. It will also discuss the latest advances in the networking stack of the Linux kernel which further enable these network functions to run in a fully distributed architecture. Finally, it will tie all these concepts together proposing a model for implementing virtual CPE services.

Implementing vCPE with OpenStack and Software Defined Networks

PLUMgrid

SDN-Based Enterprise Connectivity Service

Open Networking Summit

Relatore: Fausto Vaninetti, Consulting Systems Engineer in Cisco Systems, Inc. L’avvento dello storage all flash, nuove regolamentazioni quali GDPR e la continua pressione verso un datacenter sempre disponibile hanno reso gli analytics per ottimizzare la gestione IT un elemento imprescindibile per molte aziende. I nuovi switch Fibre Channel 32G della serie Cisco MDS 9000, abbinati alle piu’ recenti versioni del Sistema Operativo NX OS, forniscono delle funzionalita’ integrate di analytics e telemetria che possono essere esposte tramite interfaccia a comandi, interfaccia grafica Datacenter Network Manager o strumenti di terze parti. Questo intervento si propone di far luce su questa nuova funzionalita’ unica nel suo genere, esplorandone brevemente i casi d’uso e le modalita’ di implementazione.

CisCon 2018 - Analytics per Storage Area Networks

AreaNetworking.it

Open Network Edge Services Software for 5G and Edge

Liz Warner

Using Microservices Architecture and Patterns to Address Applications Require...

Prem Sankar Gopannan

Intelligent IoT gateway on openwrt

Mateusz Babiarz

M-CORD cloud-native

Jian-Hao Chen

What's hot (20)

Network Slicing overview_v6

Realising the Immediate Benefits of SDN and NFV

PLNOG22 - Avi Alkobi - Network Telemetry, Visibility and all in between, can ...

NovoNet Vision and Operators' Perspective for ONAP

5G Microservices

Aci presentation

Introduction to Tungsten Fabric and the vRouter

Fostering the Evolution of Network Based Cloud Service Providers.

SDN/NFV architecture vision and reality

CisCon 2018 - SDN, complessità e TCO: non c’è un modo più semplice?

Microservices K8S

Revolutionizing IT and Telecom Industry with OpenStack, SDN and NFV

Independent Validation of Cisco’s Multi Vendor Support

Implementing vCPE with OpenStack and Software Defined Networks

SDN-Based Enterprise Connectivity Service

CisCon 2018 - Analytics per Storage Area Networks

Open Network Edge Services Software for 5G and Edge

Using Microservices Architecture and Patterns to Address Applications Require...

Intelligent IoT gateway on openwrt

M-CORD cloud-native

Viewers also liked

A guided tour to the internet of things in the sim connected world

Mary McEvoy Carroll

"Our vision is to enable telecom operators to transform their business model and service delivery through innovation. Working with innovators like Connectem, our telecom technology team aims to help our carrier partners transform their networks to handle signaling storms and future network loads through the use of our virtualization enablers." — Patrick P. Gelsinger, Chief Executive Office, VMware The Connectem Virtual Core for Mobile (VCM) solution uses network functions virtualization (NFV) to enable mobile operators to address challenges related to packet core networking, such as managing peaks and troughs of load on the EPC for both control plane and data plane surges. The VCM solution uses a unified, centrally-managed, elastic, scalable, and robust virtualization platform that is powered by VMware® . This document describes the Connectem VCM solution, powered by VMware vSphere®, and the extremely promising results it has achieved. In lab tests, VMware and Connectem were able to demonstrate that the optimized performance of LTE Evolved Packet Core (EPC) control plane processing on standard, commercial-grade servers and virtualization software is greater than what is available today on purpose-built systems and software.

