Ok networkers. I've been tasked with finding an SDN solution that is capable of end user zero-trust authentication/authorization, end user visibility all the way up to application usage, application dependency mapping, and microsegmentation. So far as I can tell, there seems to be a disconnect between SDN where a controller just tells traffic where to go while control plane and data plane are separated VS. SDF which seems to be more about zero trust modeling by black and white-listing end users to specific applications (like an additional firewall on the local device). Am I right/wrong? Edgewise? NSX? Big Switch? Evident?
I've taken a brief look at Cisco Tetration and Illumio, but have yet to dig into things like what makes both different from Cisco APIC for example (seems to only be concerned with application programmability more than security). Are there platforms that support all these things under one SDN umbrella or are they indeed different things? I want to make sure I'm comparing apples to apples before obtaining proof of concepts on the solutions. Any help appreciated!!! Thanks!
No comments:
Post a Comment