Network Management Software | 9 SES SECURE ENTERPRISE SOFTWARE DEFINED NETWORKING Allied Telesis Secure Enterprise SDN (SES) is a state-of-the-art network management and security solution. It provides what enterprises consistently tell us they need: reduced network management costs, increased network security and an improved end-user experience. SES is the only commercially available SDN solution that improves all these areas: it reduces network management costs by removing duplication of effort; it increases network security by automating responses to security threats; and it improves end-user experience because people no longer have to wait for network changes to be made manually. SES comprises an intelligent, fully- featured SDN controller. It reduces manual effort and cost in two ways: firstly, it reads data from business applications and automatically changes the network configuration to match, and secondly, it works with security applications to instantly respond to alerts and block the movement of threats anywhere within your wired or wireless network. The SES controller includes powerful northbound APIs that collect real-time data from business applications. SES analyses this data to decide if network configurations need to be altered to reflect new business rules. For example, when new employees join the company, their details are entered to the HR system. SES detects this and automatically instructs the network to grant the new users the appropriate level of network access. SES also improves the security of the network by actively responding to threats and taking immediate action to prevent their spread. Most Intrusion Detection Systems (IDS) can only warn if a threat has been found, they cannot act to block the offending traffic. By the time the operator reacts to the warning, the damage may have escalated. SES works with industry-leading IDS tools to immediately and automatically block the affected network ports when a threat is detected. Responses are configurable and comprehensive logging provides a clear audit trail of the actions taken. SES interoperates with networks containing compatible OpenFlow switches and a range of physical and virtual firewall products. There is no need for a forklift upgrade of the network to take advantage of the benefits of SES – it can interoperate with a wide range of existing equipment. SES is an innovative SDN solution delivering real value by removing duplication and reducing network operating costs, while constantly monitoring for threats and instantly protecting the network. While other SDN solutions provide esoteric solutions for obscure networking problems, SES delivers true business value every day. Office API Allied Telesis SES Controller Network Edge - Wired & Wireless HR System Business APPs Security APPs 1 2 3 New employee added to HR system SES retrieves business data and sets up network policy New employee is granted appropriate access 1 2 3 1 2 3 4 Allied Telesis SES Controller Targeted attack inside the network! Threat information sent upline Infected device sent to quarantine Firewall sends threat notification SES instructs switch to shut down threat source 1 2 3 4 SES SES SES SES Palo Alto Networks Next-Generation Firewall (or other compatible firewall) Service Business applications drive network change Threats are detected and automatically blocked