Connectem VCM powered by VMware - partner brief

Mary McEvoy Carroll

Escaleras 2

rodrigogonzalezalfonso

Ventanas

rodrigogonzalezalfonso

Sesión 13 ejercitación

Andrés García

Sesión 15 ejercitación

Andrés García

Cartonlab: cardboard ecodesign

CartonLab

Ecodesign with cardboard.CartonLAB Co&Co Bilbao 26 02_2014

CartonLab

Lessini Durello: Autentico Autoctono

AIS Como

Riesling: nobiltà e lignaggio al servizio del terroir

AIS Como

The Internet of Things is going to make shopping a far more personalized experience. Stores will be able to tailor your shopping experience to your specific needs through the use of real-time analytics. They will be able to predict what you want, how often you want it and where you will want to buy it. Stores will use sensors to track both customer movement and inventory. Facial recognition will be used to create a shopper profile to identify both high value customers and known shoplifters. The data from these devices will allow stores to operate at a far more efficient level and personalize customer recommendations much more effectively than ever before. This, and more, adds up to the new face of the connected retail environment

What is the connected retail environment?

Mary McEvoy Carroll

The LTE S1 link (between the RAN and EPC) is a new domain, different to all other network interfaces where add-on security is applied. Network elements developed for the SGi (Core to Internet) or S8 (Operator-to-Operator) interfaces have unique capabilities within that environment, but do not possess the processing capacity, low latency, flexibility, and interoperability needed at the specific location of the S1 link. The S1 interface carries all data plane traffic and critical control plane traffic and the Security GW is the only network element with aggregate visibility into both. Control of this interface can protect EPC elements from signaling overload resulting from extraordinary operating conditions or from malicious attack. In this white paper, Stoke offer guidelines about the criteria for selection of an LTE security solution, and provide detailed deployment and testing criteria to help operators avoid such issues. This paper provides insight into why and how operators successfully secure their LTE networks from initial LTE launch, including best practice guidelines for designing, testing, and deploying the LTE security gateway (SEG). Part I describes LTE network vulnerabilities and threats and the rationale for securing the S1 interface from launch. Part II provides design, test, and deployment recommendations, based upon Stoke’s combined experience with multiple security gateway deployments.

Secure from GO: Design considerations for the integration of security into L...

Mary McEvoy Carroll

In our 2015 predictions, published at the end of 2014, Argyle Data suggested that 2015 would be the year of native Hadoop applications. This has proven to be the case. The validity of this prediction was confirmed by the focus around Hadoop applications at the Strata conferences this year and in multiple other forums and publications. In light of the growing focus on Hadoop, we have compiled a list of the top 20 most influential individuals around the space.

Hadoop top 20 influencers of 2015

Mary McEvoy Carroll

Lte transport requirements

Mary McEvoy Carroll

Infonetics and Stoke webinar: Security at the speed of VoLTE

Mary McEvoy Carroll

Lte security concepts and design considerations

Mary McEvoy Carroll

Viewers also liked (16)

A guided tour to the internet of things in the sim connected world

Connectem VCM powered by VMware - partner brief

Escaleras 2

Ventanas

Sesión 13 ejercitación

Sesión 15 ejercitación

Cartonlab: cardboard ecodesign

Ecodesign with cardboard.CartonLAB Co&Co Bilbao 26 02_2014

Lessini Durello: Autentico Autoctono

Riesling: nobiltà e lignaggio al servizio del terroir

What is the connected retail environment?

Secure from GO: Design considerations for the integration of security into L...

Hadoop top 20 influencers of 2015

Lte transport requirements

Infonetics and Stoke webinar: Security at the speed of VoLTE

Lte security concepts and design considerations

Similar to Sec conf london_v07

Securing the shared network

Mary McEvoy Carroll

Securing the Onion: 5G Cloud Native Infrastructure

MyNOG

New world IP traffic, new dimensions for Diameter management

Innovation Assured

New world IP traffic, new dimensions for Diameter management

Innovation Assured

Most 5G networks are built in fundamentally new ways, opening new hacking avenues. Mobile networks have so far been monolithic systems from big vendors; now they become open vendor-mixed ecosystems. Networks are rapidly adopting cloud technologies including dockerization and orchestration. Cloud hacking techniques become highly relevant to mobile networks. The talk dives into the hacking potential of the technologies needed for these open networks. We illustrate the security challenges with vulnerabilities we found in real-world networks.

