Aruba, a Hewlett Packard Enterprise company (NYSE: HPE) announced the next milestone for its SD-Branch solution that enables more secure, streamlined and simplified deployment and management of large distributed retail networks.
A critical component of the company’s Edge-to-Cloud strategy, Aruba’s SD-Branch solution integrates Aruba Branch Gateways with the Aruba Central cloud management platform to provide a single point of control and management for SD-WAN, wired and wireless networking to enable secure, simplified branch connectivity at scale. The innovations include:
- An expansion of Aruba’s unified branch defense capabilities to provide unique, identity-based attack detection and intrusion prevention to deliver zero trust in-store network security;
- New enhancements to the SD-WAN Orchestrator in Aruba Central to deliver unified edge-to-cloud management and secure connectivity to cloud workloads;
- New branch gateways that provide non-stop connectivity via built-in cellular, including LTE.
Retail IT teams are under tremendous pressure to drive digital transformation within brick-and-mortar locations and “place the store at the center of their customer experience” in order to compete with online merchants and marketplaces. To achieve this, they are leveraging next-generation technologies to enable personalized, immersive experiences within the stores, but are consistently challenged by the lack of on-site technical staff at branch locations. As such, IT staff responsible for connecting, securing and managing retail locations must rethink the way they architect their branch networks. A unified edge-to-cloud architecture that automates and secures LAN, WAN and cloud connectivity is paramount to driving operational efficiency and addressing the lack of IT staff.
“As we continue to grow our retail stores internationally, we are laser-focused on using technology to deliver our customers truly unique shopping experience,” said Stewart Ebrat, CIO at Vera Wang. “With Aruba’s SD-Branch solution as the solid foundation for a secure, easy-to-deploy and centrally managed infrastructure, we will also be able to better engage with our customers by identifying them via their mobile phones so that store associates can help personalize and transform their in-store shopping experience.”
Delivering Zero Trust Security to the Retail Branch
Many IT teams are adopting a Zero Trust Security framework, an architecture that dictates that no one within or outside the network is trusted. Key elements of a Zero Trust Security framework include a policy engine/trust broker, the ability to dynamically segment traffic on the basis of identity and role, and continuous monitoring for changes in security status with the corresponding real-time adjustment of access policies.
Aruba is advancing its unified branch defense capabilities with new IDS/IPS functionality that integrates with Aruba’s ClearPass Policy Manager and Policy Enforcement Firewall. By leveraging role-based access, Aruba adds a new identity-based detection dimension to traditional intrusion detection and prevention, enabling security teams to focus on alerts that matter.
Aruba’s unified branch defense also includes:
- One-click integration with cloud-based security solutions;
- Threat visibility and trend analysis;
- Correlation of security events with sites, clients, applications and network infrastructure;
- Out-of-box policies for enforcement and incident response;
- Security event streaming to third-party Security Information and Event Management (SIEM) solutions;
- ClearPass Policy Manager for global access policy development and propagation.
Seamless Zero Trust from Edge-to-Cloud
As adoption of software-as-a-service (SaaS) applications and virtual private clouds (VPCs) continue to rise, Aruba is extending its Zero Trust Security model to the cloud with the enhanced SD-WAN Orchestrator in Aruba Central, making it easier for branch network operators to deploy flexible and secure overlay topologies in a large-scale edge infrastructure, securely connecting thousands of remote locations to applications in data centres and the cloud.
Ensuring Non-Stop Operations at Every Retail Location
Built-in cellular access in the Aruba 9004 Series Gateways gives customers the option to use the connection as a primary or secondary uplink or in a load shared active-active mode with other broadband links. Further, for cost control purposes, retailers can selectively use the cellular uplink for certain applications in any of these modes.
“Aruba pioneered the SD-Branch solution, creating a new category beyond pure-play SD-WAN offerings that give retail IT the ability to face the higher-level challenges of remote branch connectivity, such as reducing device footprint, unified management across WAN and LAN, and security,” said Kishore Seshadri, vice president and general manager of SD-WAN Solutions at Aruba, a Hewlett Packard Enterprise company.