The Aruba Mobile Virtual Enterprise for Government. The Next Generation Network Access Architecture for Mobile Technology

Similar documents
FIPS Validated i WLAN

The Aruba S3500 Mobility Access Switch

White paper. Combatant command (COCOM) next-generation security architecture

802.11ac FREQUENTLY ASKED QUESTIONS. May 2012

Requirements for Building Effective Government WLANs

ARUBA NETWORKS DESIGNS AND DELIVERS MOBILITY-DEFINED NETWORKS THAT EMPOWER A NEW GENERATION OF TECH-SAVVY USERS

PRODUCT LINE MATRIX: Mobility Controllers

Technology Solution Guide

Technology Solution Guide. Deploying Entuity s Eye of the Storm with Aruba Networks Secure Mobility Solution

ARUBA RAP-3 REMOTE ACCESS POINT High-performance wireless and wired networking for branch offices and teleworkers

MR Cloud Managed Wireless Access Points

AIRPLAY AND AIRPRINT ON CAMPUS NETWORKS AN ARUBA AIRGROUP SOLUTION GUIDE

ARUBA RAP-3 REMOTE ACCESS POINT

BlackBerry Enterprise Identity

SOLUTION OVERVIEW BLUEPRINT FOR THE ALL-WIRELESS WORKPLACE

The Benefits of Wireless Infrastructure Management in the Cloud

BYOD: BRING YOUR OWN DEVICE.

Alcatel-Lucent Wireless Solution COPYRIGHT 2011 ALCATEL-LUCENT ENTERPRISE. ALL RIGHTS RESERVED.

Mobility Optimized Access Layer

HOW A CLOUD COMMUNICATIONS SYSTEM UNIQUELY SUPPORTS YOUR MOBILE WORKFORCE

Wireless Field Data Backhaul

Data Loss Prevention Whitepaper. When Mobile Device Management Isn t Enough. Your Device Here. Good supports hundreds of devices.

RSA Solution Brief. Providing Secure Access to Corporate Resources from BlackBerry. Devices. Leveraging Two-factor Authentication. RSA Solution Brief

Brocade and Aruba Deliver Secure and Effortless Mobility for the Public Sector

Wireless LAN Solutions

CLEARPASS CONVERSATION GUIDE

ARUBA MULTIZONE DATA SHEET

Simplifying the Branch Network

Surviving the ipad Crush. Meraki, Inc

Network Access Control

ARUBA 7000 SERIES MOBILITY CONTROLLER

ARUBA RAP-3 REMOTE ACCESS POINT

Secure Mobility Challenges. Fat APs, Decentralized Risk. Physical Access. Business Requirements

BlackBerry Mobile Voice System

MR Cloud Managed Wireless Access Points

SOLUTION BROCHURE. Mobility Changes Everything

One Release. One Architecture. One OS. High-Performance Networking for the Enterprise with JUNOS Software

White Paper. Bring Your Own ipad to Work

Vendor: Cisco. Exam Code: Exam Name: Cisco Sales Expert. Version: Demo

Cisco NAC Network Module for Integrated Services Routers

CLEARPASS GUEST. A ClearPass Policy Manager Application DATA SHEET KEY FEATURES THE CLEARPASS ADVANTAGES

Creates a Feature-Rich, Enterprise-Grade Wireless LAN

Features and benefits Easy group communications is an important part of operational communications because incidents can occur anywhere, anytime. Resp

Product Line Matrix: Instant Access Points. 100 Series Instant APs. 90 Series Instant APs

Data Sheet Instant Connect Mobile Client When your business is on the line, Instant Connect is here for your most critical communications needs. Welco

ARUBA, A HEWLETT PACKARD ENTERPRISE COMPANY, IS REDEFINING THE INTELLIGENT EDGE WITH MOBILITY AND IOT SOLUTIONS FOR ORGANIZATIONS