[cb22] Tales of 5G hacking by Karsten Nohl

CODE BLUE

LTE: Building next-gen application services for mobile telecoms

NuoDB

Network Innovations Driving Business Transformation

Cisco Service Provider

PLNOG 7: Klaudiusz Staniek - MPLS a QoS - praktycznie

PROIDEA

Colt SD-WAN experience learnings and future plans

Colt Technology Services

Module 2-lte architecture and protocol

ravikbdayal

Cisco connect montreal 2018 sd wan - delivering intent-based networking to th...

Cisco Canada

BRKCRS-2110.pdf

Asif Qureshi

[Cisco Connect 2018 - Vietnam] Satit adirek hn under_the_hood_sdwan deep_dive

Nur Shiqim Chok

Edge / Far Edge: Convergent Access & Transport Infrastructure

Dmitry Timerkhanov

CTIA 2010 Corporate Overview

Continuous Computing

Cisco connect winnipeg 2018 gain insight and programmability with cisco dc ...

Cisco Canada

Cisco Connect Toronto 2018 sd-wan - delivering intent-based networking to t...

Cisco Canada

Introduction to Segment Routing

MyNOG

Skt.2013.innovation technology for future convergence network

son6971

Application-Engineered Routing Application programs the Segment Routing network to deliver end-to-end per-flow policy from DC through WAN to end-user Adding value at your own pace – Leveraging the existing MPLS dataplane without any change. SW upgrade only. – Simplification, Automated 50msec FRR, per-domain and then end-to-end policies Economic gains – Improved service richness and velocity – Optimized CAPEX and OPEX thanks to the simplicity of the SR architecture Segment Routing deployments in CY15 in all the markets – WEB, SP, Entreprise Strong partnership with lead operator group Commitment to standardization and multi-vendor support

Introducing Application Engineered Routing Powered by Segment Routing

Cisco Service Provider

Similar to Sec conf london_v07 (20)

Securing the shared network

Securing the Onion: 5G Cloud Native Infrastructure

New world IP traffic, new dimensions for Diameter management

[cb22] Tales of 5G hacking by Karsten Nohl

LTE: Building next-gen application services for mobile telecoms

Network Innovations Driving Business Transformation

PLNOG 7: Klaudiusz Staniek - MPLS a QoS - praktycznie

Colt SD-WAN experience learnings and future plans

Module 2-lte architecture and protocol

Cisco connect montreal 2018 sd wan - delivering intent-based networking to th...

BRKCRS-2110.pdf

[Cisco Connect 2018 - Vietnam] Satit adirek hn under_the_hood_sdwan deep_dive

Edge / Far Edge: Convergent Access & Transport Infrastructure

CTIA 2010 Corporate Overview

Cisco connect winnipeg 2018 gain insight and programmability with cisco dc ...

Cisco Connect Toronto 2018 sd-wan - delivering intent-based networking to t...

Introduction to Segment Routing

Skt.2013.innovation technology for future convergence network

Introducing Application Engineered Routing Powered by Segment Routing

Recently uploaded

ODC, Data Fabric and Architecture User Group

CatarinaPereira64715

I'm excited to share my latest predictions on how AI, robotics, and other technological advancements will reshape industries in the coming years. The slides explore the exponential growth of computational power, the future of AI and robotics, and their profound impact on various sectors. Why this matters: The success of new products and investments hinges on precise timing and foresight into emerging categories. This deck equips founders, VCs, and industry leaders with insights to align future products with upcoming tech developments. These insights enhance the ability to forecast industry trends, improve market timing, and predict competitor actions. Highlights: ▪ Exponential Growth in Compute: How $1000 will soon buy the computational power of a human brain ▪ Scaling of AI Models: The journey towards beyond human-scale models and intelligent edge computing ▪ Transformative Technologies: From advanced robotics and brain interfaces to automated healthcare and beyond ▪ Future of Work: How automation will redefine jobs and economic structures by 2040 With so many predictions presented here, some will inevitably be wrong or mistimed, especially with potential external disruptions. For instance, a conflict in Taiwan could severely impact global semiconductor production, affecting compute costs and related advancements. Nonetheless, these slides are intended to guide intuition on future technological trends.

