NC Feb-Mar 2024

NETWORKcomputing
I N F O R M A T I O N A N D C O M M U N I C A T I O N S – N E T W O R K E D www.networkcomputing.co.uk
2024 VISION
Predicting the network space for the year ahead
AGILE OPERATORS
Network Computing catches
up with Polywell Computers
NETWORK
INTEGRATION
Navigating the complexity
of modern networks
IDENTITY CRISIS?
The modern evolution of
IGA solutions
FEBRUARY/MARCH 2024 VOL 33 NO 01

REGISTER
FOR YOUR
FREE TICKET
WWW.CLOUDEXPOEUROPE.COM/BTC

COMMENT
COMMENT
FORECASTING THE FUTURE OF NETWORKS
Welcome to our first issue of 2024, where we're taking a closer look at what
this year will entail for the networking space with a range of predictions from
industry experts. First, Kevin Drinkall, Director - Marketing and GTM Strategy,
EMEA at Zyxel, explains why 2024 is set to be a year of progressive network evolution
and innovation, defined by "a continued move towards remote monitoring and management
of networks."
Kevin identifies three key elements underpinning this innovation, namely "a large-scale
upgrade of wireless technology to the latest WiFi 6/6E and WiFi 7 standards; a continued
move to multi-gigabit switches and infrastructure; and increased adoption of network
security that is simple to install and manage. Another developing trend is the
increased uptake of 5G routers for connectivity that is mobile and can be used in
remote areas." Read Kevin's article for more insights on how we can bring the network
up to speed in the coming months.
We also have an opinion piece from HPE Aruba Networking Chief Product Officer
David Hughes, in which David shares his top 5 networking and security predictions for
2024. With HPE poised to purchase Juniper Networks for $14 billion - a move that's
set to shake-up the industry in its own right - it seems a fitting time to learn more about
the company's vision for the networking year ahead, and David's predictions range from
the death of the standalone firewall to the potential for AI to liberate, rather than supplant,
IT admins.
REVIEWS:
Dave Mitchell
DEPUTY EDITOR: Mark Lyward
(netcomputing@btc.co.uk)
PRODUCTION: Abby Penn
(abby.penn@btc.co.uk)
DESIGN: Ian Collis
(ian.collis@btc.co.uk
SALES:
David Bonner
(david.bonner@btc.co.uk)
Julie Cornish
(julie.cornish@btc.co.uk)
SUBSCRIPTIONS: Christina Willis
(christina.willis@btc.co.uk)
PUBLISHER: John Jageurs
(john.jageurs@btc.co.uk)
Published by Barrow & Thompkins
Connexion Ltd (BTC)
35 Station Square,
Petts Wood, Kent, BR5 1LZ
Tel: +44 (0)1689 616 000
Fax: +44 (0)1689 82 66 22
SUBSCRIPTIONS:
UK £35/year, £60/two years,
£80/three years;
Europe:
£48/year, £85/two years £127/three years;
ROW:
£62/year, £115/two years, £168/three years;
Subscribers get SPECIAL OFFERS — see subscriptions
advertisement; Single copies of
Network Computing can be bought for £8;
(including postage & packing).
© 2023 Barrow & Thompkins
Connexion Ltd.
All rights reserved.
No part of the magazine may be
reproduced without prior consent, in
writing, from the publisher.
Finally, while we're focusing on the year ahead, we're excited to announce that nominations
for the 2024 Network Computing Awards have just opened! Now's the time to
nominate the networking solutions, companies and people that have impressed you the
most in the past twelve months, so please put forward you choices on the awards website.
We'll have more news about this year's event in our next issue. NC
GET FUTURE COPIES FREE
BY REGISTERING ONLINE AT
WWW.NETWORKCOMPUTING.CO.UK/REGISTER
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards FEBRUARY/MARCH 2024 NETWORKcomputing 03

FEBRUARY/MARCH 2024 VOL 33 NO 01
CONTENTS
CONTENTS
F E B R U A R Y / M A R C H 2 0 2 4
NETWORKcomputing
I N F O R M A T I O N A N D C O M M U N I C A T I O N S – N E T W O R K E D www.networkcomputing.co.uk
2024 VISION
Predicting the network space for the year ahead
AGILE OPERATORS
Network Computing catches
up with Polywell Computers
NETWORK
INTEGRATION
Navigating the complexity
of modern networks
IDENTITY CRISIS?
The modern evolution of
IGA solutions
INTERVIEW: POLYWELL............8
Network Computing catches up with Sam
Chu, CEO and founder of Polywell
Computers, a PC manufacturer with a
unique focus on the small-to-mid-size
marketplace
COMMENT.....................................3
Forecasting the future of networks
INDUSTRY NEWS.............................6
The latest networking news
TIME TO BRING THE NETWORK
UP TO SPEED........................12
Kevin Drinkall at Zyxel tells us what he
believes will be the major trends in
networking technology over the coming year
NETWORK INTEGRATION......20
The world of networking has changed
rapidly, and in this issue Chris McKie at
Kaseya provides a guide to navigating the
complexity of modern networks
FOCUSING ON THE NETWORK
SPACE IN 2024..........................16
David Hughes at HPE Aruba Networking
gives us his top 5 networking and security
predictions for 2024
AVOIDING AN IDENTITY
CRISIS.................................28
Thomas Muller-Martin at Omada explains
why the evolution of modern identity
governance and administration (IGA)
solutions Is worth your attention
ARTICLES
THE FUTURE OF USB DEVICES IN AN
IOT WORLD...................................10
By Alan Hayward at SEH Technology
THE RISE OF QUANTUM
ECOSYSTEMS IN 2024 AND
BEYOND.........................................22
By Dr. Philip Krantz at Keysight
RETAIL INFRASTRUCTURE FIT FOR
TODAY AND TOMORROW.............24
By Henk Ijspeerd at Vertiv
BECOMING SECURE BY DESIGN....26
By Chip Daniels at SolarWinds
BUNGLED BACKUPS........................30
By John Fielding at Apricorn
THE NEXT GENERATION OF
CONNECTIVITY...............................32
By Todd Mussman at GTT
REVIEWS
POLYWELL NANO-U10L4-SFP+.......11
PERLE SYSTEMS IDS-710HP-XT.........15
HORNETSECURITY 365 PERMISSION
MANAGER.......................................18
04 NETWORKcomputing FEBRUARY/MARCH 2024 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

INDUSTRY NEWS
NEWSNEWS
NEWS NEWS
NEWS NEWS NEWS NEWS
NEWS NEWS
New cloud-managed solutions from Extreme Networks
Extreme Networks has introduced two new solutions
designed to help highly distributed enterprise
organisations create improved network connectivity, security
and application performance. The AP5020 is a new Wi-Fi 7
Universal access point (AP) that operates on the 6 GHz
spectrum and is designed to support high-bandwidth,
latency-sensitive applications and IoT devices. The 4000
Series cloud-managed switches, the latest addition to
Extreme's Universal portfolio, offer faster setup time by
eliminating nearly all manual configurations. Paired with
ExtremeCloud Universal ZTNA, these offer automated
onboarding, configuration and policy enforcement to
strengthen security as organisations move to a Zero Trust
architecture across their network.
Both the AP5020 and 4000 Series switches leverage AIOps
(Artificial Intelligence for IT Operations) and machine learning
features of the ExtremeCloud IQ cloud management platform
to help proactively identify network issues and make
recommendations that help reduce IT time to resolution.
Cohesity and Veritas to combine data protection business
Cohesity and Veritas have announced a definitive agreement
under which Cohesity intends to combine with Veritas' data
protection business, which will be carved out of Veritas, to
create a new leader in data security and management.
Customers will benefit from the accelerated innovations
unlocked by the joint company's scaled R&D investment and
one of the industry's most extensive partner ecosystems. Sanjay
Poonen will lead the combined organisation as CEO and
President. Greg Hughes, CEO of Veritas, will serve as a Board
member and strategic advisor to Sanjay Poonen after the close
of the transaction.
The combined company will bring together 100s of exabytes
of data protected and will continue to invest in and advance the
roadmap and strategy of all Cohesity products and services, as
well as Veritas NetBackup, NetBackup appliances, and Alta
data protection offerings, while working towards the delivery of
an integrated solution combining the best technology across the
two companies.
Nokia trials 5G edge cloud network slicing solution
Nokia and A1 Austria (A1) have successfully completed the
industry's first 5G edge cloud network slicing trial with
Microsoft. The deployment utilised Nokia's 5G edge slicing solution
integrated with Microsoft Azure managed edge compute on A1's
live commercial network in Vienna, Austria. With edge cloud
network slicing, A1 can bring enterprise cloud applications to
mobile users over a high capacity, secure and low latency network.
During the trial, A1 demonstrated real-time HD video streaming by
transmitting live camera feeds from several mobile devices using
Multicasting.io's streaming mobile platform running on the Azure
edge infrastructure.
Nokia's 5G Edge Slicing solution enables operators to take
advantage of both slicing and edge cloud capabilities and provide
value to their customers. Network slices can be tailored to support
specific customers' use cases and different applications based on
network performance, quality, traffic routing, latency, and security.
Nokia's new solution enabled A1 to isolate its public Internet and
enterprise traffic while keeping critical business traffic local using
4G/5G core breakout for enterprise edge cloud applications. The
network slices were implemented across Devices-RAN-Transport-Core-
Edge Cloud Applications. 5G Edge Slicing enhances the enterprise
user experience for low latency and high bandwidth use cases with
high network performance, quality security and manageability.
Highlighting Network Assessment for Cisco partners
Highlight has introduced a new compact Network Assessment
feature on its Service Assurance Platform to enable Cisco
partners to assess a customer's network and identify performance
issues within a couple of weeks. The service is designed as a
stepping stone to delivering trusted, differentiated and profitable
managed services. Using quick and seamless API integration with
Cisco Meraki, Catalyst and ThousandEyes technologies, Highlight
enables partners to quickly onboard a new customer, assess the
network, make recommendations and transition the customer
from a one-time assessment to an ongoing managed, recurring
revenue relationship.
06 NETWORKcomputing FEBRUARY/MARCH 2024 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

