SOLUTION BRIEF

FORTINET AND NEC SDN SECURITY SOLUTIONAutomated Cyber Defense Enabled by Software Defined Networking

Cyber-attacks are growing in sophistication and volume, and causing massive data breaches at organizations worldwide. Survey data suggest that 80% of leaked information is obtained through external cyber-attacks. Viruses or malware can penetrate an enterprise network environment and steal information over a period of months, or even years, by cleverly concealing themselves. By the time the crime is uncovered, the important information has often already been leaked. Hacking methods are becoming increasingly devious and complex, making it extremely difficult for individual enterprises to mount an effective response.

NEC and Fortinet have established a technology partnership to address the above challenges to help organizations effectively secure their deployments. The Fortinet-NEC joint solution provides Software Defined Networking (SDN)-enabled automated cyber defense, which automates and enhances an organization’s ability to protect against cyber-attacks.

SOLUTION DESCRIPTION

NEC’s ProgrammableFlow SDN solutions simplify network operation and increase network visibility, improving service levels by fine-grained control and visibility of network traffic. ProgrammableFlow SDN allows the network to be virtually micro-segmented based on administrator defined criteria. Because of this unique network virtualization capability, network segments are independent from the physical layout of the network and can be modified as the network evolves. By combining the NEC ProgrammableFlow Controller with Fortinet’s FortiGate enterprise firewall platform, it is possible to enhance the protection inside the perimeter by identifying infected devices in one of two ways:

nn An in-line security appliance identifies infected traffic from a device on the network

nn TAP or SPAN traffic is sent to the FortiGate firewall for inspection. When the FortiGate firewall detects suspicious activity it instructs the ProgrammableFlow (using a dedicated software adapter) to isolate, redirect (to honeypot or other device), or drop traffic from the IP address of the workstation where it originated, thus preventing the damage from spreading. The network administrator is notified by e-mail of the action taken. This is achieved in seconds or tens or seconds (because of the automation) as opposed to minutes or days if done manually, without affecting other traffic in the network.

SOLUTION COMPONENTS

nn Fortinet FortiGate firewall (physical or virtual appliance).

nn NEC ProgrammableFlow used to control traffic in the enterprise Software Defined Network.

nn NEC SDN Security Adaptor used to scan the logs generated by the FortiGate firewall for possible threats, and instructs the ProgrammableFlow controller to block traffic from workstations that show suspicious activity and notifies the system administrator.

SOLUTION BENEFITS

nn Reduces the risk of information leaks, system shut-down, Denial of Service attacks, and ransomware.

nn Enables faster response to cyber-attacks by automatically blocking infected workstations.

nn Enables enterprise network micro-segmentation and uses virtual firewalls between segments, thus confining potential threats.

nn Allows quick identification of infected workstations.

nn Enhanced network management by using NEC ProgrammableFlow SDN controller.

nn Comprehensive end-to-end security visibility provided via the Fortinet Security Fabric.

nn Leverage the industry’s best validated security protection offered by Fortinet’s FortiGate network security platform to protect against sophisticated cyber-threats.

SOLUTION BRIEF: FORTINET AND NEC SDN SECURITY SOLUTION

Copyright © 2018 Fortinet, Inc. All rights reserved. Fortinet®, FortiGate®, FortiCare® and FortiGuard®, and certain other marks are registered trademarks of Fortinet, Inc., and other Fortinet names herein may also be registered and/or common law trademarks of Fortinet. All other product or company names may be trademarks of their respective owners. Performance and other metrics contained herein were attained in internal lab tests under ideal conditions, and actual performance and other results may vary. Network variables, different network environments and other conditions may affect performance results. Nothing herein represents any binding commitment by Fortinet, and Fortinet disclaims all warranties, whether express or implied, except to the extent Fortinet enters a binding written contract, signed by Fortinet’s General Counsel, with a purchaser that expressly warrants that the identified product will perform according to certain expressly-identified performance metrics and, in such event, only the specific performance metrics expressly identified in such binding written contract shall be binding on Fortinet. For absolute clarity, any such warranty will be limited to performance in the same ideal conditions as in Fortinet’s internal lab tests. Fortinet disclaims in full any covenants, representations, and guarantees pursuant hereto, whether express or implied. Fortinet reserves the right to change, modify, transfer, or otherwise revise this publication without notice, and the most current version of the publication shall be applicable. Fortinet disclaims in full any covenants, representations, and guarantees pursuant hereto, whether express or implied. Fortinet reserves the right to change, modify, transfer, or otherwise revise this publication without notice, and the most current version of the publication shall be applicable.

GLOBAL HEADQUARTERSFortinet Inc.899 Kifer RoadSunnyvale, CA 94086United StatesTel: +1.408.235.7700www.fortinet.com/sales

EMEA SALES OFFICE905 rue Albert Einstein06560 ValbonneFranceTel: +33.4.8987.0500

APAC SALES OFFICE300 Beach Road 20-01The ConcourseSingapore 199555Tel: +65.6513.3730

LATIN AMERICA HEADQUARTERSSawgrass Lakes Center13450 W. Sunrise Blvd., Suite 430Sunrise, FL 33323Tel: +1.954.368.9990

February 22, 2018 10:58 AM

Mac:Users:susiehwang:Desktop:Egnyte:Egnyte:Shared:Creative Services:Team:Susie-Hwang:Egnyte:Shared:CREATIVE SERVICES:Team:Susie-Hwang:SB-NEC:sb-nec

The functionality of the joint solution is summarized in the diagram below.

SOLUTION ARCHITECTURE.

In summary, NEC SDN automatically blocks communications from an infected terminal when triggered by a security incident detection on the Fortinet FortiGate firewall.

ABOUT NEC

Headquartered in Irving, Texas, NEC Corporation of America is a leading technology integrator providing solutions that improve the way people work and communicate. NEC delivers integrated Solutions for Society that are aligned with our customers’ priorities to create new value for people, businesses and society, with a special focus on safety, security and efficiency. We deliver one of the industry’s strongest and most innovative portfolios of communications, analytics, security, biometrics and technology solutions that unleash customers’ productivity potential. Through these solutions, NEC combines its best-in-class solutions and technology, and leverages a robust partner ecosystem to solve today’s most complex business problems. NEC Corporation of America is a wholly-owned subsidiary of NEC Corporation, a global technology leader with a presence in 160 countries and $28 billion in revenues. For more information, visit www.necam.com