Future Visions: Predictions to Guide and Time Tech Innovation, Peter Udo Diehl

Peter Udo Diehl

In this insightful webinar, Inflectra explores how artificial intelligence (AI) is transforming software development and testing. Discover how AI-powered tools are revolutionizing every stage of the software development lifecycle (SDLC), from design and prototyping to testing, deployment, and monitoring. Learn about: • The Future of Testing: How AI is shifting testing towards verification, analysis, and higher-level skills, while reducing repetitive tasks. • Test Automation: How AI-powered test case generation, optimization, and self-healing tests are making testing more efficient and effective. • Visual Testing: Explore the emerging capabilities of AI in visual testing and how it's set to revolutionize UI verification. • Inflectra's AI Solutions: See demonstrations of Inflectra's cutting-edge AI tools like the ChatGPT plugin and Azure Open AI platform, designed to streamline your testing process. Whether you're a developer, tester, or QA professional, this webinar will give you valuable insights into how AI is shaping the future of software delivery.

Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality

Inflectra

We're living the AI revolution and Salesforce is adapting and bring new value to their customers. Einstein products are evolving rapidly and navigating their limitations, language support, and use cases can be challenging. Let's make review of what Einstein product are available currently, what are the capabilities and what can be used for in CEE region and how Rossie.ai can help to learn Salesforce speak Czech. We will explore the Einstein roadmap and I will make a short live demo (based on your vote) of some Einstein feature.

AI revolution and Salesforce, Jiří Karpíšek

CzechDreamin

ScyllaDB has the potential to deliver impressive performance and scalability. The better you understand how it works, the more you can squeeze out of it. But before you squeeze, make sure you know what to monitor! Watch our experienced Postgres developer work through monitoring and performance strategies that help him understand what mistakes he’s made moving to NoSQL. And learn with him as our database performance expert offers friendly guidance on how to use monitoring and performance tuning to get his sample Rust application on the right track. This webinar focuses on using monitoring and performance tuning to discover and correct mistakes that commonly occur when developers move from SQL to NoSQL. For example: - Common issues getting up and running with the monitoring stack - Using the CQL optimizations dashboard - Common issues causing high latency in a node - Common issues causing replica imbalance - What a healthy system looks like in terms of memory - Key metrics to keep an eye on This isn’t “Death-by-Powerpoint.” We’ll walk through problems encountered while migrating a real application from Postgres to ScyllaDB – and try to fix them live as well.

Optimizing NoSQL Performance Through Observability

ScyllaDB

This talk focuses on the practical aspects of integrating various telephony systems with Salesforce, drawing on examples from implementations in the Czech scene. It aims to inform attendees about the spectrum of telephony solutions available, from small to large scale, and their compatibility with Salesforce. The presentation will highlight key considerations for selecting a telephony provider that integrates smoothly with Salesforce, including important questions to support the decision-making process. It will also discuss methods for integrating existing telephony systems with Salesforce, aimed at companies contemplating or in the process of adopting this CRM platform. The discussion is designed to provide a straightforward overview of the steps and considerations involved in telephony and Salesforce integration, with an emphasis on functionality, compatibility, and the practical experiences of Czech companies.

Integrating Telephony Systems with Salesforce: Insights and Considerations, B...

CzechDreamin

Designing Great Products: The Power of Design and Leadership by Chief Designe...

Product School

IoT Analytics Company Presentation May 2024

IoTAnalytics

The standard Salesforce Approval process can be limiting in many ways, especially in complex scenarios. What if there was a way to implement very flexible approvals where one can use Apex code to make data updates in unrelated records, dynamically generate next steps details, and compute assignees on the fly? And still use UI-based configurations to implement concrete approval processes. In this session, we will share ideas behind such a solution and show a few lines of code to get you started.

Custom Approval Process: A New Perspective, Pavel Hrbacek & Anindya Halder

CzechDreamin

Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place. Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects. Here’s what you’ll gain: - Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows. - Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy. - Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency. - Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity. We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic. Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.

Essentials of Automations: Optimizing FME Workflows with Parameters

Safe Software

Intrigued by why some of the world's largest companies (Netflix, Google, Cisco, Twitter, Uber etc) are using gRPC? In this demo based talk we delve into the world of gRPC in .Net, what it does and why we should use it. We compare the interface with both Rest and graphQL. We will show you how to implement grpc server-side in .net and in the web. Finally, I will show you how the tooling helps you deliver powerful interfaces and interact with them quickly and simply.

Demystifying gRPC in .Net by John Staveley

John Staveley

Knowledge engineering: from people to machines and back

Elena Simperl

De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...

Product School

Measures in SQL (a talk at SF Distributed Systems meetup, 2024-05-22)

Julian Hyde

Already know how to write a basic SOQL query? Great! But what about an *aggregate* SOQL query? You know, the kind that uses aggregate functions like COUNT & MAX along with GROUP BY and HAVING clauses? No? Well, get ready to learn how to slice & dice your org’s data right inside your own dev console. From finding duplicate records to prototyping summary & matrix reports, learn the ins and outs of aggregate queries during this fast-paced but admin-friendly session on advanced SOQL concepts.

SOQL 201 for Admins & Developers: Slice & Dice Your Org’s Data With Aggregate...

CzechDreamin

Discover the essentials of performance testing in the IT sector with our concise guide. Learn about various testing types such as load, stress, endurance, spike, scalability, and volume testing. Understand key performance metrics like response time, throughput, CPU and memory utilization, and error rate. Explore top tools like Apache JMeter, LoadRunner, Gatling, Neoload, and BlazeMeter. Gain insights into best practices for defining objectives, creating realistic scenarios, automating tests, and optimizing performance to ensure user satisfaction, reliability, scalability, and cost efficiency. Ideal for developers, QA engineers, and IT professionals. Visit Expeed Software for more information. https://expeed.com/

In-Depth Performance Testing Guide for IT Professionals

Expeed Software

UiPath Test Automation using UiPath Test Suite series, part 3

DianaGray10

Watch this recorded webinar about real-time monitoring of application performance. See how to integrate Apache JMeter, the open-source leader in performance testing, with InfluxDB, the open-source time-series database, and Grafana, the open-source analytics and visualization application. In this webinar, we will review the benefits of leveraging InfluxDB and Grafana when executing load tests and demonstrate how these tools are used to visualize performance metrics. Length: 30 minutes Session Overview ------------------------------------------- During this webinar, we will cover the following topics while demonstrating the integrations of JMeter, InfluxDB and Grafana: - What out-of-the-box solutions are available for real-time monitoring JMeter tests? - What are the benefits of integrating InfluxDB and Grafana into the load testing stack? - Which features are provided by Grafana? - Demonstration of InfluxDB and Grafana using a practice web application To view the webinar recording, go to: https://www.rttsweb.com/jmeter-integration-webinar

JMeter webinar - integration with InfluxDB and Grafana

RTTS

Key Trends Shaping the Future of Infrastructure.pdf

Cheryl Hung

Unlock the mysteries of successful Salesforce interviews in this insightful session hosted by Hugo Rosario (Salesforce Customer), a seasoned hiring manager that leads the Salesforce Department of multinational company with over 100 interviews under their belt. Step into the manager's chair and gain exclusive behind-the-scenes insights into what makes a Salesforce consultant stand out during the interview process. From deciphering the unspoken cues to mastering key strategies, we'll explore the intricacies of the interview process and provide practical tips for consultants looking to not only pass interviews but also thrive in their roles. Whether you're a seasoned professional or just starting your Salesforce journey, this session is your backstage pass to the secrets that hiring managers wish you knew.

Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...

CzechDreamin

Recently uploaded (20)

ODC, Data Fabric and Architecture User Group

Future Visions: Predictions to Guide and Time Tech Innovation, Peter Udo Diehl

Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality

AI revolution and Salesforce, Jiří Karpíšek

Optimizing NoSQL Performance Through Observability

Integrating Telephony Systems with Salesforce: Insights and Considerations, B...

Designing Great Products: The Power of Design and Leadership by Chief Designe...

IoT Analytics Company Presentation May 2024

Custom Approval Process: A New Perspective, Pavel Hrbacek & Anindya Halder

Essentials of Automations: Optimizing FME Workflows with Parameters

Demystifying gRPC in .Net by John Staveley

Knowledge engineering: from people to machines and back

De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...