INDUSTRY NEWS
The service enables providers to demonstrate to their customers
that they understand their network, including any current issues and
frustrations. A comprehensive report with detailed evidence
facilitates fact-based discussions on where and how to make
improvements. This strengthens the relationship between service
provider and customer whilst giving the provider an opportunity to
deliver accurate advice and upsell services.
Martin Saunders, Chief Operating Officer at Highlight said,
"Modern IT departments are struggling with ever growing demands
and expectations on their time and resources. Despite huge
advances in simplifying the management of networks through cloud
platforms like Cisco Meraki, many IT leaders are looking to their
partner to manage the infrastructure that underpins IT. Customers are
also looking for partners they can trust to become virtual members of
their IT department. However, the managed services model can be a
complex shift for some partners to make. With the Network
Assessment feature, Cisco Partners have a tangible and easy way to
prove their ability to remove the network management burden from
IT, whilst setting the foundation for building longer term recurring
revenue relationships with their customers via a managed service."
x530-28GSX full fibre switch from Allied Telesis
Allied Telesis has introduced its x530-28GSX full fibre switch,
bringing flexibility and network optimisation to the company's
x530 Series of multi-Gigabit switches. Months in development, the
x530-28GSX switch is a 24-port 100/1000X SFP stackable switch
with 4 SFP+ ports and 2 fixed power supplies. It can aggregate a
24x1 Gigabit fibre link to a 4x10 Gigabit fibre link and up to 8
units can be stacked using Virtual Chassis Stacking (VCStack) to
build a 192 Gigabit fibre aggregator. The switch also supports
copper connectivity via SFP/SFP+ ports allowing the maximum
flexibility of both copper and fibre as required.
"Businesses and organisations need to meet the rapidly changing
demand put on networks by applications such as artificial intelligence,
5G backhaul and edge computing. The x530-28GSX enables the
addition of bandwidth using either copper or fibre at either 1 or
10Gb/s, and because of its high resiliency, this capacity increase
works very well for numerous large site markets such as education
campuses, FTTx deployments, utilities, and city-wide metro networks,"
said Chris Dyke, Sales Director UK & Ireland at Allied Telesis.
Elevated 2.5G performance for SBs and prosumers
Zyxel Networks has launched the XMG1915 series, a family of
smart managed switches designed for small businesses (SBs)
and professional home users (prosumers). Available in 8 and 16-
port models, the XMG1915 series provide 2.5 Multi-Gigabit
Ethernet capability across all ports. There are also 10G uplinks
for connections to the network core, and PoE++ options that will
provide as much as 60W to a connected device. Flexible cloud
management makes the switches easy to deploy and manage.
Kell Lin, Senior Associate Vice President of Zyxel Networking
Strategic Business Unit, said: "Changing work patterns, the
increased bandwidth demands of modern applications and
services, and the growing number of devices being used on the
network edge are a significant challenge. The XMG1915 series
provides a fast, versatile, and cost-effective solution, with the
added benefit of simple deployment and management options
through our Nebula cloud management platform."
McCambridge Duffy saves and modernises with Apogee
McCambridge Duffy, a leading UK insolvency firm, has
partnered with managed workplace services (MWS) provider
Apogee Corporation to boost workplace efficiencies and modernise
its IT infrastructure. Since the collaboration began, the firm has
already reduced a large proportion of its yearly operating costs by
almost half a million pounds. Apogee digitised the operations at
McCambridge Duffy with the implementation of its Managed IT
Services and Digital Document Service. Prior to engaging the MWS
provider, the firm was suffering from up to two IT outages a month,
costing approximately £31,000, which have been reduced to zero.
As a business heavily reliant on paper-based documents, the yearly
costs associated with postage accumulating to £60,000 have been
cut down to £8,400. McCambridge Duffy has also benefitted from
improved efficiency across its workforce. Client caseloads have
almost doubled from 5,000 to 9,500, without needing to increase
headcount, and a meeting of creditors appointment now takes just
7 days to process, down from 45, an 80% reduction.
NEWS NEWSNEWS
NEWS
NEWS NEWS NEWS NEWS NEWS
NEWS
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards FEBRUARY/MARCH 2024 NETWORKcomputing 07

INTERVIEW: POLYWELL
A COMMITMENT TO AGILITY
NETWORK COMPUTING CATCHES UP WITH SAM CHU, CEO AND FOUNDER OF POLYWELL
COMPUTERS, A PC MANUFACTURER WITH A UNIQUE FOCUS ON THE SMALL-TO-MID-SIZE
MARKETPLACE
Network Computing: For readers
who may not be that familiar
with the company, let's start with
some background on Polywell and its
product range - what should we know
about what you do, and what makes
your offerings unique?
Sam Chu: Polywell is a Silicon Valleybased
PC manufacturer founded in 1987:
initially focused on serving the US market,
the company has since expanded
globally. Polywell uses technologies from
Intel, AMD, and Nvidia to produce PCs,
workstations, servers, and storage
devices. A core focus is embedded PCs
for applications like network security,
digital signage, kiosks, POS systems, and
AI/IoT devices.
In the network security industry, we
don't sell directly to end customers:
instead, we mainly work with
software vendors and developers
who use our hardware products to
create turnkey solutions for SMB
network security. Most network
security software is based on
Linux, often optimised for older
versions of the Linux kernel. This
makes it difficult for developers to
find a partner like Polywell that can
provide long-term support for
legacy operating systems.
Polywell offers
products with a
10-year
lifespan,
helping our
software
partners
avoid additional development and
certification costs. We have a strong
reputation for supporting this business
segment over many years.
In other market niches we focus on the
most advanced innovations in computer
hardware. It's common knowledge that
industrial grade computing has a
noticeable 'inertia' of 6 to 12 months as
compared to the moment that advanced
technologies appear in mainstream
segments. Polywell tries to minimise this
time lapse and make the newest
solutions available in the embedded
market as well.
Of course, we are working in a tightly
competitive market in terms of not only
the largest industry giants, but also of
mid-size manufacturers like us who are
the main driving force of the industrial
computer market. We decided long ago
that we could in no way sacrifice quality
because it lasts and reminds about itself
during the whole lifecycle of the product
- unlike price! We are trying to make our
products 'self-convincing', saying
everything about themselves. You may be
surprised, but in many cases a customer
just needs to take our PC in hand to
make a choice in our favour. That's why
we encourage the 'test-before-you-buy'
approach.
NC: Can you talk about particular
product developments in the pipeline -
what are you planning, when will it be
available, and why will it be of interest to
our readers?
08 NETWORKcomputing FEBRUARY/MARCH 2024 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

INTERVIEW: POLYWELL
SC: While maintaining a longevity
product supply for our embedded
products, Polywell is also working
closely with Intel to develop new
products, such as utilising the 13th
gen CPU to provide early samples to
developers to develop their software,
or port their old or existing apps by
utilising the new technologies
launching with the new platform to
improve performance and features.
Besides the CPU itself, security
products are also heavily dependent on
network I/O and speeds. We are
currently developing the 400Gbit
Network Platform for the SDN
(Software Defined Network) products
for the high-end segment, by utilising
the PCIe 5.0 high performance buses
lanes and high-speed network chip
from Mellanox (Nvidia) and Intel.
Expect the product to be launched at
the end of 2024.
NC: The simultaneous growth in dge
computing and in AI seems to be
unstoppable - how do these emerging
technologies influence both your
customers' requirements and your own
development strategies?
SC: AI is hot and is driving high
demand for supercomputing across
various areas such as CPU, GPU, Bus
Lane, Network I/O, memory I/O, and
storage capacity/speed in both Edge
and backend computing. Polywell is
actively developing products for both
Edge and Cloud to address market
demands. We have always prioritised
client needs and worked closely to
deliver tailored solution products - our
approach is customer-centric, ensuring
we meet and exceed client demands
with effective solutions.
AI is in its early stages of
development, of course. Many practical
applications are using early bird AI
development platforms to build on later.
Our long-standing - thirty year -
presence in the industry allows us to
engage with early adopters and
development circles, thanks to strong
relationships, experience, and trust
across the industry.
NC: How would you summarise what
makes Polywell stand out in an
increasingly competitive market and
attract customers to the way you work?
SC: Polywell is dedicated to catering to
the unique needs of small to mid-size
businesses that may not find an ideal fit
with Tier-1 vendors like Dell or HP. We
understand the challenges faced by
businesses of this scale and are
passionate about providing tailored
solutions. Our commitment to agility is
not just a strategy; it's a mindset that
allows us to swiftly embrace new
technologies and navigate dynamic
market changes.
In our pursuit of excellence, we
recognise that the landscape for small
to mid-size businesses is constantly
evolving. We take pride in being nimble
and responsive, ensuring that our
partners are not only well-supported but
also at the forefront of innovation.
At Polywell, we believe in fostering
meaningful relationships with our business
partners, understanding their aspirations,
and aligning our strategies to help them
thrive. Our approach is not just
transactional; it's about building a
collaborative ecosystem where success is
shared. In a world where adaptability is
key, Polywell stands as a beacon for
businesses seeking a reliable and
dynamic partner. Embracing change is
not just a necessity for us; it's a core value
that fuels our passion for delivering
impactful solutions to the heart of the
business community.
NC: What is the next step then for
Polywell in terms of business growth,
perhaps specifically for the UK market?
SC: The internet has significantly reduced
global barriers for international business.
Our overseas partners leverage our US
resources and cutting-edge technologies,
empowering them to excel in their local
markets. Instead of competing, we prefer
to collaborate and serve within our
industry segment.
We prioritise partners who recognise our
value and are astute enough to harness
our resources and support, fostering their
business development and growth. This
collaborative approach strengthens our
bonds and creates a shared journey
towards success, emphasising the
importance of mutual understanding and
smart utilisation of available resources. NC
www.polywell.com
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards FEBRUARY/MARCH 2024 NETWORKcomputing 09

OPINION: USB DEVICES
THE FUTURE OF USB DEVICES IN AN IOT WORLD
IN THE ERA OF THE INTERNET OF THINGS (IOT), WHERE CONNECTIVITY AND DATA
ARE THE CORNERSTONES OF MODERN TECHNOLOGIES, THE FUTURE OF USB
DEVICES APPEARS POISED FOR A SIGNIFICANT TRANSFORMATION, ACCORDING
TO ALAN HAYWARD, SALES AND MARKETING MANAGER AT SEH TECHNOLOGY
From its beginnings as a standard for
connecting peripherals to computers, the
USB interface has evolved into an
indispensable tool for data transfer and power
delivery. As the demand for faster data transfer
speeds increases with larger file sizes and
higher-resolution media, USB technology is
likely to evolve to support evolving demands.
A recent study conducted by Arthur Little
recorded how the average data consumption
per month per user had increased from
approximately 5 GB/month in 2018 to 15
GB/month in 2022 across Europe, with
forecasts estimating it to grow to 75 GB/month
by 2030, highlighting the mass increase in
network usage and pressure.
Newer standards, such as USB 3.2 and
USB4, already offer faster data rates, and
future iterations will in all likelihood continue
this trend.
INCREASING FLEXIBILITY
In order to adapt to a rapidly changing world,
USB devices may have to become more
versatile, providing multiple functions beyond
simple data transfer and power delivery. This
could include features like integrated storage,
advanced sensors, or even processing
capabilities, making USB devices more
intelligent and capable.
Moreover, USB power delivery has become
a significant feature of the technology,
allowing devices to not only transfer data
but also deliver power. This is important in
an interconnected world where various
devices need to charge quickly and
efficiently. Future USB standards may
enhance power delivery capabilities,
supporting more power-hungry devices.
USB Type-C, with its reversible design and
support for high data transfer speeds and
power delivery, has become increasingly
popular. USB-C will likely continue to be a
universal standard for various devices, reducing
the need for multiple types of cables and
adapters, and simplifying the interconnected
future direction of technology. By the end of
2024, all mobile devices sold on the EU
market will have to include USB-C, with laptops
also having to include them by Spring 2026.
SIMPLIFYING CONNECTIVITY
In an increasingly IoT-focused world, USB
devices can provide a standardised and
simplified way for IoT devices to connect and
communicate with each other. Their interfaces
can be customised to better support and
manage IoT networks, regardless of the
competency of users. Looking ahead to the
future of the industry, USB devices may evolve
to support enhanced edge computing
capabilities, allowing IoT devices to offload
processing tasks to connected USB devices.
This enhances overall system performance
and reduces vast workload pressures on IoT
networks. They can also be developed to
incorporate advanced power harvesting
technologies, allowing them to generate power
from the environment (such as solar or kinetic
energy) to sustain IoT devices with minimal
reliance on external power sources.
ELEVATING SECURITY
USB devices in IoT applications often handle
sensitive data, which makes maintaining data
privacy and confidentiality paramount.
Encryption mechanisms help protect
information from unauthorised access,
eliminating the possibility of technologyenhanced
eavesdropping and strengthening
the security of data that is transferred across
the network.
Adopting a zero-trust architecture is
becoming increasingly important in securing
IoT environments. This approach assumes that
no device, even if connected via USB, can be
trusted by default and requires continuous
verification of the device's security posture. This
prevents rogue or malicious devices from
infiltrating IoT networks, reducing the possibility
of attacks and disruption.
Furthermore, regular security audits should be
conducted to identify and address
vulnerabilities in USB-connected devices. This
includes scanning for malware and ensuring
devices comply with developing security best
practices. As the IoT landscape continues to
evolve, cybersecurity processes and protocols
must also evolve, maximising the security and
protection of information.
CLOSING THOUGHTS
In summary, the role of USB devices in an
interconnected and technologically
integrated world is likely to involve faster
data transfer, enhanced power delivery, the
reinforced security of data, and a continued
evolution towards universal and versatile
connectivity. In the era of IoT, the future of
USB devices appears poised for significant
flexibility, scalability and adaptability, so it's
important today to consider their role in an
IoT world. NC
10 NETWORKcomputing FEBRUARY/MARCH 2024 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

