Wedge Networks Inc. | securing the cloud connected world

Bring Your Own Encryption: The Case For Standards

Posted on May 13, 2015 by Wedge Networks Administrator

-By Hongwen Zhang, CEO & Co-Founder, Wedge Networks
(Published in Business Cloud News, May 13, 2015)

Being free to choose the most suitable encryption for your business seems like a good idea. But it will only work in a context of recognized standards across encryption systems and providers’ security platforms. Since the start of the 21st century, security has emerged from scare-story status to become one of IT users’ biggest issues – as survey after survey confirms. Along the way a number of uncomfortable lessons are still being learned.

The first lesson is that security technology must always be considered in a human context. No one still believes in a technological fix that will put an end to all security problems, because time and again we hear news of new types of cyber attack that bypass sophisticated and secure technology by targeting human nature – from alarming e-mails ostensibly from official sources, to friendly social invitations to share a funny download; from a harmless-looking USB stick ‘accidentally’ dropped by the office entrance, to the fake policeman demanding a few personal details to verify that you are not criminally liable.

And that explains the article’s heading: a balance must be struck between achieving the desired level of protection against keeping all protection procedures quick and simple. Every minute spent making things secure is a minute lost to productivity – so the heading could equally have said “balancing security with efficiency”.

The second lesson still being learned is never to fully trust to instinct in security matters. It is instinctive to obey instructions that appear to come from an authoritative source, or to respond in an open, friendly manner to a friendly approach – and those are just the sort of instincts that are exploited by IT scams. Instincts can open us to attack, and they can also evoke inappropriate caution.

In the first years of major cloud uptake there was the oft-repeated advice to business that the sensible course would be to use public cloud services to simplify mundane operations, but that critical or high priority data should not be trusted to a public cloud service but kept under control in a private cloud. Instinctively this made sense: you should not allow your secrets to float about in a cloud where you have no idea where they are stored or who is in charge of them.

The irony is that the cloud – being so obviously vulnerable and inviting to attackers – is constantly being reinforced with the most sophisticated security measures: so data in the cloud is probably far better protected than any SME could afford to secure its own data internally. It is like air travel: because flying is instinctively scary, so much has been spent to make it safe that you are

less likely to die on a flight than you are driving the same journey in the “safety” of your own car. The biggest risk in air travel is in the journey to the airport, just as the biggest risk in cloud computing lies in the data’s passage to the cloud – hence the importance of a secure line to a cloud service.

So let us look at encryption in the light of those two lessons. Instinctively it makes sense to keep full control of your own encryption and keys, rather than let them get into any stranger’s hands – so how far do we trust that instinct, bearing in mind the need also to balance security against efficiency?

Please see the full article at Business Cloud News.

Yes, Virginia, NFV Services Can Be Testable, Scalable and Predictable

Posted on April 28, 2015 by Wedge Networks Administrator

By Alan Zeichick, NetworkWorld, April 28, 2015

“A year is a long time in this business, and it’s great that NFV software embedded in a software-defined network has moved from ‘by golly, it works!’ proof-of-concept to a hard-driving test that shows reliable performance under load.

One of the coolest demonstrations at the RSA Conference in San Francisco was of a network functions virtualization (NFV)-based firewall and Deep Content Inspection engine embedded into the software-defined networking (SDN) control plane of a heavily laden network. The firewall/DCI engine filtered content and blocked SQL injection attacks in real time, without slowing down the simulated network.

The OpenStack-based testbed was created and run by Spirent, a Southern California firm well known for its network testing platform. The security firm with the firewall and DCI engine was Wedge Networks, a Canadian company that’s focused on the cloud.

The testbed validated the ability of WedgeOS – Wedge’s virtualized firewall and Deep Content Inspector – to block identified content in the OpenStack-based virtual environment.”

For the full article, please see NetworkWorld.com.

Posted in Industry News, Latest Security News, Wedge News | Tagged Cloud Security, NFV, OpenStack, SDN, Spirent, WedgeOS | Leave a comment

Wedge Networks and Spirent Demonstrate the Security, Flexibility, and Scalability of the Open Cloud

Posted on April 22, 2015 by Wedge Networks Administrator

Wedge Cloud Network Defense™ embeds high-performance security in a virtual test network orchestrated and measured by Spirent

San Francisco, April 21, 2015 —Wedge Networks and Spirent Communications jointly demonstrate that NFV-based functionality can be embedded into cloud networks as virtual services – and that those services can exhibit the performance, predictability, scalability and elasticity required by commercial operators and enterprise customers today.

The test validates the ability of WedgeOS™ and Wedge NFV-S – the underlying security service engine of Cloud Network Defense™ (CND) – to identify and block identified content in an OpenStack-based cloud environment. Using Spirent Avalanche to generate stateful traffic and malicious attacks, WedgeOS™ will block malicious content based on configured policies. Spirent Velocity will orchestrate the test environment while using Spirent iTest to automate the test cases.

The demo also showcases the OpenCloud Reference Architecture recently released by OpenCloud Connect, an industry association focused on creating cloud service standards. OpenCloud Connect (formerly known as the CloudEthernet Forum) has also developed the OpenCloud Project, an open test bed for validating end-to-end interoperability for cloud, datacenter and network services.

Dr. Hongwen Zhang, CEO of Wedge Networks, said: “Today’s network is a cloud-connected network, and cloud-connected networks require a different vision of security than traditional networks. Because NFV-S embeds security into the data plane of network, you now have security applied inherently as a characteristic of the network. Therefore, users don’t have to suffer the same security issues as in the old network model with traditional security implemented on the end point itself or at the network perimeter. ”

Scott Parcel, Spirent VP of Marketing & Operations, said: “This demonstration shows that the performance of NFV solutions can be reliably predicted, and shown to scale elastically to handle traffic growth and spikes. Customers migrating to virtual networks from physical network devices need to see this predictability in order to have confidence in deploying NFV services.”

Spirent and Wedge Networks will be showing this demo at the RSA Conference in Booth (South Expo #S2027). The two companies will repeat the demonstration at Interop in Las Vegas, from Apr. 28-30, in Booth 820.

About Wedge

Wedge Networks™ is transforming the way security is delivered. Powered by the innovative WedgeOS™, Wedge Networks’ Cloud Network Defense™ platform is designed to combat the shifting threat landscape associated with cloud, mobility, Internet of Things and consumerization of IT. By embedding security within the network as an elastic, scalable service, it is the only cloud security solution to perform high-performance content inspection without requiring traffic to leave the network. The award winning Wedge Platform™ is deployed globally, delivering security protection for tens of millions of users in Fortune 500 companies, government agencies, internet services providers, and across all industry verticals. Wedge Networks is headquartered in Calgary, Canada and has international offices in Dallas, USA; Beijing, China; and Manama, Bahrain. For further information visit: http://www.wedgenetworks.com/

About Spirent Communications

Spirent Communications plc. (LSE: SPT), a global leader in test and measurement, offers an extensive portfolio of solutions to test data centers, cloud computing and virtualized environments, high speed Ethernet networks and services, 3G/4G wireless networks and devices, network and application security, and positioning technologies. For more information visit, www.spirent.com

Contacts:
Zonic Group
Hannah Whitrow
+ 44 7760806070
hwhitrow@zonicgroup.com

Posted in Industry News, Wedge News | Tagged Cloud Network Defense, cloud-connected networks, NFV, security | Leave a comment

The Internet of Things is Here – But We Can’t Trust the Things

Posted on April 17, 2015 by Wedge Networks Administrator

Wedge CEO, Dr. Hongwen Zhang’s article is featured at SDxCentral.com.

“The Internet of Things needs secure network services through SDN and NFV – because nobody can secure the things. Even if we try, we can’t keep the things (better known as endpoints) secured. There are far too many mobile and wireless devices with an incredible variety of operating systems and hardware configurations. There are too many last-mile networks, from the enterprise Wi-Fi to the coffee shop to the home to the playground. There are too many data centres, too many APIs. There are no borders. There is no trust – and there can’t be trust.

The things cannot be secured. The best hope for preserving end-user privacy, for ensuring data integrity and for protecting devices against intrusions and corruption, is software-defined networking. And more than that, layered on top of SDN, security implemented via network functions virtualization.”

