Array Wang Hao: encrypted internet

December 12, the world's first large-scale conference to explore the industry Internet, 2014 CVW. The industry Internet conference was held in Beijing and was synchronized through the big screen of New York Times Square. The conference was made by the Asia Letter Group, the cloud base and the Chuang-Zhuang economic and Technological Development zone jointly hosted more than 5,000 global it and traditional industry leaders and elites who are concerned about the development of Internet and traditional industries, and explored the evolution of "Internet access to traditional industries", "traditional industry internet" and the technological model and business innovation of industrial Internet.

In the afternoon of the "Internet Security @ Internet" theme Forum, array China general manager Wang Hao brought the "encrypted Internet" keynote speech.

The following is the full text of his speech:

Wang Hao: first introduction to the array company, we are focused on cloud, the internet above the encryption manufacturers. My following topics focus on usability, security, and performance. I'm not telling the trend because we're talking too much. The following I would like to focus on the Internet to bring this industry to the big guests, in fact, the most important thing is some of it, from the software perspective of some of its software model, very different. Because in the traditional Internet enterprise, your application is within the company a local area, is a sparrow rollout, once put on the Internet, your users thousands of increase, you need very high performance and very safe. This is a big challenge for every vendor such a technology, the corresponding technology needs to be considered, I think a lot of people in front of the relevant technology. I would like to focus on this inside to tell you, in fact, SSL people listen to a lot, but the importance of SSL in many traditional internet companies to emphasize, because a lot of people, everyone swarm on the Internet, but its application is not safe. In order to expand the business he quickly deployed out, but did not consider the security implications of it?

The most left is the traditional enterprise application, and finally to the server such a platform, once you put your server as a servers sold to the public, it will reflect the importance of it. Speaking of several trends, Google offered an incentive in 13 because so many sites ranked on top of it, giving priority to all sites to reward SSL sites. Another related technology is 2048 from this year, the United States Technical Standards Bureau does not support 1024 such certificates, the other is the private cloud, the public cloud and mixed cloud, mixed up after Ssl,vpn also become a very important technology. How serious is OpenSSL? It is a major SSL vulnerability, it is the operating system, in the form of fishing can take out 64K of data, which may contain important information and passwords, information and so on. Involves a lot of companies around the world, but there is a data, China has 30,000, but the world about 800,000 units, the United States accounted for 34%, China accounted for only 1% to 3%, this data I do not remember. But this shows that most of China's web sites do not use SSL, so it is not a lot of trouble, but once the attack is more unsafe.

The following describes the array this company, because we are 10 years has been committed to do network applications above the application of accelerated and SSL VPN technology, we can give customers and enterprises what kind of products and technology? I'll have a simple here. The first step, once the application into the cloud above, we need to put the background resources, secure and reliable, with the array APV Project can interact with all the users, this is the first step. The second step through the application gateway, what is the function of the application gateway? Verify, authorize, audit and two-way certificate and transmit End-to-end encryption, and then put your background legitimate data, the data and the network separate, the corresponding data and applications to the legitimate users, put your unsafe data and illegal users excluding in the entire data chain. We know that the enterprise inside the most insecure is their own intranet, because many enterprises within the enterprise without any security, just feel a firewall is safe. The actual internal all the information exchange, if you are the plaintext can bring many security hidden dangers.

The third step, with 50 billion of terminals appear, a variety of things networking terminals appear. We can put the reliable information, safely to the various mobile devices, so far we have a remote access to your system's terminals as an Android platform and iOS that support the users on the Apple and Android platforms, which we are also using in Ping an bank and many customers. The overall plan for encryption is to put all the apps in the background, whether it's in the corporate cloud, mixed cloud, through a series of measures, through our intermediate authentication system, through our mobile access terminals, eventually we have a series of development SDK, so that your business can easily take you to the cloud above, and is relatively safe. And then, for the providers of cloud services, we also provide a series of integrated tools that can be used with Cloulos. Management platform You talk a lot, the cloud management platform is divided into three kinds, one is our largest customer SoftLayer, it is the foundation of all IBM Cloud services, behind the privatization of cloud management platform. ARRAYAPV provides all the technical support below, also has the customer builds the cloudos above, the array through with Cloudos, now many new domestic cloud service providers, he in order to expand is uses the OpenStack, that array also provides a series of APIs and the interface, A provider of cloud platforms that can quickly bring new applications to the cloud and distribute the service to his customers.

Tell me, why did OpenSSL here? Because the main internal SSL is caused, this problem will not only appear this year, because it is open, so it is easy to do attacks. Our system is our own decade of development, the proprietary SSL OS, reducing the open SSL to the security risks. And there's one that everyone will consider, 1024 certificate and 2048-bit certificate difference, once come up after your network application access, speed will be reduced by one-fifth, will increase five times times, and your device processing capacity, can handle 20,005, now can only handle 5,000, such a level. We now support a very large amount of equipment, very professional. Now many companies in the United States have started to use 4096 such certificates, so that you can ensure that your application is more secure, 1024 now minutes, he wanted to attack quickly can attack down. I'll give you two examples, SoftLayer, the third largest provider in the United States, where load balancing is used. In addition, Eclinicalworks provides software services to the corresponding medical staff, and we provide software encryption and software services below. Yourmembership, its development is very fast, now is 1.5 of the time, become a very large company, but also because of the use of a more ready-made deployment, the ability to make its business development very fast. This is all our customer information, thank you!

(Responsible editor: Mengyishan)