PRODUCT REVIEW
Polywell
Nano-U10L4-SFP+
PRODUCT REVIEW
PRODUCT
REVIEWPRODUCT RE
If extreme longevity is a mark of success then
Polywell Computers is a clear winner, as this
US-based company has been designing and
building computing products since 1987. Its
impressive portfolio includes enterprise-class
rack servers, storage systems, workstations and
PCs while a rapidly expanding range of mini-
PCs allows it to offer an unprecedented choice
of form factors and features.
Polywell has a sharp focus on network
security gateway solutions and the Nano-
U10L4-SFP+ on review is an ideal candidate
for providing network threat protection,
firewall and intrusion prevention duties. To
show off its capabilities, Polywell supplied our
review unit with the VyOS network operating
system software preinstalled.
It delivers an impressive set of security
features including edge routing, NAT, BGP, SPI
firewalling, VPN gateway and broadband
remote access services. VyOS operates two
'branches' where free rolling releases combine
the latest code from contributors, while longterm
support for stable releases is offered with
yearly subscriptions that include options for
unlimited on-premises deployments.
The VyOS for Good scheme will appeal to
establishments such as schools, colleges and
universities, emergency services and start-ups.
VyOS also recognises the valuable work done
by non-profit organisations by offering them a
premium support subscription free of charge.
The Nano-U10L4-SFP+ clearly has the
credentials to handle a high demand as inside
its ruggedised aluminium chassis beats an Intel
quad-core 1.6GHz Core i5-10210u CPU. This
was teamed up with 16GB of DDR4 memory
upgradeable to 64GB while the VyOS software
was loaded on a 256GB M.2 NVMe SSD.
Network connection options abound with
base configurations providing four 2.5GbE
multi-Gigabit ports. Our unit sported an
additional pair of 10GbE SFP+ fibre ports for
high-speed links and Polywell offers another
model with eight 2.5GbE ports.
Other hardware features of note include an
RJ-45 serial console port and a quartet of USB
3 ports, while power is handled by a small
external PSU. The CPU's embedded Intel 4K
UHD graphics chip has its output piped
through to HDMI 2.0 and DisplayPort
connections for dual monitor support.
The sturdy aluminium chassis does a fine job
as a heatsink as, although the motherboard
has a cooling fan assembly above it, we didn't
hear it ever being activated during testing. This
makes the Nano-U10L4-SFP+ ideal for small
office environments that value their tranquillity -
it also supports a VESA wall mount bracket so it
can be safely tucked out of the way.
For initial deployment, we attached an HD
monitor plus keyboard and followed the VyOS
online quick start guide to create a gateway
configuration using two 2.5GbE ports. VyOS
doesn't offer a web GUI but using its CLI, we
had no problems configuring our WAN and
LAN interfaces, applying DHCP, DNS and NAT
services, applying a base set of firewall policies
and committing and saving our changes.
After enabling SSH access, we dispensed
with the monitor and keyboard and conducted
further monitoring and configuration using the
PuTTY app. Where you go from here is up to
your imagination - suffice to say that VyOS is
an incredibly versatile open platform.
Our base firewall configuration worked fine
and Polywell also provided us with a clear
guide for deploying core routing and BGP
services between a head office and remote
site. New users may find the learning curve a
little steep but VyOS provides a massive
knowledge base, along with great community
support and tutorials to help you get started
and quickly resolve any issues.
Polywell's Nano-U10L4-SFP+ delivers
plenty of power in a compact and well-built
package. It's ideal for hosting a wide range
of business applications and teaming it up
with VyOS delivers the perfect network
security partnership. NC
Product: Nano-U10L4-SFP+
Supplier: Polywell Computers
Web site: www.polywell.com
Sales: info.eu@polywell.com
WWW.NETWORKCOMPUTING.CO.UK FEBRUARY/MARCH 2024 11
NETWORKcomputing
@NCMagAndAwards

FEATURE: PREDICTIONS
TIME TO BRING THE NETWORK UP TO SPEED
KEVIN DRINKALL, DIRECTOR - MARKETING AND GTM STRATEGY, EMEA AT ZYXEL, TELLS US WHAT HE
BELIEVES WILL BE THE MAJOR TRENDS IN NETWORKING TECHNOLOGY OVER THE COMING YEAR
Zyxel Networks expects 2024 to be a
year of further progressive
innovation in networking. We also
expect it to be a year in which customers
will make serious (and in many cases,
much-needed) investments to upgrade
wireless technologies and further
embrace multi-gigabit performance
across the infrastructure.
With more devices now being connected at
the edge of the network, the number of entry
points and vulnerabilities are growing and
security will continue to be vitally important.
There is also a desire for security to be as
simple as possible to implement and
manage. Smaller businesses in particular do
not need to know about the complexities of
how they are protected - they just need to
know that they are protected. Improved
support for Power over Ethernet (PoE)
connections is needed to support the
increased number of edge devices.
Another trend we see is further
growth in the use of 5G technology,
both as a backup for fixed-line
connections, and as a way of
providing quick, easy-to-deploy
connectivity just about anywhere.
This is an increasingly popular
choice where the connectivity
needs to be easy to move
around, or there are
inadequate or no fixed-line
connections.
On a broader front, we expect
to see increased use of remote
monitoring capabilities and
services, as businesses look to
simplify and streamline the management of
the IT systems and networks on which they
are increasingly dependent.
A BIG YEAR FOR WIFI UPGRADES
In wireless, 2024 will be the year of WiFi 7 -
and we also expect to see a lot more uptake
of WiFi 6 and 6E. While the former is still
quite new - and the IEEE 802.11be (WiFi 7)
standard will not be formally ratified until
quite late in 2024 - the technology available
from Qualcomm (the chip producer with
whom Zyxel Networks has a strong
partnership), conforms to the proposed
standard that will most certainly be rubberstamped
later in the year. There are already
a number of WiFi 7 access points on the
market (Zyxel Networks was one of the first
to announce and make a product
available *1 ), and many more will be
launched over the course of the year.
WiFi 7 offers distinct advantages. It is
significantly faster than WiFi 6/6E (around
2X to 3X faster in real-world scenarios) and
is much better at delivering consistent and
reliable connectivity in dense environments,
i.e. where there are a lot of devices
connected to the WiFi in one area. In
exhibition centres, sports and entertainment
arenas, in schools, train stations and
airports, for example, it will deliver distinct
and immediate benefits.
Why then, would you want to install WiFi 6
or 6E? Well, for smaller businesses and
homes where there won't be that many
devices being connected, there won't be a
lot of difference in terms of the user
experience with WiFi. What the 802.11ax
standard - or WiFi 6 or 6E (the 'E' stands for
12 NETWORKcomputing FEBRUARY/MARCH 2024 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

FEATURE: PREDICTIONS
'extended range') - as it is more widely
known, will give you is a noticeable
performance uplift on previous standards
and the ability to support more users that are
using multimedia content, such as video.
Upgrading to WiFi 6 or 6E will also - for
now at least - be more affordable than
WiFi 7. As the 802.11ax standard is fully
ratified and established, there are many
more devices on the market. For the
businesses and homes for which WiFi 6/6E
will deliver improved performance, it will
be a good investment. It's also worth
noting that the majority of WiFi 6/6E and
all WiFi 7 devices come with WPA3
protection, which provides enhanced
security for both infrastructure and devices
connecting wirelessly.
In the end, whether you choose WiFi 7
and WiFi 6 or 6E, upgrading wireless is
going to be important. This year we are
likely to see many more users finally taking
the plunge and upgrading their ageing
laptops, tablets and smartphones. Many of
these would have been bought during the
early days of the pandemic - three years
ago or more. These new devices will
support WiFi 6/6E as a minimum - and
some may even have WiFi 7.
The wireless networks they connect to will
need to be capable of making use of their
increased speed. For hotels, restaurants,
cafes, bars and any other hospitality
business, enabling customers to get the best
and fastest access will be important. That
will also be the case in schools and
colleges, in hospitals and in businesses
where there are guests and visitors coming
and going all the time.
GOING MULTI-GIG ACROSS THE
WHOLE NETWORK
This last point is one that applies to the
whole network infrastructure. Applications
and services have become much more
bandwidth
hungry. Video
conferencing and
collaboration tools, increased use
of cloud applications and services, and
richer content, have all pushed network
traffic relentlessly upwards. There is now
a need to support high throughput right
across the network.
This is driving the uptake of multi-gigabit
switches that have the capability to deliver
speeds of 2.5Gbps, 5Gbps and 10Gbps
to connected devices. Zyxel Networks
already offers a range of smart managed
and unmanaged switches that support
multiple speeds in each direction. This
gives organisations the flexibility to
construct a network fabric that will meet
their increased need for bandwidth. This
does not mean you have to upgrade every
single element of the network though. In
most scenarios - certainly this is the case
with Zyxel Networks switches, existing Cat
5E cabling will carry 2.5Gbps and in some
cases 5Gbps to edge connections.
We'll be adding to our multi-gig range in
2024 and also enhancing their PoE
capabilities. We're doing this because the
devices now being deployed at the network's
edge, such as WiFi 6/6E and WiFi 7 access
points, along with high-quality IP surveillance
cameras with pan-zoom-tilt (PZT) capability,
need additional power to run. These devices
are usually of critical importance as they
may be providing connectivity for scores of
users and clearly, if you have a security
camera in place, it's there for a reason. You
won't want it to be out of action for any
length of time. This means an increase from
15.4W or 30W per port to 60W per port on
a network switch (POE+ to POE++).
SIMPLE, COMPREHENSIVE SECURITY
Digital security also needs to be
completely reliable. No organisation can
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards FEBRUARY/MARCH 2024 NETWORKcomputing 13

FEATURE: PREDICTIONS
afford to let
its defences down,
even for a few moments. It
also needs to be comprehensive
and cover the network from end to end.
Increasing regulation is driving
organisations to adopt more secure
practices. The EU's NIS2 directive is due
to come into force in 2024, requiring
organisations operating in Europe to
have a specific level of cybersecurity
protection in place.
Every year the threats to networks
multiply, and the increased dependency
we have on our IT systems and
connections means that any loss of
access or data will be extremely
damaging. This has led to digital security
solutions becoming more and more
complex, and while it is absolutely
essential it can also be off-putting,
especially for smaller businesses that
have no technical or cybersecurity
expertise of their own.
We see two parallel trends here: a
growing desire to make protecting the
network simpler, and a greater willingness
to place the administration and
management of security in the hands of
professional experts.
Zyxel Networks has already responded to
both of these developments. With our
Connect and Protect initiative, we provide
a predefined cybersecurity set-up for our
devices that makes deployment much
more accessible. This is provided not only
on our unified security gateway, but also
on our wireless access points and smart
managed switches.
Through the ongoing development of
our Nebula cloud management and our
cybersecurity cloud platforms, we're
providing additional and proactive
protection against all kinds of threats. For
example, we've already introduced
collaborative detection and response
(CDR) - a feature that checks for unsafe
devices connected via WiFi and works with
one of Zyxel Networks' firewalls to contain
them according to preset conditions.
Nebula enables businesses to put
security into the hands of an expert;
network administrators and MSPs can
keep a look-out for any potential
problems or breaches remotely and take
appropriate action when required. We'll
be bringing forward many more security
enhancements to Nebula in 2024.
Through these twin initiatives, we are
making network security simpler and even
more comprehensive for our customers.
THREE BIG TRENDS
In summary, there will be three key major
trends in networking in 2024: a largescale
upgrade of wireless technology to
the latest WiFi 6/6E and WiFi 7 standards;
a continued move to multi-gigabit
switches and infrastructure; and increased
adoption of network security that is simple
to install and manage. Another
developing trend is the increased uptake
of 5G routers for connectivity that is
mobile and can be used in remote areas.
Overarching all of this will be a general
move to higher bandwidth and
performance right across the network
fabric; the sophistication of applications,
content and cloud-based services - and
the need to ensure security throughout the
network - requires that now. In 2024, it will
be time to bring the network up to speed.
We will also see a continued move
towards remote monitoring and
management of networks - and this will
extend to configuration and installation.
Far from being a new development, this is
a growing trend that has been driven for
some time by the increasing acceptance
of managed services, a scarcity of
advanced technical skills, and the
increasing dependency that all
organisations have on their IT systems,
connectivity and networks.
At Zyxel Networks, we have advanced
the capability of our own cloud
management platform, Nebula,
considerably over the last couple of years.
Further enhancements are being added all
the time and in particular, to its security
functionality, which is now becoming
deeply embedded within the platform. We
are using AI and machine learning in
Nebula to enhance protection even more,
to aid fault finding and resolution, and
monitor and retune access points so that
their performance is enhanced.
We're also providing reporting tools that
enable admins and MSPs to delve deeper
into the network activity and traffic to gain a
better insight into how resources are being
used and make adjustments that will
enhance performance and security. Nebula
is continually developing and becoming an
all-encompassing, end-to-end solution
through which, the entire network (or
multiple networks) can be monitored.
This is the longer-term direction for
networking. Devices will be installed,
configured and managed remotely and
there will be much greater collaboration
and sharing of functionality between
switches, wireless access points and
security appliances. In 2024, we will see
networks progressing to the point where
performance tuning and digital
cybersecurity are fully integrated across all
devices and everything is monitored and
managed through the cloud. NC
1
- Zyxel Networks' WBE660S WiFi 7
BE22K Triple-Radio NebulaFlex Pro Access
Point was launched in October 2023.
14 NETWORKcomputing FEBRUARY/MARCH 2024 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

