Re: Does this suggestion APPLY TO THE INTERNET AS A WHOLE?
“ From a security standpoint, there are fewer points of entry for any network offset by the far worse level of compromise achieved should one be breached. Good CIOs these days should be expecting a breach and looking to achieve the shortest elapsed time possible from problem isolation to fix.”
Most people use SDN to increase the number of points of entry, instead of private circuits (mpls, ipvpn etc) many are turning to cheap dsl circuits and wanting SDN to overlay on top. Many SDN systems will encapsulate and encrypt over the top but you’ve not got multiple sites plumbed directly to the internet instead of centralised internet breakout.
Once your SDN is found to be compromised you’ve got a big task on your hands update your SDN infrastructure.