The Device Has Left the Building

MR Cloud Managed Wireless Access Points

A Mobile Security Checklist: The Top Ten Threats to Your Enterprise Today. White Paper

device management solution

Delivering the Wireless Software-Defined Branch

WLAN solutions to manage BYOD

Networks with Cisco NAC Appliance primarily benefit from:

Make security part of your client systems refresh

Prepare Your Network for BYOD. Meraki Webinar Series

Securing the Empowered Branch with Cisco Network Admission Control. September 2007

ARUBA 100 SERIES ACCESS POINTS

ShoreTel Network Services Portfolio

A HOLISTIC APPROACH TO IDENTITY AND AUTHENTICATION. Establish Create Use Manage

How to Evaluate a Next Generation Mobile Platform

The New Enterprise Network In The Era Of The Cloud. Rohit Mehra Director, Enterprise Communications Infrastructure IDC

3-Part Guide to Developing a BYOD Strategy

Cisco Wide Area Application Services and Cisco Nexus Family Switches: Enable the Intelligent Data Center

Nuclias by D-Link is a complete cloud-managed networking solution for small to medium-sized organisations with one or more sites.

Wireless Mobile Workforce

802.3at ac 3x3 Dual Band Ceiling Mount Access Point/WDS. can be used with EAP1750H. Key Features

ARUBA 7000 SERIES MOBILITY CONTROLLER

ATA DRIVEN GLOBAL VISION CLOUD PLATFORM STRATEG N POWERFUL RELEVANT PERFORMANCE SOLUTION CLO IRTUAL BIG DATA SOLUTION ROI FLEXIBLE DATA DRIVEN V

Cisco Unified Wireless Network Solution Overview

ARUBA RAP-3 REMOTE ACCESS POINT

Optimizing Pulse Secure Access Suite with Pulse Secure Virtual Application Delivery Controller solution

Driving the Need for Mobile Device Management (MDM)

Clients for Unified Communications

CompTIA Mobility+ Certification

HIGH SPEED VS HALF SPEED BUILDING THE RIGHT NETWORK TO SUPPORT TODAY S AND TOMORROW S DEVICES

The Changing Role of Wi-Fi Are You Ready for the Wireless. Ron Groulx Empowered Networks

Complying with RBI Guidelines for Wi-Fi Vulnerabilities

Securing Today s Mobile Workforce

Wi-Fi Cost Index. The Impact of Mobility Costs to Your Organization , fx

WLAN Security Overview

Aerohive Private PSK. solution brief

Aruba Case Study. Educause. Overview. Requirements

Secure IT consumeration (BYOD), users will like you How to make secure access for smart mobile devices

Cisco Meraki Wireless Solution Comparison

The Value of Cisco Compatible Extensions (CCX) for Mobile Computers

802.3at ac 3x3 Dual Band Ceiling Mount Access Point/WDS. Datasheet. can be used with EAP1750H. Key Features. capable switches or injectors

Cisco Start. IT solutions designed to propel your business

ArubaOS 6.2. Quick Start Guide. Install the Controller. Initial Setup Using the WebUI Setup Wizard

KEY MARKET DATA AND FORECASTS: TECHNOLOGIES: APPLICATIONS: GEOGRAPHIES:

ARUBA INSTANT IAP-92 and IAP-93 ACCESS POINTS

Cisco Network Admission Control (NAC) Solution

Securing BYOD With Network Access Control, a Case Study

Service Automation Made Easy

User-to-Data-Center Access Control Using TrustSec Design Guide

Cisco Universal Wi-Fi Solution 7.0

N o W i r e s. N o W a i t i n g

Your wireless network

Connectivity to Cloud-First Applications

Single Secure Credential to Access Facilities and IT Resources

The Case for Secure Communications

Transcription:

The Next Generation Network Access Architecture for Mobile Technology

Table of Contents Government agencies recognize the benefits of mobility 3 MOVE: A user-centric, role-based access architecture for wired, wireless and remote access 3 Introducing Aruba MOVE for Government 4 Access from a wide range of network on-ramps 5 The benefits of simplified management 6 The business case for Aruba 6 Conclusion 7 About Aruba Networks, Inc. 7 Aruba Networks, Inc. 2

Government agencies recognize the benefits of mobility Government agencies are experiencing tremendous pressure from their end users to support commercial, consumer-grade mobile devices smartphones, tablets and laptops. Just as in the corporate world, workers in the public sector have become accustomed to the productivity enhancements that these mobile devices bring to their lives and understand the value they can offer in the workplace. A variety of mobile devices like Android and Windows based smartphones and tablets, Blackberrys, iphones, and ipads have been fielded by the end users themselves. These users want wireless LAN (WLAN) access when on-site, and they want 3G/4G support for global field mobility. Some end users, in attempts to fulfill their communication requirements, utilize these commercial-grade devices in an unsecure manner to conduct voice and data communications which can put their agencies at risk. Unit Shipments (Millions) 1500 1250 1000 750 500 250 0 Smart Devices Grow 4x 2009 2010 2011 2012 2013 2014 Smartphones Media Tablets Laptops Desktops Source: IDC Smart Mobile Devices, Feb 2011 Figure 1: Rapid growth of mobile devices. MOVE: A user-centric, role-based access architecture for wired, wireless and remote access The next generation of access networks must focus squarely on users, their devices and their applications not infrastructure or ports. Users should have simple, secure network access regardless of where they work or roam, which devices and applications they are using, or how they want to connect. Access to government data using these mobile devices needs to be secured as well. This is especially true in the event that the data resides on the mobile device itself. Even sensitive but unclassified data needs to be protected when being accessed through the use of commercial mobile devices. There are alternatives available to help secure this data. Among them are: Virtual Desktop Infrastructure separates a personal computer desktop environment from a physical machine using a client-server model of computing. For example, the actual computer desktop, its operating system, programs, applications, processes and data are stored on a server that is centrally run and located. Mobile devices can authenticate and access these centrally virtual machines through an application that runs on the mobile device. Only screenshot data of the virtual machine is transmitted between the mobile device and remote central server, while the data is protected centrally and never resides on the mobile device. Mobile Device Management solutions provide the ability to manage mobile devices while providing options to enforce security policies and access. This enables administrators the ability to require the use of passwords, detect and deny access to jailbroken or rooted devices, and even remove sensitive data from the device. In addition, applications such as email and IM can be utilized within a sandbox protected area on the mobile device. Government data that resides on a mobile device can be separated from the user s personal data. The separated government data is encrypted so that it cannot be accessed in the event that the device is lost or stolen. Encryption applied to this data must adhere to government validations (i.e. FIPS-140) and certifications. While processes are still evolving, DoD based documents currently exist that allow the use of mobile devices such as Android and Windows 7 tablets, ipads, iphones, and Blackberrys, as long as they are configured and adhere to the policies outlined within the security guides published by DISA. Aruba Networks, Inc. 3