PRODUCT REVIEW
Perle Systems
IDS-710HP-XT
PRODUCT REVIEW
PRODUCT
REVIEWPRODUCT RE
The growing demand for industrial Power
over Ethernet (PoE) switches is being
driven by many factors including the
adoption of IoT devices, outdoor IP surveillance
systems and the new high-performance Wi-Fi
6/7 access points. Perle Systems is a specialist
in this area and its latest IDS-710HP family can
go where other PoE switches fear to tread.
Available in three models, the top-end IDS-
710HP-XT on review is designed to work in an
extended operating temperature range of -40C
to 70C for assured reliability across extreme
fluctuations. Sheathed in a metal fan-less chassis
with an IP20 ingress protection rating, the switch
includes 35mm DIN rail attachments and Perle
also offers optional panel/wall mount kits.
A generous 450W power budget makes the
switch supremely versatile as it can support any
type and class of powered device (PD) along
with single and dual-signature connections. It
can supply up to 100W for 802.3bt PoE++
Type 4 devices or 90W simultaneously on five
ports, making it ideal for external IP cameras
with remote PTZ functions and heaters.
The IDS-710HP-XT offers eight PoE-enabled
copper Gigabit ports and dual SFP slots
supporting copper Gigabit or fibre
Gigabit/2.5GbE transceivers. Fibre
connections are a valuable feature as they
are immune to the high levels of
electromagnetic interference (EMI) frequently
found in industrial environments.
Power redundancy is available as the switch's
terminal block supports dual inputs from
separate supplies. We found it simple to deploy
as we cabled it to a Phoenix Trio DINcompliant
PSU and pressed the switch's reset
button to initiate its Fast Setup mode. Just
connect a PC to the port with the rapidly
flashing LEDs, load a web browser and follow
the wizard to set up your default VLAN and
DHCP services along with secure CLI and web
admin access.
Don't be fooled by its minuscule dimensions
as the IDS-710HP-XT offers a wealth of features
that are all easily accessible from its web
console. Standard Layer 2 features are
abundant and include static and LACP link
aggregation groups along with support for up
to 256 VLANs plus GVRP support for dynamic
VLAN creation. For VoIP networks, you can
create voice VLANs to separate, prioritise and
authenticate this traffic for assured call quality.
Security is a high priority as 802.1x port
authentication is provided and admin access
can be controlled using RADIUS and
TACACS+. The switch supports HTTPS web
access, secure CLI sessions using SSL/TLS, the
stronger SNMPv3 and the PROFINET and
Modbus TCP Industrial Ethernet protocols.
That big power budget means you can deploy
plenty of PDs but if you're worried about
exceeding it, priorities can be applied to each
port. Assign low, high or critical priorities to
each one and if the total draw reaches the
power threshold, those with the lowest priorities
will be turned off first.
Support staff will approve of the PD power
reset feature as they can remotely restart
attached devices. Select a port from the
configuration menu, disable PoE services and
enable them again to force the device to reboot.
Management options are outstanding as,
along with the local web console, you can
manage multiple switches using Perle's free
Network Assist web application, which provides
auto-discovery services. Organisations with
geographically distributed switches can
manage them all using the PerleView cloud
portal, which facilitates remote access to
devices along with scheduled firmware updates
and alerting services.
The IDS-710HP-XT is superbly built, rich in
features and excellent value too, as Perle
includes all features, functionality and ongoing
software maintenance in the base price
of the product. Businesses that need to
deploy secure and reliable PoE services in
extreme or hazardous environments need
look no further. NC
Product: IDS-710HP-XT
Supplier: Perle Systems
Web site: www.perle.com
Sales: +44 1280 825 540
Price: £1,908 exc VAT
WWW.NETWORKCOMPUTING.CO.UK FEBRUARY/MARCH 2024 15
NETWORKcomputing
@NCMagAndAwards

FEATURE: PREDICTIONS
FOCUSING ON THE NETWORK SPACE IN 2024
FOLLOWING THE RECENT ANNOUNCMENT THAT HPE ARE SET
TO ACQUIRE JUNIPER NETWORKS FOR $14 BILLION, HPE
ARUBA NETWORKING CHIEF PRODUCT OFFICER DAVID
HUGHES GIVES US HIS TOP 5 NETWORKING AND SECURITY
PREDICTIONS FOR 2024
1: The death of the standalone firewall
The rise of the hybrid workforce and the
extensive deployment of IoT devices have
irreversibly eroded the network perimeter, and
the standalone firewall is dying with it. No
longer can a good "inside" be protected from
a bad "outside" by a ring of firewalls. Trying to
plug the gaps by deploying even more
firewalls inside an organisation only adds
complexity, creates room for errors, and slows
down businesses that want to move rapidly.
Consequently, the next-gen firewall
appliance is rapidly becoming the last-gen
firewall appliance. On one side, the secure
service edge (SSE) is replacing firewalls and
proxies with cloud delivered secure web
gateway, cloud access security broker and
zero trust network access. SSE provides a
compelling way of managing security for users
accessing applications from anywhere. On the
other side, for IoT security, segmentation is
needed on-prem, right at the edge of the
network, and to achieve this firewall services
are being built directly into access points,
switches and SD-WAN gateways.
Even in the data centre the introduction of
top-of-rack switches with L4-7 security
functionality can deliver east-west
segmentation far more cost-effectively than
traditional next-gen firewalls at end-of-aisle.
Over the coming couple of years the next-gen
firewall market will continue to decline as
these new cloud based and built-in
capabilities usher in a simpler way of
managing secure connectivity.
Industry Supporting Stat: As more
organisations choose programmatic, hybrid
work strategies, buyers are more likely to
select firewall vendors that offer cloud-based
security services with credible cloud security
strategies. Gartner Critical Capabilities for
Network Firewalls? (Adam Hils, Rajpreet Kaur,
Thomas Lintemuth) May 16, 2023.
2: Zero trust principles accelerate alignment
of security and networking objectives
Most organisations have separate teams
managing networking and security, and in
many ways their goals can be at odds with
one another. In 2024 leading enterprises will
demonstrate how zero trust principles can be
employed to align the two team's interests to
deliver better end user experience and
business outcomes.
In a typical organisation the networking
team's objectives are to keep people and
services connected reliably and up and
running with predictably good performance.
They are incented to make it easy for people
to connect to anything and avoid complexity
that will result in outages, latency or
slowdowns. On the one hand, the security
organisation is tasked with minimising risk and
maintaining compliance. Too often the user
and their experience are caught in the middle.
An overzealous security implementation might
make it slow or impossible for users to access
the apps and data they need, slowing down
the business. On the other hand, lax security
or a networking team that aims to please by
bypassing security measures can result in
infiltration and ransomware.
Leading enterprises will adopt zero trust
architectures where the network's job is
defined not in terms of connecting anything to
anything, but rather as being an enforcement
layer for security policy. For users accessing
applications security policy may be enforced
in the cloud, but for many traffic flows,
particularly for IoT devices and their
associated services, it will be more efficient to
automatically implement this policy in access
devices like access points, switches and
routers. With the right level of shared visibility,
automation, and clear delineation of policy
and enforcement, networking and security
teams will have aligned goals and deliver a
better experience.
Industry Supporting Stat: According to
Forrester, 96% of customers stated that
security and networking worked together to
implement SASE.
3: Measuring end user experience becomes
a must
In order to deliver what employees and
customers expect, IT organisations will need to
shift to SLOs and SLAs based on measured
user experience. Users don't care what is at
fault, they are focused on one simple thing: is
the application they are using working well or
not. User satisfaction plummets when they are
16 NETWORKcomputing FEBRUARY/MARCH 2024 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

FEATURE: PREDICTIONS
first to find problems, and are then rebuffed
by IT with reports that all devices are up
and operating correctly.
To address this, organisations will widely
deploy digital experience management
(DEM) tools, that both measure actual
experience of end users and make
synthetic probes to ensure infrastructure
readiness even when users are not
present. Organisations will likely want a
mix of measurements collected from
endpoint agents (like an SSE agent) and
measurements collected by dedicated
hardware sensors, particularly when
monitoring Wi-Fi performance. Ideally
these same measurements feed
automated AIOps that are able to learn
and then implement best practices, rapidly
triage problems and automatically
remediate issues.
Industry Supporting Stat: By 2026, at least
60% of I&O leaders will use DEM to
measure application, services and endpoint
performance from the user's viewpoint, up
from less than 20% in 2021. (Gartner,
Market Guide for Digital Experience
Monitoring, March 2022).
4: 6GHz Wi-Fi adoption skyrockets
The barriers slowing Wi-Fi deployment in
the 6GHz spectrum will be removed in most
geographies, and adoption will start to
skyrocket. A couple of years ago, the Wi-Fi
6E standard introduced support for the
6GHz band, more than doubling Wi-Fi
capacity, enabling more users and faster
speeds. It's been rapidly adopted in some
segments, but others have been more
cautious. In 2024 the last remaining
barriers to broad adoption will be resolved.
First, use of the 6GHz band, particularly
outdoors is subject to approval by
government authorities. Although some,
like the US, have been quick to open the
spectrum for Wi-Fi, other countries have
been slower. Fortunately, there has been
much forward progress in this area, and
in 2024 most enterprises will have
6GHz spectrum accessible in most parts
of the world.
Second, some enterprises have been leery
about adopting Wi-Fi 6E when Wi-Fi 7 is
around the corner. Now with Wi-Fi 7
ratified, there is no doubt that Wi-Fi 6E and
Wi-Fi 7 will be interoperable, so with 6E
devices and access points shipping in
volume, 6GHz Wi-Fi deployments can
move ahead full steam.
Finally, adoption is gated by support on
both access points and client devices. We
are witnessing a slew of new devices that
support Wi-Fi 6E, and the mainstreaming of
6E access points. On top of this there are
more Wi-Fi 7 devices on the horizon, and
these can utilise the 6GHz band to deliver
better user experience with either Wi-Fi 6E
or Wi-Fi 7 access points.
The combination of these developments
will see a big uptake of 6GHz spectrum in
2024, and with it, faster transfers and better
user experience!
Industry Supporting Stat: "HPE Aruba
Networking hasshipped over 1.5 times the
number of Wi-Fi 6E APs than any other
vendor in the industry" - Sian Morgan is the
lead networking analyst for Dell'Oro Group.
5: AI will liberate IT admins
It is sometimes quoted you that won't lose
your job to AI, you'll lose your job to
someone who is using AI effectively. This is
absolutely becoming true for the IT admin.
The increasing burden of implementing
new technology and maintaining cybersecurity
with a fixed or even shrinking
headcount means that each admin must
handle more. Fortunately, AI and
automation are advancing rapidly, shifting
the job from managing and configuring
individual devices, to instead defining
policy across a whole estate and having
that policy implemented automatically and
consistently. AI is also able to comb
through huge volumes of data to identify
anomalies and recommend (and even
implement) remedies.
It's now well established that AI is only as
good as its dataset, and bigger, high
quality datasets are key. Leading vendors
will be drawing AI insights from data lakes
representing millions of managed devices
and hundreds of millions of endpoints.
Finally large language models (LLMs) are
turbo charging existing natural language
interfaces and providing a more
convenient way for admins to get the
information they need.
The bottom line is that organisations need
to ensure that they are providing their IT
teams the AI force-multiplier admins need
to remain competitive.
Industry Supporting Stat: By 2026,
generative artificial intelligence (GenAI)
technology will account for 20% of initial
network configuration, which is an increase
from near zero in 2023. (Gartner, Strategic
Roadmap for Enterprise Networking,
October 2023). NC
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards FEBRUARY/MARCH 2024 NETWORKcomputing 17

