Story image

Huawei unveils APT big data security solution

26 May 2015

Huawei has released a new solution designed to protect against Advanced Persistent Threat (APT) and denial-of-service (DdoS) attacks.

Unveiled at the Huawei Network Congress (HNC) 2015, the APT Big Data Security Solution is said to protect the core information assets of enterprises from APT attacks by providing fully-connected network protection covering cloud, pipe, and devices.

The solution leverages Huawei’s FireHunter series of security sandbox products, Cybersecurity Intelligent System (CIS), and the USG6000V series of software firewall products.

Huawei also announced plans to form a Cloud Clean Alliance (CCA) to provide real-time cleaning services for DDoS attacks worldwide and protect bandwidth availability of links and continuity of data centre services.

"While the development of Internet of Things (IoT) makes life more convenient, it also amplifies network security threats,” says Liu Lizhu, Huawei general manager of the network security, switch and enterprise communications product line.

“Due to the lack of authentication and transmission encryption practices, 70% of IoT devices suffer from security vulnerability.

“This has the potential to result in security issues spreading to every corner of our lives.

“However, the deployment of IoT greatly increases the number of security attack targets, making IoT devices the springboard of APT attacks and target for botnet attacks,” says Lizhu.

Huawei’s FireHunter series of security sandboxes are equipped with reputation system and multilayer inspection technology, and can inspect over 180,000 files per day, according to Huawei.

The vendor’s CIS system is based on a big data platform and provides early warning and protection from APT attacks for enterprise networks.

It conducts correlation analysis of mass data including key traffic, logs, contexts, and external information to detect over 350 types of suspicious behaviour.

It then flags the infected targets to prevent further APT attack penetration and traces the source, blocking and eliminating the APT attacks detected in the process.

Lizhu says, "APT attacks are very stealthy and often evade security detection. Hiding in the normal network accesses, APT attacks may remain undetected for a long time after successful penetration.

“During the latent period, APT attack malware will continue to spread until it has successfully stolen key information.”

In addition to hardware security devices, Huawei’s APT Big Data Security Solution blocks and eliminates security threats on cloud, pipe, and devices using virtualised cross-platform software firewalls.

The Huawei USG6000V series of software firewalls can be deployed on agile switches and agile routers based on service demands, and integrates its comprehensive security functions with an Agile Controller or other Software-defined networking (SDN) controllers.

By adopting Intel’s latest Data Plane Development Kit (DPDK) using Single Root I/O Virtualisation (SR-IOV) technology and a HyperScan software pattern-matching engine, every Huawei USG6000V software firewall can provide up to 40 Gbps performance.

At HNC 2015, Huawei announced that it will partner with companies to establish the Cloud Clean Alliance.

This initiative aims to establish a big data-based cloud Service on Chip (SoC) platform to synergise the anti-DDoS resources of telecom operators and large- and medium-sized Internet Data Centres (IDCs) worldwide to deliver real-time analysis and response to DDoS attacks.

Once established, the Cloud Clean Alliance will provide a comprehensive global DDoS traffic cleaning service, benefiting end users, partners, and Huawei, according to the vendor.

As more individuals, enterprises, organisations, and institutions enter the better connected world, a secure network environment is essential for enterprises to evolve into agile businesses, says Huawei.

“Security products must possess flexible deployment capabilities to support enterprise adoption of more diverse business models.

“Huawei’s APT Big Data Security Solution and Cloud Clean Alliance will help customers build a cleaner and more secure network environment to enable agile businesses,” says Lizhu.

Protecting data centres from fire – your options
Chubb's Pierre Thorne discusses the countless potential implications of a data centre outage, and how to avoid them.
Opinion: How SD-WAN changes the game for 5G networks
5G/SD-WAN mobile edge computing and network slicing will enable and drive innovative NFV services, according to Kelly Ahuja, CEO, Versa Networks
TYAN unveils new inference-optimised GPU platforms with NVIDIA T4 accelerators
“TYAN servers with NVIDIA T4 GPUs are designed to excel at all accelerated workloads, including machine learning, deep learning, and virtual desktops.”
AMD delivers data center grunt for Google's new game streaming platform
'By combining our gaming DNA and data center technology leadership with a long-standing commitment to open platforms, AMD provides unique technologies and expertise to enable world-class cloud gaming experiences."
Inspur announces AI edge computing server with NVIDIA GPUs
“The dynamic nature and rapid expansion of AI workloads require an adaptive and optimised set of hardware, software and services for developers to utilise as they build their own solutions."
Norwegian aluminium manufacturer hit hard by LockerGoga ransomware attack
“IT systems in most business areas are impacted and Hydro is switching to manual operations as far as possible.”
HPE launches 'right mix' hybrid cloud assessment tool
HPE has launched an ‘industry-first assessment software’ to help businesses work out the right mix of hybrid cloud for their needs.
ADLINK and Charles announce multi-access pole-mounted edge AI solution
The new solution is a compact low profile pole or wall mountable unit based on an integration of ADLINK’s latest AI Edge Server MECS-7210 and Charles’ SC102 Micro Edge Enclosure.