AI-driven network identity as-a-service introduced by Arista Networks for security and scale

Arista Networks, a provider of cloud networking solutions, has announced at the RSA Conference a cloud-delivered, artificial intelligence (AI)-driven network identity service for enterprise security and IT operations.

Based on its CloudVision platform, Arista Guardian for Network Identity (CV AGNI) expands Arista’s zero trust networking approach to enterprise security. CV AGNI helps to secure IT operations with simplified deployment and cloud scale for all enterprise network users, their associated endpoints, and Internet of Things (IoT) devices.

“Proliferation of IoT devices in the healthcare network creates a huge management and security challenge for our IT and security operations. The ease of securely onboarding devices on the network by CV AGNI and its integration with Medigate by Claroty for device profiling greatly simplifies this problem for a healthcare network,” says Aaron Miri, CIO of Baptist Healthcare.

AI-driven network identity brings simplicity and security at scale

While enterprise networks have seen massive transformation in recent years with the adoption of cloud and the acceleration of a post-pandemic, perimeter-less enterprise, Network Access Control (NAC) solutions have changed little for decades. Traditional NAC solutions continue to suffer from the complexity of on-premises deployment and administration and have been unable to adapt to the explosion of SaaS-based identity stores, users, devices and their associated profiles across the enterprise.

CloudVision AGNI reportedly takes a novel approach to enterprise network identity management. Built on a modern, cloud-native microservices architecture, the CV AGNI solution leverages AI/ML to greatly simplify the secure onboarding and troubleshooting for users and devices and the management of ever-expanding security policies.

CV AGNI is based on Arista’s foundational NetDL architecture and leverages AVA (Autonomous Virtual Assist) for a conversational interface that removes the complexity inherent in managing network identity from a traditional legacy NAC solution. AVA codifies real-world network and security operations expertise and leverages supervised and unsupervised ML models into an ‘Ask AVA’ service, a chat-like interface for configuring, troubleshooting and analysing enterprise security policies and device onboarding. CV AGNI also adds user context into Arista’s network data lake (NetDL), greatly simplifying the integration of device and user information across Arista’s products and third-party systems.

CloudVision AGNI delivers key attributes from client to cloud across the cognitive enterprise:

  • Simplicity: CV AGNI is a cloud service that eliminates the complexity of planning and scaling the compute resources for an on-premises solution. Administrative actions take a fraction of the time compared to a traditional NAC solution. It also natively integrates with identity stores.
  • Security: CV AGNI leapfrogs legacy NAC solutions by redefining and greatly simplifying how enterprise networks can be secured and segmented by leveraging user and device context in the security policies.
  • Scale: With a modern microservices-based architecture, the CV AGNI solution scales elastically with the growing needs of any enterprise.

CloudVision delivers network identity as-a-service

Based on the CloudVision platform, CV AGNI delivers network identity as a service to any standards-based wired or wireless network.

CloudVision AGNI’s key features include the following:

  • User self-service onboarding for wireless with per-user pre-shared keys (UPSK) and 802.1X digital certificates.
  • Certificate management with a cloud-native PKI infrastructure.
  • Enterprise-wide visibility of all connected devices. Devices are discovered, profiled and classified into groups for single-pane-of-glass control.
  • Security policy enforcement that goes beyond the traditional inter-group macro-segmentation and includes intra-group micro-segmentation capabilities when combined with Arista networking platforms through VLANs, ACLs, PSK and Arista MSS-Group techniques.
  • AI-driven network policy enforcement based on AVA for behavioral anomalies. When a threat is detected by Arista NDR, it will work with CV AGNI to quarantine the device or reduce its level of access.

Tailored for multi-vendor integration

CloudVision AGNI leverages cognitive context from third-party systems, including solutions for mobile device management, endpoint protection, and security information and event management. This greatly simplifies the identification and onboarding process and application of segmentation policies. Examples include:

  • Endpoint Management: Medigate by Claroty, CrowdStrike XDR, Palo Alto Cortex XDR
  • Identity Management: Okta, Google Workspace, Microsoft Azure, Ping Identity and OneLogin.
  • MDM: Microsoft Intune, JAMF
  • SIEM: Splunk
  • Networking devices: Multi-vendor interoperability in addition to Arista platforms

Availability

CV AGNI is integrated into Arista CloudVision to provide a complete identity solution. CV AGNI is in trials now with general availability in Q2 2023.

Comment on this article below or via Twitter: @IoTNow_OR @jcIoTnow 

RECENT ARTICLES
close up small cars model road traffic conception

Carson City upgrades to Iteris’ advanced Vantage Apex sensors

Posted on: April 26, 2024

Iteris has announced that Carson City, Nevada has chosen to upgrade the city’s intersection detection sensors to Iteris’ Vantage Apex hybrid sensors.

Read more

Make the Intelligent Choice: Embed X103 in Smart City Outdoor Devices

Posted on: April 25, 2024

The adage “less is more” is the current state of digital transformation, starting with existing technology that has already proven successful – and then further adapting and streamlining. The “smart

Read more
FEATURED IoT STORIES
What is IoT answer

What is IoT? A Beginner’s Guide

Posted on: April 5, 2023

What is IoT? IoT, or the Internet of Things, refers to the connection of everyday objects, or “things,” to the internet, allowing them to collect, transmit, and share data. This

Read more
iot adoption

The IoT Adoption Boom – Everything You Need to Know

Posted on: September 28, 2022

In an age when we seem to go through technology boom after technology boom, it’s hard to imagine one sticking out. However, IoT adoption, or the Internet of Things adoption,

Read more

9 IoT applications that will change everything

Posted on: September 1, 2021

Whether you are a future-minded CEO, tech-driven CEO or IT leader, you’ve come across the term IoT before. It’s often used alongside superlatives regarding how it will revolutionize the way

Read more
IoT Now Enterprise Buyers’ Guide Which IoT Platform 2021

Which IoT Platform 2021? IoT Now Enterprise Buyers’ Guide

Posted on: August 30, 2021

There are several different parts in a complete IoT solution, all of which must work together to get the result needed, write IoT Now Enterprise Buyers’ Guide – Which IoT

Read more
CAT-M1 vs NB-IoT

CAT-M1 vs NB-IoT – examining the real differences

Posted on: June 21, 2021

As industry players look to provide the next generation of IoT connectivity, two different standards have emerged under release 13 of 3GPP – CAT-M1 and NB-IoT.

Read more
internet of things isometric illustration of connected things

IoT and home automation: What does the future hold?

Posted on: June 10, 2020

Once a dream, home automation using iot is slowly but steadily becoming a part of daily lives around the world. In fact, it is believed that the global market for

Read more
iot challenges and issues

5 challenges still facing the Internet of Things

Posted on: June 3, 2020

The Internet of Things (IoT) has quickly become a huge part of how people live, communicate and do business. All around the world, web-enabled devices are turning our world into

Read more