PRODUCT REVIEW
Hornetsecurity 365
Permission Manager
PRODUCT REVIEW
PRODUCT
REVIEWPRODUCT RE
Microsoft 365 (MS365) is the
productivity and communications
platform of choice for organisations of
all sizes, with it already having reached a
staggering 382 million paid seats this year. A
huge number of companies, including those
with hybrid working practices, clearly see the
benefits of MS365 cloud collaboration services;
but ensuring adequate protection of information
assets, and preventing unauthorised and anonymous
access, can be a major challenge.
Hornetsecurity's 365 Permission Manager is the
perfect solution, as it provides administrators
with all the tools needed to control access
permissions, monitor violations and enforce
compliance policies. Easily managed from a
single cloud portal, it readily allows
organisations to ensure compliance with internal
and external regulations, and maintain access
policies across sharing sites, folders and files.
Onboarding is very swift, as you simply select
365 Permission Manager from Hornetsecurity's
Control Panel, provide all required tenant
details and authenticate with your MS365
account. It avoids management issues with
MS365 global administrators and potential
permission creep, as it uses API connections
and doesn't store any credentials.
The Control Panel presents a highly
informative dashboard, with pie charts showing
overall compliance health, plus separate ones
for SharePoint, OneDrive and Teams. A timefiltered
graph reveals fixed and approved
violations, while others are provided for itemlevel
and policy compliance, upcoming and
overdue audits, and violation trends over time.
You can also view your compliance policies and
365 Permission Manager does all the hard work
for you, as it includes a set of predefined ones.
These are all based on the ISO 27001
information security management systems
standard, so applying them to your organisation
will help you meet certification requirements.
You can easily create custom policies and set
internal and external sharing criteria, while, at
the site level, you set external sharing levels for
all people in your organisation, existing and new
guests or anyone; apply default sharing links
and permissions; and set guest access expiration
times in days. Policies are a very powerful
feature as, if any action violates them,
administrators will receive an alert and an
option to approve or fix them.
SharePoint site and OneDrive account
exploration reveals all entities and their applied
policy, while colour-coded icons show if they are
compliant. Further icons highlight if they have
items with anonymous access granted, those
that have organisation-wide access and those
with external user access permitted.
Click the quick actions button and you will then
be presented with five of the most powerful
features of this service. With no more than three
clicks, you can set an external sharing level for a
Share-Point site or OneDrive account, clean up
orphaned users, remove 'Everyone' permissions,
revoke user or group access or set site
permissions. There's much more, as 365
Permission Manager presents a 'To Do' list, with
all policy violations that require your attention.
The list can be filtered and, with one click, you
can either approve the violation or fix it: you can
fix site settings or 365 Permission Manager can
automatically remove user access.
As you'd expect, there are plenty of reporting
tools provided, with options to generate ones for
full site permissions, user and group access, and
also external access. An activity log provides
essential auditing for all administrative activities
and the portal generates daily alert summaries,
which can be sent to multiple recipients.
MS365 rights management presents many
pain points, as it is far too easy for users to
share files across this platform and so difficult
for administrators to stay in control.
Hornetsecurity's 365 Permission Manager
brings order to this rights chaos and gives
administrators the power to effortlessly enforce
policy compliance and ensure access to critical
data is tightly locked down. NC
Product: 365 Permission Manager
Supplier: Hornetsecurity
Web site: www.hornetsecurity.com
Tel: +44 (0) 203 0869 833
Sales: sales@hornetsecurity.com
Contact Hornetsecurity for pricing
18 NETWORKcomputing FEBRUARY/MARCH 2024 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

PLEASE MAKE YOUR NOMINATIONS
Nominations are now open for the Network Computing Awards of 2024. We
invite you - the readers of Network Computing - to tell us which companies,
products and individuals have most impressed you. After nominations have
closed and been counted the finalists will be revealed.
NOMINATE NOW AT:
WWW.NETWORKCOMPUTINGAWARDS.CO.UK
ATTENTION VENDORS:
In addition to the nominating/voting categories, the Awards provide opportunities
for impressive work and impressive solutions to be recognised by a Judge. You can
enter your customer success stories for the NETWORK PROJECT OF THE YEAR
by sending in case studies. Also, you can ensure that your chosen solutions
become finalists for the BENCH TESTED PRODUCT OF THE YEAR by booking
them to be independently reviewed for Network Computing.
There are also opportunities to get involved with the Awards as a sponsor.
For help with any of the above contact dave.bonner@btc.co.uk
Sponsored by:

OPINION: NETWORK INTEGRATION
THE IMPORTANCE OF INTEGRATION FOR YOUR NETWORK
CHRIS MCKIE, VP PRODUCT MARKETING SECURITY AND NETWORKING SOLUTIONS AT KASEYA,
OFFERS A GUIDE TO NAVIGATING THE COMPLEXITY OF MODERN NETWORKS
The world of networking has changed
rapidly, along with the dynamic evolution
of IT as a whole. Hybrid environments,
spanning on-premises and the cloud, have
become the new norm, posing significant
challenges for network managers. Company
networks are becoming increasingly difficult to
manage, monitor and secure. And, because
hardware refresh cycles in networking are
traditionally slow, organisations can end up
with numerous disparate components,
environments and management tools, all
adding to the infrastructure complexity.
KEY CHALLENGES FACED BY
NETWORK MANAGERS
The traditional contrast of cloud versus onpremises
no longer holds in today's diverse
network environments. Most organisations'
networks no longer fall into the binary
categories of cloud or on-premise; instead, they
combine a bit of everything. The widespread
adoption of hybrid infrastructures, driven by
business performance and security
considerations, means that organisations must
now navigate a hugely complex mix of cloud
and on-premise network components.
Moreover, post-pandemic, the global work
landscape has largely shifted to a hybrid
model, where employees expect to seamlessly
transition between remote and office-based
work. Organisations must therefore have the
ability to connect everyone, everywhere, at any
time to their essential workflows.
This trend of employees connecting from
outside the traditional network boundaries
brings with it some obvious security issues.
The rise of zero trust architectures and
Secure Access Service Edge (SASE) solutions
has addressed some of these concerns,
redefining how organisations securely
connect remote workers.
Even more is changing on the network edge.
Growing numbers of smart, IoT and
operational technology (OT) devices process
data locally at the periphery of the network - for
example, to prevent connectivity or latency
issues. Edge-as-a-Service (EaaS) is starting to
attract interest and will only accelerate the
adoption of edge computing and related
services, presenting additional headaches in
terms of security and access management.
Finally, hardware upgrades have always been
slow in networking. Network components are
usually added as one-off purchases as
required, with components typically only
upgraded every 3-5 years. This means many
organisations rely on very heterogenous
environments that incorporate solutions from
several different vendors.
With so many different networking and
management tools as well as different support
levels for each of these components, it is no
wonder that there is little integration across the
typical company network.
However, today's complex network
requirements demand a comprehensive
approach to visibility, security, network
architecture, manageability and technology
adoption. Ultimately, for network managers to
remain efficient, they will have no choice but to
consolidate, to integrate and to look at the
network from a holistic perspective.
THE ROLE OF INTEGRATION
Integration emerges as the single solution to the
challenges posed by complex networks.
Bringing together the various network and IT
management applications in one single
management console can streamline
workflows, enhance efficiency and provide
valuable insights for network managers.
For instance, integrating the network with a
Professional Services Automation (PSA) tool can
significantly speed up troubleshooting by
directly tying network events to ticketing
processes. Troubleshooting when something
goes wrong in the company network is
traditionally disjointed, with managers having to
move from the network console to the ticketing
system and back. Integration removes these
unnecessary additional steps and streamlines
problem solving and recovery.
Similarly, integrating live network information
with Remote Monitoring and Management
(RMM) tools enables remote device
management across the network, reducing the
need for back-and-forth interactions. With
shadow IT still a challenge for many
organisations, there is another advantage to
this integration: tools in RMM can be used for
20 NETWORKcomputing FEBRUARY/MARCH 2024 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

OPINION: NETWORK INTEGRATION
automatic network discovery, while live
network performance data monitoring
ensures networks are running smoothly.
Additionally, integrating network
information with documentation systems
aids in compliance and auditing processes,
while promoting automation and saving
valuable time.
Application Programming Interfaces (APIs)
can be used to enable such bridging, but
keeping all the involved applications
synchronised and updated is crucial for
seamless functionality. If done well,
integration of these network-related tools
allows businesses to streamline multiple
workflows according to their needs.
THE IMPORTANCE OF SASE
In the era of evolving network challenges,
SASE solutions play a key part in building an
integrated, secure and easily manageable
network. Ensuring the security of a company
network has always been a challenge; even
moreso now the network edge as we know it
no longer exists. With cyber-attacks growing
in number and sophistication, businesses
must implement robust network security to
defend their sensitive data against
ransomware, unauthorised access, data
breaches and other risks. Remote users need
as much, if not more, protection as those
working in the office.
SASE solutions have been a game-changer
as they integrate security right into the
network itself. They essentially provide nextgen
firewall functionality in the cloud,
offering granular controls for web traffic in
distributed work environments. This
technology is fast replacing VPNs, ensuring
secure connectivity regardless of user
location and extending networking and
security capabilities beyond the traditional
network boundaries.
This gives organisations a lot more
flexibility in how they implement security
policies such as zero trust, content filtering
and threat prevention across locations and
remote users.
The many benefits of SASE integration
include efficient policy enforcement,
simplified network management and
scalability. What's more, SASE not only
addresses current network complexities but
also offers the flexibility to adapt to changing
and future business needs - paving the way
to a future-proof infrastructure.
BENEFITS OF NETWORK
INTEGRATION
The integration of network components and
solutions brings numerous benefits. One key
advantage is that network issues, such as
latency or blackouts, can be resolved much
faster. With the necessary information at their
fingertips thanks to seamless links with their
ticketing system and RMM platform, network
managers can pinpoint the source of any
issue more quickly and significantly speed up
mean time to resolution.
In addition, issues can be automatically
routed to the right person for prompt
resolution, while easier and more transparent
performance monitoring helps prevent
problems from arising in the first place.
Policy enforcement is more effective too,
with integrated devices facilitating the
consistent application of rules and access
restrictions across the entire infrastructure,
including edge devices. Updates, patches
and upgrades can also be streamlined
through tight integration, allowing for better
control over their timing and therefore
minimising impact on users and the network.
Plus, the ability to monitor and analyse
network traffic continually enables network
managers to optimise data flows and
balance loads more effectively.
Another benefit of network integration is the
ability to consolidate. SASE, for example,
eliminates the need for multiple VPNs,
potentially allowing downsizing of firewalls
and the removal of redundant, standalone
network security devices. The fact that SASE
platforms are cloud managed simplifies
network administration even further.
Finally, as network needs change, a
streamlined setup with SASE allows
businesses to scale fast and adjust their
infrastructure as needed.
LOOKING AHEAD
Business networks will continue to evolve in
response to changing business needs and
technological advancements. For network
architects, this means they will have to
continually reassess and update their
strategies. Increased integration and a
holistic approach are the keys to staying
ahead of networking requirements.
Integration is not only the answer to
addressing the new complexities of the
hybrid world - it will also be the linchpin for
the future of network management. By
embracing it and leveraging technologies
like SASE, organisations can not only
navigate current challenges but also position
themselves for future success in an everevolving
digital era. NC
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards FEBRUARY/MARCH 2024 NETWORKcomputing 21