Measures in SQL (a talk at SF Distributed Systems meetup, 2024-05-22)

SOQL 201 for Admins & Developers: Slice & Dice Your Org’s Data With Aggregate...

In-Depth Performance Testing Guide for IT Professionals

UiPath Test Automation using UiPath Test Suite series, part 3

JMeter webinar - integration with InfluxDB and Grafana

Key Trends Shaping the Future of Infrastructure.pdf

Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...

Sec conf london_v07

2. © 2014 Stoke The LTE Security Framework 2 S9 S1-C Internet S1-U S5/S8 S6A Gx Gz/Gy Other LTE Network S11 RAN-Core Border SEG The border between RAN and Core (S1) requires protection against specific risks to critical infrastructure at that interface Control Plane Functions -  IKE -  AAA -  Routing DRA SBC IMS Core SGW MME CSCF Internet Border Policy / Charging Control SGi Data Plane Functions -  Forwarding -  QoS -  ACL -  Packet Inspection Device and Application

3. © 2014 Stoke LTE Security at the S1 Link – Emerging Trends 3 Challenge Requirements Stronger Security •  2048 bit key length •  PKI Signaling Protection - New Threat Vectors •  Protect core - exponential transaction increase •  S1 protocol/state validation VoLTE Rollout •  Low latency transport •  Sub-1 second recovery Elastic Deployment •  Virtualized security gateway on COTS •  SDN integration Scalable Small Cell Deployments •  Dense session aggregation •  Intelligent load balancing

4. © 2014 Stoke Use Case: Macro and Small Cell Security 4 »  Unsecured backhaul »  Rapidly increasing throughput »  High tunnel density »  Ultra-low latency »  Directly impacts subscriber QoE 44 MME SGW Office Home Outdoor Metrocell Small Cells 4G LTE EPC Millions of Tunnels MME SGW EPC E2E Latency Budget = 100 ms VoLTE: Low Latency Small Packets High Bandwidth

5. © 2014 Stoke Office Home Outdoor Metrocell Small Cells Use Case: Signaling Overload »  Signaling Overload Threats »  Application initiated »  Compromised eNodeBs »  Natural disasters »  Prioritized Traffic »  Already connected subscribers »  Specific eNodeBs SGW 4G LTE EPCMillions of Service Requests MME Application Update Server QoE: Prioritize 5

6. © 2014 Stoke The LTE Security Framework vSEG Phase 1 6 S9 Internet S5/S8 S6A Gx Gz/Gy Other LTE Network S11 RAN-Core Border Control Plane Functions -  IKE -  AAA -  Routing DRA SBC IMS Core SGW MME CSCF Internet Border Policy / Charging Control SGi Data Plane Functions -  Forwarding -  QoS -  ACL -  Inspections Device and Application »  vSEG on COTS hardware on Linux »  Similar deployment and operational model as today »  Benefits: »  Removes restriction of physical chassis »  scale to very large number of line cards SEG v-SEG (DP) v-SEG (CP)

7. © 2014 Stoke The LTE Security Framework vSEG Phase 2 7 Other LTE Network SGW MME DRA SBC CSCF Internet Border Policy / Charging Control Internet S1-C S1-U Internet V-EPC RAN-Core Border v-SEG (DP) v-SEG (CP) Security Gateway Cloud QoS InspectionACLs IKE AAA Routing SEG Controller SDN Controller »  Disaggregate control plane and data plane functions to scale each function independently. »  Can be integrated with Operator's SDN infrastructure »  Benefits »  Fully elastic on-demand deployment »  Capacity can be added dynamically by adding more service nodes »  Scale some functions disproportionately

8. © 2014 Stoke Conclusions 8 »  Each domain of the LTE Security Framework provides protection against specific threats and therefore has unique functional and performance requirements »  S1 Link has stringent performance and latency requirements »  Purpose built platforms will remain the mainstay for next few years »  Virtualization has benefits, but is not the answer for all use cases | Proprietary and Confidential

Sec conf london_v07

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Viewers also liked

Viewers also liked (16)

Similar to Sec conf london_v07

Similar to Sec conf london_v07 (20)

Recently uploaded

Recently uploaded (20)

Sec conf london_v07