In addition, the National Security Agency recently announced the first release of SE Android, which is a security enhanced version of the Android operating system. It provides mandatory access control within the operating system for controlling access and security policies. These efforts allow for the use of commercial mobile devices within government networks. Aruba Networks MOVE for Government works in conjunction with these efforts to provide secure mobility solutions for unclassified and classified government networks. Introducing Aruba MOVE for Government In the past, an access network to support mobility was built on many different disparate technologies: wired for local access, wireless for mobile devices, VPN clients and concentrators for remote access, and separate systems for outdoor. However, none of these technologies were unified or designed to work together, leading to high operational costs. Aruba Networks now offers government agencies a significantly improved approach. Leveraging its next-generation Mobile Virtual Enterprise (MOVE) architecture, Aruba securely unifies disparate computing infrastructures into one seamless network access solution for government employees, contractors, visitors, and military personnel in garrison or in deployment. Authorized users get access to network resources wherever they need them, with automatic access policy enforcement based on who they are no matter where they are, what devices they use and how they connect. Aruba s MOVE for Government architecture combines advanced WLAN technology with government validated and policy compliant mobile device software supporting stringent government security regulations such as Common Criteria Certification, FIPS 140-2 Validation, DoD directives 8100.2 and 8420.1 Compliance. The solution provides this policy compliant and validated technology that all US government agencies are required to utilize. All at no extra cost compared to other commercial solutions. MOVE for Government provides a common set of network services that manage security, policy, and network performance for every user and device on the network, regardless of method of access. These services include: Identity management Guest access Role-based policy enforcement Application traffic management Content security Device and network configuration RF and spectrum management Compliance With Aruba MOVE for Government, services are defined once via a centralized Aruba Mobility Controller in the data center. This eliminates the need to keep up with a profusion of wiring closets, firewalls, NAC solutions, management systems and reporting tools that operate in separate domains. Field force automation is also considered a critical issue for federal agencies that are trying to do more with less, and smartphones and PDAs are being picked up by federal field services officers as a strong productivity aid. Source: 1105 Government Information Group Aruba Networks, Inc. 4

As a result, network operations are consistent across the entire organization, regardless of user location, access method, mobile device or applications. Aruba MOVE easily accommodates users with multiple devices, whether government-owned or user-owned. This user-centric approach to network access makes it easier for government agencies to accommodate the deluge of smartphones, tablets and other personal mobile devices that employees are bringing to work. Aruba MOVE also eliminates the need to maintain VLAN at the edge and manually configure user additions and changes. Figure 2: The Aruba MOVE architecture for government deployments. Access from a wide range of network on-ramps Aruba MOVE for Government offers a wide range of network on-ramps that leverage a common set of network services to deliver consistent, reliable and secure access to users: Wireless APs. Aruba 802.11n APs provide high-performance connectivity to mobile and fixed wireless devices, while providing best-in-class RF control using Adaptive Radio Management (ARM) technology. Mobility Access Switches. Aruba has extended the user-centric, services-based approach of the MOVE architecture to a new class of access switches. Designed to provide network access in wiring closets, Aruba S3500 Mobility Access Switches connect wired Ethernet devices such as virtual desktops, video surveillance cameras and 802.11 APs. Remote APs. An alternative operating mode for Aruba APs, Aruba Remote APs (RAPs ) automatically extend centralized resources to branch and remote locations using site-to-site VPN tunnels to the central data center. Using zero-touch configuration, personnel at these sites can easily set up their own RAPs with no IT assistance. Outdoor APs. Aruba outdoor APs combine a unique multi-radio, multi-frequency architecture, Adaptive Radio Management and hardened enclosures to bring high-performance networking to outdoor or deployable environments. Using the ArubaOS mesh features, they can connect to the backbone network wirelessly as an alternative to a wired AP connection. Aruba Networks, Inc. 5