OPINION: QUANTUM TECHNOLOGY
THE RISE OF QUANTUM ECOSYSTEMS
IN 2024 AND BEYOND
DR. PHILIP KRANTZ, QUANTUM ENGINEERING SOLUTIONS
EXPERT AT KEYSIGHT, EXPLORES THE POTENTIAL OF QUANTUM
TECHNOLOGY FOR THE YEAR AHEAD
Quantum technology allows us to
harness the fundamental laws of
quantum mechanics to solve
problems that are either intractable or even
impossible using today's technology. Areas
where quantum technology can offer
profound impact include complex
simulations and computations, secure
communication, and more powerful
imaging and sensor techniques.
Governments and industries have
recognised the necessity to invest in
quantum research and early adoption of
quantum-technological applications to
ensure competitiveness and to be prepared
for any disruptive advancements within the
scope of their interests.
As a response to the steady scientific
progress within the quantum community
during the past decades, many branches of
quantum technologies have moved out of
university labs into start-up ventures, hightech
companies, as well as military.
Consequently, the community has
broadened from mainly being explored by
quantum physicists to requiring a wide
blend of expertise and backgrounds,
ranging from various engineering
disciplines to including business
professionals, investors, and entrepreneurs.
As part of this transition, academic and
industrial quantum hubs, quantum
incubators, as well as local and national
quantum ecosystems have risen during the
past years - most aiming to build up and
foster a workforce composition required for
long-term success. To this end, there has
been an increased need to attract talent,
both from outside these ecosystems as well
as training local students and engineers, to
enable sustainable technological growth.
22 NETWORKcomputing FEBRUARY/MARCH 2024 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

OPINION: QUANTUM TECHNOLOGY
In this article, we will discuss a few
ongoing trends we are seeing when it
comes to building up quantum
ecosystems.
NATIONAL QUANTUM
TECHNOLOGY INITIATIVES
Building up world-leading expertise in
quantum technologies takes a long time,
requires substantial investment, and is
often facilitated through an already
existing academic quantum research
community. Quantum ecosystems, i.e.
collaborative environments of academic
and industrial quantum research teams,
are often created to support mutual
interests in terms of both attracting the
workforce, as well as synergistically
benefiting from other members' strengths
and competencies.
These local quantum ecosystems expand
both organically via education and
inorganically through attracting workforce
and industries from other places to get
established within the ecosystem.
Therefore, access to state-of-the-art
technology, beneficial start-up culture,
and world-leading research teams are all
examples of important factors needed for
ecosystems to become successful and
self-sustaining.
Oftentimes, however, ecosystems
experience "knowledge gaps" prohibiting
them from making fast progress on certain
technologies. One example is when the
capability to produce high-quality quantum
processor units (QPUs) is missing. For
instance, due to the lack of an advanced
and dedicated cleanroom facility. One
common trend that we often see is that
such ecosystems procure a commercial
quantum processor (sometimes also
including all required cryogenics and
quantum control systems) containing the
qubit modality (or modalities) that the
country seeks to pursue.
This way, local experience in quantum
control and algorithms can be gained in
parallel with the development of local
cleanroom fabrication processes and the
exploration of optimal qubit designs.
During the past years, several
commercial alternatives for QPUs as well
as parametric amplifiers have entered
the market.
QUANTUM-AS-A-SERVICE (QAAS)
As mentioned, getting started in quantum
technology requires time, money, and
manpower. This has yielded an increased
market need for quantum service
providers to offer quantum-as-a-service
(QaaS), including, for instance, remote
cloud access to quantum processors, test
beds for device characterisation, as well
as foundries that offer fabrication services
to clients.
This way, quantum research teams have
the option to strategically outsource
parts of their operation to a third-party
QaaS provider, which can have an
important impact for startups entering
the quantum ecosystem with limited time
and resources.
While this is currently happening on a
very limited scale, interest in QaaS will
increase in 2024 and beyond. In
addition, we foresee that QaaS providers
may in the long run enter a role to
standardise device operation,
characterisation, and fabrication which
allows for future benchmarking of both
quantum processors as well as qubitadjacent
technologies.
QUANTUM IN THE CLASSROOM
Another ongoing trend we are seeing is
an increased need for a qualified and
diverse workforce as countries ramp up
their national quantum initiatives. To
address this bottleneck, we foresee that
the number of dedicated higher
education programs focusing on quantum
technologies will continue to increase in
2024 and beyond.
Oftentimes, these programs are
constructed in close collaboration with
industrial partners, with access to stateof-the-art
quantum control and readout
technologies, so that students acquire
relevant and up-to-date skills,
preparing them for future quantum
careers. There are also numerous
industrial internships and mentorship
programs that can help guide students
in their future career choices.
In addition to pure technical programs,
there will also be an increased focus on
quantum technology among business
schools and entrepreneurship programs.
This comes from an increased drive for
business professionals to obtain basic
training in quantum technology, helping
them to be competitive in the highly
dynamic quantum community.
GENDER EQUALITY IN QUANTUM
Another very positive and uprising trend is
the many ongoing efforts on gender
equality, aiming at increasing the ratio of
women working in quantum technologies.
Having access to a diversified and
gender-balanced workforce is important
for any industry and quantum
technologies are certainly no exception.
With the worldwide advancement in
quantum technology research and
development, the community is expanding
beyond the academic realm and into
startups, high-tech companies, and the
military. This will give rise to quantum
hubs, incubators, and local and national
ecosystems all trying to build a workforce
able to seize the quantum opportunity.
Solving the talent gap is critical to
realising the potential of quantum in the
coming years and decades. NC
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards FEBRUARY/MARCH 2024 NETWORKcomputing 23

OPINION: RETAIL INFRASTRUCTURE
RETAIL INFRASTRUCTURE FIT FOR TODAY AND TOMORROW
THE CHALLENGE OF DIGITAL TRANSFORMATION IN THE RETAIL SECTOR REQUIRES A RESILIENT
AND ADAPTABLE IT INFRASTRUCTURE, ACCORDING TO HENK IJSPEERD, SALES DIRECTOR EMEA
STRATEGIC SEGMENT RETAIL, AT VERTIV
In the ever-evolving landscape of retail, the
call for transformation is not just a
buzzword but a strategic necessity, one that
can make or break any business across the
sector. The intricate interplay of consumer
behaviours, driven by the unstoppable surge
of the digital revolution and accentuated by
global events such as the never-to-be
forgotten COVID-19 pandemic, highlights
the need for a profound and comprehensive
re-evaluation of IT infrastructure.
However, the task is far from simple - it's a
complex landscape characterised by
intricacies and challenges. Retail
infrastructure should be more than a swift
adaptation to immediate needs; retailers
should also look ahead, consider formidable
trends that loom large and navigate change
armed with foresight and strategic acumen.
NAVIGATING THE DIGITAL
REVOLUTION
The foundation of the retail sector is shifting
as consumer preferences continue to pivot
towards digital platforms. The impact of the
pandemic accelerated this shift, pushing
retailers to adapt to online models to meet
consumer demands far more quickly than
planned. However, this move is not just a
reaction to events like COVID; it reflects a
broader trend in consumer behaviour which
will stand the test of time as people enjoy the
speed and convenience of online shopping.
The relentless pace of technological
advancements - such as Artificial Intelligence
(AI), Virtual Reality (VR) and Augmented
Reality (AR) - add another layer of
complexity, requiring retailers to be agile and
innovative in adopting technologies that
enhance the customer experience. Success in
this dynamic environment hinges on retailers'
ability to blend short-term responsiveness
with a visionary outlook, ensuring they not
only meet today's needs but also remain
adaptive to the digital trends shaping the
future of retail.
Central to the success of businesses in the
sector is the achievement of consistency
across diverse channels. The line between
online and offline experiences continues to
blur, necessitating a seamless transition
between virtual and physical interactions with
brands. The optimisation of systems,
streamlined logistics and maintaining
consistent stock levels all emerge as integral
components of ensuring a positive and
consistent customer experience. Consumers
are no longer satisfied with good customer
service, they expect to be delighted.
REGULATORY CHALLENGES AND
ENVIRONMENTAL CONSIDERATIONS
For retailers, the journey of keeping the retail
infrastructure fit for purpose is marked with
regulatory challenges, especially in regions
facing power scarcity such as Ireland and the
Netherlands. Compliance with local and
international environmental regulations
further amplifies the intricacies of this process.
Retailers must navigate a complex landscape
of rules and standards while striving to build
an efficient and resilient infrastructure.
Ongoing success for retailers demands not
only an acute understanding of the current
regulatory landscape but also an ability to
strategically position infrastructure in
alignment with emerging environmental
standards and the latest technology
24 NETWORKcomputing FEBRUARY/MARCH 2024 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

OPINION: RETAIL INFRASTRUCTURE
innovations. This dual focus ensures not just
compliance but a resilient and forwardlooking
foundation capable of withstanding
the regulatory changes that lie ahead.
INFRASTRUCTURE PRESSURES IN
THE DIGITAL ERA
The surge in digital transactions and the
growing reliance on technology bring a
host of considerations for retail
infrastructure. Storage demands,
especially for vast amounts of data like
CCTV images, coupled with the
intricacies of delivering personalised
customer experiences, present a delicate
balancing act. Achieving standardisation
across diverse regions is crucial, yet
predicting infrastructure requirements in
an era of constant technological evolution
poses a formidable challenge.
Beyond the digital sphere, the physical
spaces of warehouses and stores pose
unique challenges too. Physical security of
warehouses, temperature variations in
different store locations and diverse
environmental conditions necessitate
infrastructure solutions that are adaptable
and resilient. Understanding and
anticipating customer expectations in the
coming years are paramount in crafting
infrastructure that stands resilient against
the test of time.
CONTRIBUTING TO GRID STABILITY
In the face of escalating pressure on
energy grids, retailers also assume a
crucial role beyond consumption - they
become potential contributors to grid
stability. The implementation of scalable
Uninterruptible Power Supply (UPS)
solutions with dynamic grid support
features, the integration of renewable
energy sources like solar panels and wind
turbines, and the strategic storage of
energy in batteries (Battery Energy Storage
Solutions; BESS) extend beyond business
continuity measures.
These initiatives play a pivotal role in
mitigating the strain on the grid,
transforming retailers into active
participants in the broader energy
ecosystem. By embracing more sustainable
energy practices and acting as responsible
contributors to grid stability, retailers not
only fortify their own infrastructure against
disruptions but also contribute to the
overall resilience, and help to reduce the
carbon footprint of the energy infrastructure
that underpins modern commerce. This
dual impact underscores the integral role
retailers play in shaping a more robust and
sustainable future.
STRATEGIC PLANNING FOR LONG-
TERM RESILIENCE
At the core of future-proofing retail
infrastructure lies strategic, long-term
planning. The evolving retail landscape
demands not just adaptability to current
challenges but a proactive stance towards
emerging trends. Scalable solutions that
flexibly accommodate future requirements,
coupled with a comprehensive
understanding of regional and global
dynamics, are essential for resilience in the
face of uncertainty and change.
Providers of critical infrastructure solutions
play a pivotal role in empowering retailers
for the digital age. Going beyond being
solution providers, they must also be
strategic partners committed to delivering
the continuous availability, reliability and
efficiency of essential elements in evolving
retail settings. Partners with a
comprehensive approach - from innovation
and design to manufacturing and ongoing
support - will provide a seamless and
efficient experience throughout the
infrastructure life cycle.
Close collaboration with retailers to craft
bespoke strategies that align with their
unique requirements, such as the meticulous
creation of comprehensive data profiles for
each customer, will make the critical
difference. This empowers retailers to gain
invaluable insights and make informed,
data-driven decisions to propel their
businesses forward.
One element that will help is if your
partner has proven expertise in the realm of
Artificial Intelligence (AI). This invaluable
knowledge will strategically place
organisations at the forefront of the
imminent retail revolution, whereAI is
poised to thrive and realise its full potential.
FIT FOR THE FUTURE
Considering the dynamic interplay of
consumer expectations, technological
evolution and regulatory landscapes, retail
infrastructure transcends the realm of choice
- it stands as a strategic imperative. The
retail landscape, characterised by perpetual
change, demands a proactive approach
from retailers. It's not enough to react to
current challenges; retailers must envision
and enact an infrastructure capable of
navigating the uncertainties that lie ahead.
The journey towards implementing the
right infrastructure is not a one-time event;
it's an enduring commitment. It involves
creating a resilient and adaptable IT
infrastructure that can not only withstand
disruptions but also leverage emerging
opportunities, harnessing the power of
digital infrastructure partners. Through this
ongoing commitment, retailers can
position themselves not just as entities in
the present retail ecosystem but as
architects shaping a brighter, more
sustainable future for the entire industry.
In embracing this continuous journey of
evolution, retailers strengthen their
relevance, ensuring that their
infrastructure is not only responsive to
current needs but also anticipatory of the
transformative trends shaping the retail
industry of tomorrow. NC
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards FEBRUARY/MARCH 2024 NETWORKcomputing 25

SECURITY UPDATE
BECOMING SECURE BY DESIGN
CHIP DANIELS, VP, GOVERNMENT AFFAIRS AT SOLARWINDS, OUTLINES THE ROLE OF PUBLIC-
PRIVATE PARTNERSHIPS IN PROTECTING OUR CYBERINFRASTRUCTURE
Modern software development has
made our digital world more
interconnected than ever, driven
by the shift to the cloud and the increased
use of microservices and open-source
code. The interdependent nature of our
modern digital infrastructure means cyber
threats targeting any one software
company or product can, unfortunately,
have a broad impact across the industry.
Therefore, the sector must change its
approach to cybersecurity and come
together to better defend against mounting
cyber threats.
The industry must work collaboratively
and in partnership with governments to
share information about threats,
mitigation methods, and prevention steps.
While some government agencies have
taken a leading role in championing this
type of collaboration, there is still work to
be done.
To support collaboration among the
public and private sectors, SolarWinds
recently hosted a panel discussion in
Washington D.C. featuring SolarWinds
President and CEO Sudhakar
Ramakrishna in conjunction with
Congressman Darrell Issa (R-CA),
Congressman Raja Krishnamoorthi (D-IL),
and CISA Executive Assistant Director for
Cybersecurity Eric Goldstein.
The discussion highlighted several key
ways to help the industry become Secure by
Design, including the role of collaboration
in creating a strong defence, supporting
responsible disclosure to increase
information sharing, and ensuring the
industry invests in the people skills needed
to defend against the newest threats.
COLLABORATION FOR A STRONG
DEFENCE
The role of collaboration is critical in
protecting the customers of private
companies, as well as defending nations
against foreign adversaries. According to
Goldstein, CISA is leading the
collaborative effort in public-private
partnerships to "ensure that we are seeing
threats before they manifest on our nation's
networks and taking action in response."
And to support CISA's initiative in
promoting widespread collaboration, "we
need a model where government, industry,
and our international partners are
seamlessly and frictionlessly working
together day in and day out to combat the
threats that we're seeing today and getting
ahead of the ones that we're seeing
tomorrow." Companies can contribute to
the industry's collective defence posture by
actively participating in transparent
information sharing.
SUPPORTING VICTIMS IN
RESPONSIBLE DISCLOSURE
The practice of reporting security
vulnerabilities and threats in a responsible
way is critical to ensure that the sector has
information about new attacks. The
cornerstone of responsible disclosure is
ensuring that fixes or patches are available
when the issue is announced in order to
limit the risk of malicious actors exploiting
issues before they are fixed.
Governments should further incentivise
companies for responsible disclosure and
information sharing. Unfortunately, this is
not always the case. Given the risk that
companies can be victim-shamed in the
news media and even face punitive
measures after
disclosure, there is
often a greater
incentive for companies
not to disclose. Ideally,
the industry would foster
an environment where
victims can share their
experiences and learnings
without fear of retribution.
SECURE BY DESIGN: A
PROACTIVE APPROACH
To successfully navigate the
modern threat landscape,
companies must become Secure by
Design in the software development
process. This means integrating security
measures throughout an entire product
lifecycle from inception to deployment.
Ramakrishna shares an analogy: "You don't
think about the airbag in a car after the car
is manufactured and on the road. You think
about the safety of that as you're
designing it."
Similarly, Secure by Design incorporates
security as a foundational and inherent
component of systems and applications. As
a result, developers can minimise the
attack surface and proactively identify and
address vulnerabilities.
Many governments are already refining
security guidelines. In the US, for
example, this includes the generation of a
Software Bill of Materials (SBOM), which
26 NETWORKcomputing FEBUARY/MARCH 2024 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

SECURITY UPDATE
is like a
receipt of each component,
library, tool, and process developers use
in the build process.
SBOMs are a critical step for improving
the security of software products by
providing visibility into their composition.
According to Krishnamoorthi, "We need
radical disclosure and radical sharing to
make sure that everybody can learn from
the attacks that are going on." As part of a
more significant, nationwide Secure by
Design initiative, SBOMs introduce a new
standard for transparency and openness in
the industry.
BUILDING THE SKILLS NEEDED
With more than 3.4 million open positions
in the field, the demand for cybersecurity
experts is higher than ever. This results
from a
lack of
qualified
individuals available
to fill the roles. During the panel,
Krishnamoorthi recommended allocating
additional skills and vocational training
resources to solve this issue. This would
require increased incentives and the
implementation of training in high schools
and community colleges.
To accomplish collaboration and
transparency, the government needs more
support from the private sector.
Ramakrishna suggested that software
companies allocate the equivalent of one
trained, full-time employee to support
information sharing across individuals,
companies, and government agencies.
This designated liaison would be a
champion
for working collaboratively
and help ensure robust public-private
partnerships amid the evolving threat
landscape.
WHY IT MATTERS
Highly sophisticated nation-state hackers
pose significant threats to the security of
global digital infrastructure. By working
together across the industry, we can build a
resilient defence against cyberattacks and
protect our digital ecosystem. Cyber
resilience is not just about preventing
cyberattacks but recovering quickly - and
having a plan to identify and contain the
attack. It is a shared responsibility
requiring the cooperation of governments,
businesses, and individuals. NC
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards FEBRUARY/MARCH 2024 NETWORKcomputing 27

OPINION: IDENTITY MANAGEMENT
AVOIDING AN IDENTITY CRISIS
THOMAS MULLER-MARTIN, GLOBAL PARTNER LEAD, OMADA EXPLAINS WHY THE EVOLUTION OF MODERN
IDENTITY GOVERNANCE AND ADMINISTRATION (IGA) SOLUTIONS IS WORTH YOUR ATTENTION
The field of identity governance and
administration has dramatically changed
in the past several years, driven in large
part by trends like cloud adoption and AI.
These aren't the only significant factors that
have changed the landscape, of course, but
they are the ones we hear of most.
It's also worthwhile to look at subtle shifts that
have occurred in recent years, as they allow
organisations to calculate their ROI faster,
illustrate consistent business value to their
stakeholders, and keep the solution simple to
operate, agile to extend, and conveniently
scalable. Implementing IGA fast and
successfully requires a modern
implementation strategy.
BUILT-IN PROCESSES HAVE IMPROVED
In the past, customers often created highly
customised onboarding, transfer and
offboarding routines. Request access and
approvals were different at every organisation.
You saw similar trends with periodic reviews of
access (recertifications), management of
contractors, and other IGA-related workflows.
But today, more organisations are looking for
more universal approaches that don't add
extra work for employees but still help
maintain compliance.
There are more solutions today with more
mature built-in processes than they had in the
past. They're far more robust, more adaptable
and easier to operate. Typical use cases like
generating account names according to the
company standard, sending individual emails
or defining individual approval patterns are
now highly configurable. Some of these
processes may have required code-based
customisation before; now those coding tasks
have shifted to business-focused advisory. In
28 NETWORKcomputing FEBRUARY/MARCH 2024 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

OPINION: IDENTITY MANAGEMENT
other words, whereas in the past IAM projects
were seen as pure technical plays to shift data
from A to B, now they can be positioned as a
solution to a business need, not just a tool.
As more organisations use the configured
out-of-the-box standard, innovation can today
focus on the flexibility of the core product
instead of the error-prine and high-cost codebased
customisation.
SELF-SERVICE OPTIONS HAVE
EXPANDED AS USER BASE GROWS
It used to be that IGA was a domain that
required specialists - a core team of two to five
specialists who were tasked with keeping your
organisation compliant. That approach has
changed, largely out of necessity, given the
number of people and roles within a typical
organisation today. More people are using
IGA solutions in most companies, from
requesting access to recertifying and from
creating role definitions to onboarding
employees. To meet these needs, we've seen
many IGA offerings evolve to be able to
distribute tasks in an easier way, throughout
the entire organisation.
Operations are changing faster than in the
past, and the exposure of individuals in the
business has continuously risen. As the
operation of the solution gets less complex and
fewer tickets go to the service desk and
operations team, they can focus on
broadening the scope of the IGA solution
(connecting to more systems), to go deeper
than before (segregation of duties, risk
concepts, roles) or to think outside of the box
of IGA to integrations with privileged access
management (PAM), customer identity and
access management (CIAM), security
information and event management (SIEM)
and other identity-related solutions.
MORE SYSTEMS, MORE IDENTITIES
An average enterprise might be using as many
as 130 different SaaS apps and all of these
apps are also creating new digital identities.
It's no wonder, then, that the number of
identities that need to be managed has
continuously risen in the last 10 years. With
more cross-organisational collaboration, the
adoption of cloud services and remote work,
this trend is on an upward trajectory.
The number of relations between identities
and systems is exponentially increasing. Larger
enterprises have many more connections than
smaller ones. Additionally, not all identities and
systems are under direct control anymore. For
example, suppliers and contractors are
typically not managed by the HR system, and
your employees have work-related access to
systems that you don't own.
THE RISE OF INTEGRATIONS
It was common in the past to see the individual
identity management solution as an isolated
element of your cybersecurity strategy. But
things have changed, such as the rise of
visionary Identity Fabric strategies. They
represent a forward-looking approach to IGA,
aiming to create a unified, flexible and secure
identity management framework that aligns
with an organisation's current and future
needs. These strategies often leverage modern
technologies like AI, automation and analytics
to enhance identity governance and security.
An emphasis on zero trust (assuming every
person or device is not trustworthy until
verified) is another change. It's become
increasingly apparent that the many pieces of
your identity infrastructure - including multifactor
authentication (MFA), PAM, CIAM and
IGA - need to collaborate in a seamless way.
A typical enterprise has solutions by various
vendors, ongoing transformation projects and
extensions to the existing set of functionalities.
IGA plays an essential role in this scenario, as
it is the integration layer in many regards,
allowing the other solutions to be
more effective.
IGA IN ACTION
As one example, the PAM solution allows
you to protect your securable assets. IGA
allows you to classify those assets, create a
comprehensive risk analysis and define the
list of assets that need to be secured.
Another use case is the deactivation of
accounts triggered by third-party solutions.
For instance, IGA can get the signals about
unexpected user behavior from Microsoft
Threat Protection and disable all personal
and administrative accounts of the
individual within seconds, in a compliant
and auditable manner.
The integration of the company's user
interface for standard IGA tasks, such as
requesting and approving access, is a
third example that's becoming increasingly
relevant. If you are using common user
interfaces for your end users, such as
ServiceNow, you can allow them to
perform their tasks inside the platform
they're familiar with. Creating open APIs
and the availability of interwoven use
cases is key for leveraging your IAM
solutions far better.
IGA AT THE CORE
IGA is the core of modern identity
management ecosystems. You can't fix
today's problems with solution patterns
from a decade ago. You need more of an
advisory mindset with a business focus
instead of a purely technical approach. If
you're aware of the leaps of functionality
that modern IAM solutions have gone
through, you can reduce the effort required
for integration, increase the measurable
business value, achieve a more secure
solution and reduce the long-tail operation
and migration costs that legacy solutions
have. Getting this right will enable you to
leverage mega-trends like AI more
effectively and maximise the value of
identity governance. NC
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards FEBRUARY/MARCH 2024 NETWORKcomputing 29

