The Rise Of SD-WAN And Its Implications For Security & Performance

In this digitally enabled hybrid and remote working world, it’s hard to recall the days when fixed Wide Area Networks (WAN) universally delivered our everyday enterprise network user experience by solidly moving data over a single, private network fixed grade connection. 

Back in the early 2010’s when online collaboration tools, video conferencing and VOIP were in their infancy, some forward-thinking vendors including Viptela (now part of Cisco)  and SilverPeak (Aruba/HP) started pioneering a Software-Defined Wide Area Networking (SD-WAN) as an alternate decentralised approach for networking that would allow for intelligent routing of traffic over multiple connections.

This approach - they promised - would optimise network traffic more efficiently for digital work enablement and respond far quicker to changing business needs such as adding more users/workspaces on the fly.

It would also reverse the backhauling of network traffic back through corporate HQs. Momentum and adoption was quick to follow and by 2015, Cisco, VMware, Fortinet, Palo Alto, Aruba and Citrix had all added SD-WAN cloud networking solutions. Users were able to significantly modernise their network performance and improve connectivity to apps and cloud services by enabling intelligent routing of traffic over multiple cloud connections.

Rapid growth of SD-WAN is still occurring with IDC continuing to project rapid annual growth of over 30%. Market analysts anticipate a global market projection of $13.7 billion by 2026. There are now millions of SD-WAN installations globally, enticed by its flexible design which supports optimised direct access to cloud-first strategies. Enterprises have found it essential for connecting branch locations and remote offices with SaaS applications and AWS and Microsoft Azure public clouds. Network Managers note some of the organisational key benefits as:-

1.    Enhanced Performance: With intelligent traffic routing and dynamic path selection over multiple protocols and technologies, SD-WAN elects for the most efficient paths based on real-time conditions. This brings optimal performance for applications prioritising high-bandwidth and low latency paths. SD-WAN also self-prioritises different types of applications depending on criticality to the business, ultimately delivering a premium user experience. 

2.    Fast Deployment and Cloud Integration:  Connecting new sites to a SD-WAN network is a comparative breeze given centralised management, zero touch provisioning and optimised access into cloud-based apps.

3.    Greater Resilience:  With automatic rerouting in the event of network failovers and multiple connection support (including MPLS, & broadband) SD-WAN can improve network reliability. 

4.    Greater Management:  SD-WAN offers a single view of managing the entire network.  It splits functions into two – managing the control plane and the data plane. With this holistic management comes finer controls, easier analytics on network performance and traffic; and when provisioned correctly from the outset, enhanced security.

5.    Lower costs:   In using WANs, organisations relied on expensive MPLS circuits to offer secure and reliable WAN connections. SD-WAN enables use of public internet connections like broadband or LTE, reducing connectivity costs. Often too, network devices like firewalls and VPNs can be combined into a single platform, reducing costs and IT required resources. 

The Security Challenge of SD-WAN – Security needs seamless integration and consideration into every phase of deployment:

But while this decentralised and joined approach offered by SD-WAN allows for greater agility and a better UX delivered from a dynamic core, it also broadens the possible number of ‘attack surfaces’ with the introduction of multiple entry points into the network. The dynamic nature of SD-WAN with multiple connection paths and constantly changing traffic patterns, needs a vigilant ‘monitor, manage, detect and respond’ security approach. All entry points need flexible and comprehensive security strategies to reduce vulnerabilities to cyber-attacks, cyber breaches and lack of compliance to digital security best practices.

Vulnerabilities are even greater still as SD-WAN often routes traffic over public internet connections which are inherently less secure.

It’s therefore essential that deployment of SD-WAN should go hand in hand with increased cyber surveillance; tracking and tools such as stronger encryption; vigilant monitoring; increased training of users and sophisticated firewalls.  Ideally integrating these increased security measures and monitoring should be planned in detail at the very beginning of the SD-WAN implementation, with security layered from the ground up. 

Enterprises with branches, remote offices and mobile users have embraced SD-WAN as new facilities can be extended and revoked with ease. However, without necessarily having dedicated IT onsite at these facilities, enterprises’ need to necessitate the same protection levels, monitoring, and consistent security policies across all locations. 

To achieve this integrated approach of the entire estate, some organisations have adopted a Unified Security Framework that combines and underlines the roles of firewalls, VPNs, cyber solutions, monitoring and external intrusion prevention with a formulated and integrated approach, often co-advised by a trusted networking partner. Adherence to a security framework has never been more important as the EU (and most developed countries) revise and release mandatory adherence to the NIS2 Directive in October 2024 to strengthen cybersecurity in critical and important infrastructure sectors – (and for their supply chain).

With the correct tools and continuous monitoring services, SD-WAN can be part of this NIS2 compliancy, enhancing visibility and control to mitigate risk, by ensuring regular updates, strong encryption and secure management across the organisation.

Some advanced network monitoring platforms now use machine learning to find anomalies and dynamically respond to cyber threats before they can impact SD-WAN infrastructures. 

John Diamond is Solutions Architect with Park Place Technologies

Image:  Sakorn Sukkasemsakorn

You Might Also Read: 

Many Cyber Security Experts Don’t Understand The Systems They Are Trying To Secure:


If you like this website and use the comprehensive 7,000-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible


 

« Standards: The Key To Building A Sustainable Quantum-Safe Future 
Iranian State-Sponsored Hackers Attacking Israel »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Continuity Shop

Continuity Shop

Continuity Shop provides training and consultancy in Business Continuity and Information Security to some of the world's biggest organisations.

Akin Gump Strauss Hauer & Feld

Akin Gump Strauss Hauer & Feld

Akin is a leading global law firm providing innovative legal services and business solutions to individuals and institutions. Practice areas include Cybersecurity, Privacy and Data Protection.

CSA Events

CSA Events

Cloud Security Alliance conducts a series of conferences around the world. This listing provides a link to details of upcoming events.

ADF Solutions

ADF Solutions

ADF Solutions is a leading provider of digital forensic and media storage exploitation tools.

Picasso

Picasso

The Picasso project is focused on ICT Policy, Research and Innovation for a Smart Society: towards new avenues in EU-US ICT collaboration.

Computer Forensic Services

Computer Forensic Services

Computer Forensic Services are digital evidence specialists. Practice areas include Information Security, e-Discovery, Law Enforcement Support and Litigation.

Defendify

Defendify

We built Defendify to help small businesses navigate the cybersecurity landscape with cybersecurity that is dead simple, affordable, and works around the clock.

Randstad

Randstad

Randstad provide outsourcing, staffing, consulting and workforce solutions in the USA across a wide range of job sectors including IT and cybersecurity.

Presidio

Presidio

Presidio is a leading North American IT solutions provider focused on Digital Infrastructure, Business Analytics, Cloud, Security & Emerging solutions.

Infosec Cloud

Infosec Cloud

Infosec Cloud is a specialist Cyber Security company offering fully managed Training & Testing Services in addition to market leading Cyber Security technology and accredited professional services.

SecureOps

SecureOps

SecureOps is transforming the Managed Security Service Provider industry by providing tailored cybersecurity solutions proven to protect organizations from cyberattacks.

QAlified

QAlified

QAlified offer independent testing and quality assurance services for software projects including security testing.

Data Priva

Data Priva

Data Priva is the UK's leading subscription-based data protection, governance, risk and and compliance service.

Crayon

Crayon

Crayon is a customer-centric innovation and IT services company. We provide guidance on the best solutions for our clients’ business needs and budget with software, cloud, AI and big data.

InfoTrust

InfoTrust

InfoTrust is a leading specialised cybersecurity practice that combines a customer-first consulting approach with next-generation security solutions.

ThreatView by Turaco Labs

ThreatView by Turaco Labs

ThreatView combines extensive experience in digital forensics with advanced analytics and threat detection capabilities to protect eCommerce websites.