Hello!
We will continue talking about Huawei's HiSec solution. This post will be about the architecture of this innovative solution. Hope you like it!
To address the increasingly complex and changing set of threats, Huawei launches the software-defined HiSec solution, providing a new intelligent security protection system for digital enterprises.
The HiSec solution uses a model architecture of three layers, including the security analyzer, the controller and the enforcer, as shown in Figure 1.
Figure 1 HiSec solution architecture
Situational awareness of security across the network
The graphical user interface (GUI) intuitively displays the security situation across the network, allowing network administrators to view risks based on key regions and assets and get tips for managing these risks. Network administrators can quickly identify areas and assets for which they are responsible and perform security protection operations such as updating the system and installing patches based on security status and management tips.
Rapid detection of advanced threats
The HiSec solution collects network traffic, threat logs and malicious encrypted traffic and uses big data detection and analysis technology to help network administrators quickly discover threat events (including advanced threats) on the network. Network deception can also be used to perform an in-depth check on suspicious analysis and access. All of this helps transform security defense from passive to proactive.
Second-level security collaboration and response
Collaboration between the security analyzer, controller, and enforcer can respond to security events in seconds, greatly improving the speed and efficiency of security response. Additionally, manual or automatic security policy collaboration and threat response orchestration can be performed to manage network security threats in a timely manner, minimizing their impact on the network and services.
Smart security policy O&M
Leveraging smart O&M policy based on dynamic application mutual access relationships, the HiSec solution provides visualization of application mutual access relationships, dynamic optimization of existing policies, and simulation verification of new policies online, providing powerful support for network administrators to deal with massive security policies.
Unified management of security services
The security controller manages firewall security policies in a unified way and solves the problems of dispersed firewall management methods and the lack of effective centralized management tools. Additionally, the security controller collects statistics on policy changes, configuration consistencies, and deployment status, improving the O&M efficiency of network administrators.
That´s all!
Hope you find my post useful. Please let me know in the Comment Section if you have any further concerns or remarks.
Thank you!
#HESC
#OneHuawei
#MVE