OPINION: BACKUPS
BUNGLED BACKUPS
WHY ARE BUSINESSES STILL FAILING TO BACKUP THEIR DATA? JON FIELDING, MANAGING
DIRECTOR, EMEA AT APRICORN, OFFERS SOME INSIGHTS
Abackup strategy is a safety net for
the business and, in the event of a
disaster or a data breach, it can
often determine if a business sinks or
swims. Being able to recover data is vital
to resume normal operations, yet a
growing number of businesses are finding
that they are unable to recover all of their
data when putting that strategy to the test.
A recent poll of 201 security decision
makers found that, of the 90 percent of
businesses that needed to recover
their data at some point over the
past year, only 27 percent were
able to do so, down from 45
percent in 2022, according to the
Apricorn Annual Survey 2023. That
equates to two out of three
businesses losing some of their
data. The main cause of these
failed backups was a lack of robust
backup processes, as identified by
32% of those questioned. The
findings further revealed that
ransomware is on the up, with a
quarter naming this as the main
cause of data breaches, up from 15%
the previous year.
WHY ARE BACKUPS FAILING?
So, given the rise in
ransomware attacks - which
should have prompted users
to double down security and
focused attention on the
importance of data backups -
why are organisations getting
worse at the practice? Part of
the problem comes down to
an increase in manual
processing. Working habits,
namely an increase in remote or mobile
working, have seen more of us resorting
to manually backing up data locally
before then also doing so to a central
location. But while this may be more
convenient it's also more prone to error.
Users need to remember to execute the
backup and to carry out the procedure
correctly, for example.
The same survey uncovered a marked
shift from automated to manual backups,
with only half of those questioned using
an automated approach, whereas that
figure stood at 93 percent in 2022.
Nearly half of businesses (49%) are
backing up manually compared to just 6
percent the year before, so there has been
an extreme swing from one to the other.
Moreover, while only one percent were
backing up to personal storage devices
before, now 16 percent are using these to
provide a local backup facility.
It's important to note that there are
advantages and disadvantages to both
localised and centralised backups, so
doing so manually to a local device isn't
necessarily a bad thing. What's worrying is
that there is a marked decline in those
adopting the 3-2-1 strategy of having at
least three copies of the data, stored on
at least two media, at least one of which
is off-site. In fact, the ideal is to have that
offsite copy air gapped so a personal
storage device such as an encrypted
removable hard drive or USB stick. But the
survey revealed that those companies
backing up to both a central and personal
repository was low, with only 38 percent
doing so regardless of whether they were
using an automated or manual approach.
30 NETWORKcomputing FEBRUARY/MARCH 2024 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

OPINION: BACKUPS
PUT
YOUR BACKUP
PROCESS TO THE TEST
In effect this means that the backup
strategy has been reduced to a single
point of failure - and this doesn't
become apparent until it is put to the
test. What the survey reveals is that not
enough businesses are testing their
backup processes to ensure they are
up to date, robust and able to function
correctly and efficiently. The general
consensus is this should be done at
least once a year but, given that it
should also be tested in the event of
any changes to the digital
environment, i.e. when new users,
applications, or systems are added, or
when there's a procedural change
caused by changes in workflow or
compliance
regulations, the reality is
testing should be more frequent.
Going forward there are some clear
lessons to be learnt here. It's not
enough to be backing up regularly -
that data needs to be held in multiple
locations to provide a belt and braces
approach using the 3-2-1 rule so that,
in the event one backup fails, the
business has other options. It's for this
reason also that you should ensure that
your backup doesn't connect directly to
the live data source, as this can make
it vulnerable to malicious activity.
Ideally, it should be an
automated process, although manual
backups do offer a convenience that is
hard to argue with given the way we
now flexibly work. To safeguard data,
therefore, it should be held on an
encrypted format and, if using
hardware, look for FIPs-level security.
Finally, regularly test that the backup
procedure is fit for purpose and that
data is fully recoverable, otherwise all of
those efforts will be in vain. NC
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards FEBRUARY/MARCH 2024 NETWORKcomputing 31

OPINION: 5G
THE NEXT GENERATION OF CONNECTIVITY
TODD MUSSMAN, WIRELESS CONNECTIVITY EXPERT AT GTT,
EXPLAINS HOW WE CAN UNOCK THE POTENTIAL OF 5G FIXED
WIRELESS ACCESS (FWA)
In our increasingly crowded market,
businesses across all sectors have to
find ways to gain the competitive
advantage and deliver for their
customers. After all, today's consumer has
higher expectations for the brands that
they interact with than ever before. And, if
these expectations aren't met, they will
search elsewhere.
In fact, according to recent research,
almost one third (32%) of customers
would stop doing business with a
brand they loved after just one
negative experience. For businesses
looking to attract and retain their
customers, there is simply no room
for mistakes.
To keep up with customer demand -
and deliver the best experiences
possible - connectivity is vital. It is the
key to both remaining agile and
ensuring business continuity, regardless
of economic, societal and geopolitical
conditions. It also enables businesses to
scale and protect their operations from
unexpected downtime and keep their
costs in check.
For businesses looking to
boost connectivity,
there are
several
routes
they
could
take.
One
which is currently garnering much
industry attention is 5G Fixed Wireless
Access (FWA). This technology - which
provides stable, high-speed internet -
offers a high-performance, reliable
answer for businesses looking to meet
customer expectations and remain agile,
no matter what.
GAME-CHANGING TECHNOLOGY
FWA is a type of 5G technology that
relies on radio waves to broadcast highspeed
signals across vast distances
instead of fiber optic cabling, reducing
the number of infrastructural challenges
related to traditional broadband access.
For businesses and their customers, it
offers greater reliability and resiliency
with guaranteed performance.
By delivering ultra-fast speeds, 5G
FWA enables businesses to keep up with
their customer's ever-changing
expectations. It does so by providing
optimal connectivity for all employees,
regardless of where they are logging on
from. This is a game-changer, especially
in challenging-to-reach locations when
wireline solutions for primary connectivity
are difficult to establish. Employees are
not only connected to each other but
their customers.
Another benefit associated with 5G
FWA is easy installation. Unlike
traditional connections, it can be
installed without any cable drilling or
wiring. All a business needs to activate it
is the right expertise and a 5G-enabled
32 NETWORKcomputing FEBRUARY/MARCH 2024 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

EVENT ORGANISERS:
Do you have something coming up that may
interest readers of Network Computing?
Contact dave.bonner@btc.co.uk
6-7
MAR
TECH SHOW LONDON
ExCel, London
https://www.techshowlondon.co.uk/BTC
FORTHCOMING EVENTS
2024
FORTHCOMING EVENTS
FORTHCOMING EVENTS
28
MAR
25
APR
25
APR
9
MAY
22-23
MAY
4-6
JUN
13
JUN
19
SEP
2-3
OCT
20-21
NOV
CIO/CISO NORDICS SUMMIT
Copenhagen, Denmark
www.cdmmedia.com/events
CIO/CISO UK SUMMIT
London
www.cdmmedia.com/events
CDO UK SUMMIT
London
www.cdmmedia.com/events
CIO/CISO BENELUX SUMMIT
Amsterdam, Netherlands
www.cdmmedia.com/events
DTX MANCHESTER
Manchester Central
https://dtxevents.io/manchester/en/page/dtx-manchester
INFOSECURITY EUROPE
ExCel London
https://www.infosecurityeurope.com/
CIO/CISO DACH SUMMIT
Frankfurt, Germany
www.cdmmedia.com/events
CIO/CISO IRELAND SUMMIT
Dublin, Ireland
www.cdmmedia.com/events
UC EXPO EUROPE
ExCel, London
https://ucxevents.io/ucexpo/en/page/ucexpo-home
DATA CENTRES IRELAND
RDS, Dublin
www.datacentres-ireland.com

OPINION: 5G
SIM card. This also makes it far more
cost effective than many of the other
solutions on the market.
5G FWA networks are also built with
redundancy measures and backup
internet connections in place, making
them one of the most reliable solutions
for businesses looking to stay connected
at all times. By using a premise-based
modem equipped with dual SIM cards,
the FWA service is available across two
operators' footprints. This means that
businesses can switch to the network
providing the best performance at a
given time, increasing agility and
performance.
This technology has the power to
transform many industries - including
manufacturing, agriculture, healthcare,
and banking - due to its ability to
provide high-speed connectivity, rapid
deployment, fewer business interruptions
and improved scalability. Currently, many
of these benefits are already being
witnessed in retail environments, where
the blending of 5G and Wi-Fi has
extended connectivity, leading to
improved customer experiences, reliable
point of sales (POS) processing, and
faster decision making.
UNLOCKING THE POTENTIAL OF
5G FWA WITH HELP FROM AN MSP
Before businesses can unlock the 5G
FWA connectivity rewards, there are
some things to consider, especially when
it comes to implementation. One key
area that needs to be addressed is
whether they have the required skillset
and expertise to ensure that deployment
and everything it entails - from
integrating existing infrastructure to
combating potential network congestion
and cost, plus everything that follows the
deployment - is a success.
To truly unlock the potential of a 5G
FWA network, organisations need to
work with an experienced managed
service provider (MSP) who can offer
tailored solutions. They should bring to
the table a global reach complemented
by local knowledge and be able to
address each organisations unique
requirements.
The right partners can also help
business to keep track of connectivity
performance and make the most of their
investment. Using real-time reports from
the moment of 5G FWA activation, they
can advise on any improvement areas
and keep tabs on connectivity levels. This
enables businesses to react quickly and
efficiently to any changes, boosting their
flexibility, whilst enabling them to meet
customer expectations across the board.
A MORE CONNECTED FUTURE
As we start a new year, meeting customer
demand and providing the best
experience possible will continue to be
the top priority for organisations. The
role that 5G FWA could play in this is
clear to see. It is hardly surprising that
the number of 5G FWA connections is
predicted to reach 236 million worldwide
by 2028, up from 19.23 million in 2022.
When deployed and managed
effectively, this technology can enable
organisations to scale, remain agile,
provide business continuity, and gain
competitive advantage allowing them to
meet their customers' needs quickly and
efficiently. The next generation of
connectivity solutions is here; and it
starts with 5G FWA. NC
34 NETWORKcomputing FEBRUARY/MARCH 2024 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

Accelerating AI
Data Pipelines
Proven High-Performance Storage Architectures
to Support AI and ML Workloads
Learn More at
www.supermicro.com/AIStorage
© Supermicro and Supermicro logo are trademarks of Super Micro Computer, Inc. in the US. and/or other countries.