Question

Describe Strategies for Securing Wide Area Networks and Briefly describe what is SD-WAN Security?

Answer 1

Answer) Strategies for Securing Wide Area Networks

1) Data encryption- Data encryption is a technique in which our message i.e plain text is transformed in another form which is known as ciphertext. Cypher text is unreadable anyone who has access to ciphertext cannot get the actual message because it is an encrypted message. Thus, making compulsory for every device on the WAN to make use of encryption and decryption is very important.

2) Network Firewalls - It is a device which is present in the network that monitors and filter the traffic in the network. various security rules are employed to judge whether a given packet in the network is genuine or not. Employing more and effective firewalls in the network will help filter unwanted traffic and thus improves security.

3) Secure Sockets Layer (SSL) and HTTPS -  SSL uses Secure HTTP (S-HTTP) as its basic transmission protocol. This protocol is a variation of HTTP that provides a secure foundation for SSL transmission.

4) Access Control- It means that different users on the network will be given a different level of access. For, example users can only read the content on the website but the administrator has access to make changes and add new content.

SD-WAN Security

SD-WAN security is based on the use of IP security (IPsec), VPN, next-generation firewalls of application traffic. Network administrators centrally manage and orchestrate these security elements through software that grants granular visibility into the network. SD-WAN provides security with the help of following

1) Authenticating the sender, receiver, and packets being sent in the network.

2) Using encryption keys already shared by the server sending and receiving the data.

3) Confirming that the origin of packets is trusted through an Authentication Header (AH) that looks at the IP header