Abstract:
Due to the increasing number of threats and attacks that threaten the network during the recent years, novel
methods and techniques have been improved to secure the infrastructure of the network and the data transmitted
within it. Micro-segmentation and segmentation techniques are popularly used over computer networks to reduce
the defensive versus cyberattack. These techniques aim to minimize the damage obtained from attackers by
segmenting the network into many clusters or sections and limiting the communications among them. Thus, each
cluster or segment within the network becomes isolated from the others and this will increase the security of highly
sensitive data networks and prevent unauthorized people and attackers from reaching to these sensitive data. In
this paper, the micro-segmentation and segmentation techniques have been studied. Further, two scenarios of the
implementation of micro-segmentation and segmentation within networks have been studied. Then, an enhanced
scenario has been suggested to overcome the limitations of those two scenarios. The suggested scenario integrates
NSX-T micro-segmentation with Sky API and policy enforcer to enhance the security and the performance of the
network. After that, a comparison between all scenarios has been achieved to show which one is the best.