For the full article, please see SDxCentral.com.

Posted in Industry News, Latest Security News, Wedge News | Tagged Mobile Security, NFV, SDN | Leave a comment

Bring Your Own Encryption: New Term in the Cloud Age

Posted on April 6, 2015 by Wedge Networks Administrator

By Hongwen Zhang, Wedge CEO and Chair Security Working Group, CloudEthernet Forum – Monday, April 6, 2015

“The idea of encryption is as old as the concept of written language, but with the spread of literacy, ever more care had to be taken to make sure that only the privileged few can read the hidden message. Today’s encryption typically relies on some sort of “key” to unlock and make sense of the message it contains, and that adds a new level to the problem: now the message is secure, the focus shifts to protecting the key.

In the case of access to cloud services: if we are encrypting data because we are worried about its security in an unknown cloud, why then should we trust the same cloud to hold the encryption keys? Hot on the heels of BYOD – or “Bring Your Own Device” to the workplace – come the acronym for Bring Your Own Key (BYOK).

Microsoft recently announced a new solution using HSMs (Hardware Security Modules) – so that an enterprise customer can use its own internal HSM to produce a master key that is then transmitted to the HSM within the Windows Azure cloud. This provides secure encryption and means that not even Microsoft can read it – because they do not have the master key hidden in the enterprise HSM.

It is not so much that enterprises cannot trust Microsoft, but more to do with legal complexities. In the wake of Snowden revelations, it is becoming known that even the best protected data might be at risk from a government or legal subpoena demanding to reveal its content. Under this BYOK system, however, Microsoft cannot be forced to reveal the enterprise’s secrets because it cannot access them itself, and the responsibility lies only with the owner.

This is increasingly important because of other legal pressures that insist on restricting access to certain types of data. A government can, for example, forbid anyone from allowing data of national importance to leave the country – no simple matter in a globally connected IP network. There are also increasing legal pressures on holders of personal data to guarantee levels of privacy.”

For the full article, please see NetworksAsia.net.

Posted in Industry News, Latest Security News, Wedge News | Tagged BYOK, Cloud Security, Encryption | Leave a comment

Wedge Networks Launches Global Rollout of Cloud Network Defense™

Posted on March 2, 2015 by Wedge Networks Administrator

Showcases innovative, elastic cloud cybersecurity solution at Mobile World Congress 2015 in the official Canadian Pavilion

Barcelona, Spain, March 2, 2015 — Wedge Networks™, the innovative leader in cloud-based cybersecurity, today announced the global roll out of Cloud Network Defense™, a leading-edge solution that delivers the most high performance security across all types of traffic to and from all types of devices in very large-scale networks. This announcement was made at Mobile World Conference 2015, where the Calgary-based company is a featured participant in the Alberta Booth, part of the Canadian Pavilion. Wedge Networks is both a supplier to and a partner of the Canadian government.

Cloud Network Defense is a cybersecurity solution for telecom service providers, cloud network providers and other operators of large-scale networks. Based on Software Defined Networking (SDN) and Network Function Virtualization (NFV), it delivers end-to-end Security-as-a-Service without requiring vertically integrated hardware appliances or network routing. All traffic remains within the service provider’s secured network during inspection and policy application.

The solution implements Elastic Security Services Orchestration, which integrates SDN, NFV and cloud management capabilities to perform an exhaustive policy-based deep content inspection of all inbound and outbound traffic to defend traditional devices, mobile users, data and web applications. The open platform delivers interoperability with different identity management platforms, OSS systems, cloud orchestration systems, SDN controllers and network components, and supports multiple cloud management systems such as OpenStack and KVM.

Cloud Network Defense is available immediately and is being rolled out to customers worldwide.
Hongwen Zhang, PhD, Co-Founder and CEO of Wedge Networks, said, “2015 will be an exciting year for Wedge as we look to aggressively expand our global network of service provider partners. Given the dramatic shift in the security landscape due to cloud, mobility, consumerization of IT, and Internet of Things; it’s our belief that service providers will be the optimal delivery point for providing security to consumers. It’s critical to clean traffic at the source, so people can safely access the Internet to do whatever it is they need to do. That, in a nutshell, is our mission at Wedge. ”

Wedge Networks is a key technology partner to the Canadian government. The company’s WedgeOS™ platform has been tested in Canada’s shared Internet service cloud and in the future will protect the Government’s critical data being shared across diverse departmental networks.

Wedge Networks is also the recipient of several innovation grants from Canada’s Provincial and Federal governments.

One such grant is from Alberta Innovates – Technology Futures’ Product Demonstration Program for its proof of concept for managed service operators, and for implementing managed security operations for large cable network operators in Canada and the United States.

Another grant is from the IRAP Business Innovation Access Program from the National Research Council of Canada. Combined with a National Research Council grant, Wedge Networks has also supported cloud computing research at the University of Calgary.

At Mobile World Congress 2015, Wedge Networks is showcasing its innovation and technology leadership from within the official Alberta Booth, part of the Canadian Pavilion, which is supported by the Government of Alberta , the federal government and over 20 Canadian Trade Commissioners participating in the event.

To learn more about Wedge Networks, visit Booth 7H40 – Hall7 – Alberta Booth, part of the Canada Country Pavilion at MWC 2015, or contact. 1-888-276-5356

About Wedge Networks™
Wedge Networks™ is transforming the way security is delivered. Powered by the innovative WedgeOS™, Wedge Networks’ Cloud Network Defense™ platform is designed to combat the shifting threat landscape associated with cloud, mobility, Internet of Things and consumerization of IT. By embedding security within the network as an elastic, scalable service, it is the only cloud security solution to perform high-performance content inspection without requiring traffic to leave the network. The Wedge Platform™ is deployed globally, delivering security protection for tens of millions of users in Fortune 500 companies, government agencies, internet services providers, and across all industry verticals. Wedge Networks™ is headquartered in Calgary, Canada and has international offices in Dallas, USA; Beijing, China; and Manama, Bahrain. For more information please visit www.wedgenetworks.com

Posted in Industry News, Wedge News | Tagged Cloud Based Security, Cloud Network Defense, WedgeOS | Leave a comment

Security May Be Key To “Third Network”

Posted on December 4, 2014 by Wedge Networks Administrator

December 3, 2014 – Bill Boyle – Datacenter Dynamics

SECURITY IS THE KEY

“It is one thing to establish security across a single provider network, but to maintain consistent security as the signal passes into and across different networks is a major challenge.

The power of the carrier ethernet has been its flexibility to carry an required service, and this is possible because there are so many variables that can be set. But this is also why it has been so difficult to align services, and why e-Access has become so important in establishing a basic global standard for faster connection to access networks.

The most promising solution to this orchestration challenge has been proposed by Wedge Networks. It is to adopt the SDN principle and consider the traffic flow as a virtual network, rather than a string of hardware elements, and so define a distinct “security layer” to orchestrate Security as a Service.

Th analogy with the Wedge approach is this: rather than trying to address the security at that bottom level, you can virtualize the data flow to a level where it can be better managed as a service. There is a double advantage to this approach: as well as being able to orchestrate a personalized service across multiple network segments, it also enables very high levels of security and protection by creating the equivalent of an organism’s immune system – with built-in automated security functions for all traffic flows.” For the full article, please visit Datacenterdynamics.com.

Posted in Industry News, Latest Security News, Wedge News | Leave a comment

Wedge Networks Launches Cloud Network Defense

Posted on November 24, 2014 by Peng

Posted on November 24, 2014 by Upgrade Magazine Staff

Excerpt:

Wedge Networks has launched the Cloud Network Defense (CND), said to be a radical new means to delivery high levels of cyber security – on demand and closely tailored to business or individual security needs. CND presents an opportunity for service providers to grow their portfolio and generate sustainable added revenue.

“Small and medium size businesses face the same cyber threats as their enterprise peers, yet they have stiffer budget constraints for managed security services to assist in defending attacks from cyber miscreants,” according to Frank Dickson, Research Director with Frost & Sullivan, “Wedge Networks Cloud Network Defense empowers managed security service providers to deliver robust security services to small and medium size business by leveraging a scalable and effective technology platform, moving away from a security professional staff centric approach. As a result, managed security service providers can profitably deliver effective and reliable managed security services needed by small and medium businesses.”

Please visit upgrademag.com to read the full article.

Posted in Industry News, Latest Security News, Wedge News | 1 Comment

Could Cloud Network Defense Mean a New Source of Security?

Posted on November 21, 2014 by Peng

November 21, 2014 – By Steve Anderson, Contributing NFVzone Writer

Security, these days, is perhaps one of the – some might even say the – most important functions that anyone who deals with computers, regardless of size or purpose, can undertake. As such, there are plenty of options to bring to the table when it comes to security, from a variety of different vendors. However, a new development from Wedge Networks may offer up a new form of security presented in a whole new way, its new Cloud Network Defense system. To read the full article, please visit nfvzone.com.

Posted in Industry News, Latest Security News, Wedge News | Leave a comment

Main Website Links
Wedge DCI Search

Search for:
Wedge Calendar
February 2026

S M T W T F S

1 2 3 4 5 6 7

8 9 10 11 12 13 14

15 16 17 18 19 20 21

22 23 24 25 26 27 28

« Jun
Recent Posts
Recent Comments
- Ram Bathala on Calgary’s Wedge Networks Looks to Channel for Enterprise Push with Malware-Blocking Product
- Eva on Milliseconds Versus Minutes – The Difference Between Prevention and Remediation
- Smithb on Wedge Adds AI for Better Malware Blocking
- Abram on Wedge Joins MEF to Boost World’s Third Network Security
- David Millar on 5G & IoT Dominate MWC16
Archives
- June 2025
- May 2025
- March 2025
- February 2025
- December 2024
- November 2024
- June 2024
- March 2024
- February 2024
- December 2023
- October 2023
- June 2023
- May 2023
- February 2023
- January 2023
- November 2022
- September 2022
- August 2022
- July 2022
- June 2022
- March 2022
- February 2022
- January 2022
- December 2021
- November 2021
- September 2021
- June 2021
- May 2021
- April 2021
- March 2021
- February 2021
- January 2021
- December 2020
- November 2020
- October 2020
- September 2020
- August 2020
- July 2020
- June 2020
- May 2020
- April 2020
- March 2020
- February 2020
- January 2020
- October 2019
- August 2019
- July 2019
- June 2019
- May 2019
- April 2019
- March 2019
- February 2019
- January 2019
- October 2018
- September 2018
- August 2018
- July 2018
- June 2018
- March 2018
- February 2018
- July 2017
- June 2017
- May 2017
- April 2017
- February 2017
- November 2016
- October 2016
- September 2016
- May 2016
- April 2016
- March 2016
- February 2016
- December 2015
- November 2015
- October 2015
- September 2015
- August 2015
- June 2015
- May 2015
- April 2015
- March 2015
- December 2014
- November 2014
- October 2014
- April 2014
- March 2014
- February 2014
- January 2014
- December 2013
- November 2013
- October 2013
- April 2013
- November 2012
- October 2012
- September 2012
- June 2012
- May 2012
- April 2012
- March 2012
- February 2012
- January 2012
- December 2011
- November 2011
- June 2011
- May 2011
- February 2011
- November 2010
- October 2010
- September 2010
- August 2010
- July 2010
- June 2010
Categories
Meta
Kaspersky ThreatPost
- Student Loan Breach Exposes 2.5M Records August 31, 2022
- Watering Hole Attacks Push ScanBox Keylogger August 30, 2022
- Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms August 29, 2022
- Ransomware Attacks are on the Rise August 26, 2022
- Cybercriminals Are Selling Access to Chinese Surveillance Cameras August 25, 2022
- Twitter Whistleblower Complaint: The TL;DR Version August 24, 2022
- Firewall Bug Under Active Attack Triggers CISA Warning August 23, 2022
- Fake Reservation Links Prey on Weary Travelers August 22, 2022
- iPhone Users Urged to Update to Patch 2 Zero-Days August 19, 2022
- Google Patches Chrome’s Fifth Zero-Day of the Year August 18, 2022

Main Website Links

Wedge DCI Search

Wedge Calendar

Recent Posts

Recent Comments

Archives

Categories

Meta