The benefits of simplified management With the Aruba solution, services are defined once via a centralized Aruba Mobility Controller in the data center. This eliminates the need to keep up with a profusion of wiring closets, firewalls, network access control (NAC) solutions, management systems and reporting tools that operate in separate domains. As a result, network operations are consistent across the entire organization, regardless of user location, access method, mobile device or applications. Aruba MOVE for Government easily accommodates users with multiple devices, including both legacy devices and commercial mobile technology, including smartphones, tablets and laptops. With its user-centric approach, the Aruba solution also eliminates the need to maintain VLANs at the edge and manually configure user additions and changes. Smartphones and PDAs are gaining traction among a range of federal audiences as agencies and departments seek to enable greater mobility... Source: Washington Technology The business case for Aruba With tight budgets and mobility at a critical juncture, the Aruba MOVE architecture presents a very compelling business case for government, civilian and military agencies: Significantly lower purchase costs compared to proprietary solutions. Additional operational savings come from: Eliminating cumbersome CCI checkout and handling processes. Accelerating the move from wired to near-gigabit 802.11n, thereby reducing the number of Ethernet switches needed in favor of more cost-effective Wi-Fi access. Moving to thin on-ramps at the edge that are easier to install and operate. Reducing cellular carrier data package charges for 3G/4G communications as they can become expensive, especially when users exceed data limits. Implementing 802.11 WiFi solutions for mobile communications not only minimize cellular data plan costs, device and data security can be achieved in a compliant manner to protect valuable unclassified and classified government data. Easier support for both local and remote users. Because it utilizes a single architecture and network design for local (using WLAN, WLAN mesh and wired) and remote (using remote wired and WLAN) access, it is simpler to manage. Instead of employing well over a dozen steps to configure network access using a legacy approach, employees can configure the Aruba solution in just three simple steps. Improved security by supporting all access modes. Aruba Mobility Controllers manage classified WLAN users and classified wired users to simplify network design and strengthen the overall security posture by adding access control and user firewalling. A higher performance network. Aruba 6000 Mobility Controllers with M3 controller modules support 4 Gbps of AES-256 encrypted throughput for thousands of concurrent users. Up to four M3 controller modules can be installed in a single 6000 Mobility Controller chassis for 16 Gbps of encrypted traffic throughput. Lower end-user support costs and higher satisfaction. Aruba gives the entire workforce employees with and without clearance as well as contractors and guests a single, consistent way to access the appropriate agency resources. Role-based access policies allow IT to control users and devices, so that personnel can switch effortlessly between desktops, laptops, tablets, smartphones and other mobile devices. By cutting down on the confusion and saving time for users, Aruba reduces IT service desk calls and increases user satisfaction. Aruba Networks, Inc. 6

Conclusion The Aruba MOVE architecture gives government IT organizations the technology they need to realize their vision to embrace mobility in a meaningful way. It does so by securely unifying disparate computing infrastructures into one seamless network access solution for government employees, contractors, visitors, and military personnel in garrison or in deployment. It is an architecture that s driven by mobility and the proliferation of Wi-Fi-enabled mobile devices. These devices which have no Ethernet port are connecting to enterprise networks in unprecedented numbers and will quickly surpass desktop connections. Aruba MOVE eliminates the cost and complexity of managing separate wired and wireless access policies and VLANs at the edge. In fact, with Aruba you ll need fewer ports and consequently less equipment in the wiring closet effectively rightsizing your access infrastructure. About Aruba Networks, Inc. Aruba Networks is a leading provider of next-generation network access solutions for the mobile enterprise. The company s Mobile Virtual Enterprise (MOVE) architecture unifies wired and wireless network infrastructures into one seamless access solution for corporate headquarters, mobile business professionals, remote workers and guests. This unified approach to access networks dramatically improves productivity and lowers capital and operational costs. Listed on the NASDAQ and Russell 2000 Index, Aruba is based in Sunnyvale, California, and has operations throughout the Americas, Europe, Middle East, and Asia Pacific regions. To learn more, visit Aruba at www.arubanetworks.com. For real-time updates and to read the latest news and opinions from Aruba, visit our Communities page. The vision we re looking at is, every soldier is issued a phone. Michael McCarthy, Director of Operations at the Brigade Modernization Command Mission Command Complex, U.S. Army Source: Network World www.arubanetworks.com 1344 Crossman Avenue. Sunnyvale, CA 94089 1-866-55-ARUBA Tel. +1 408.227.4500 Fax. +1 408.227.4550 info@arubanetworks.com 2012 Aruba Networks, Inc. Aruba Networks trademarks include AirWave, Aruba Networks, Aruba Wireless Networks, the registered Aruba the Mobile Edge Company logo, Aruba Mobility Management System, Mobile Edge Architecture, People Move. Networks Must Follow, RFProtect, and Green Island. All rights reserved. All other trademarks are the property of their respective owners. WP_MOVEforGOV_120501

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback