How to Manage and Secure Business Platforms with Intel vPro
How to Manage and Secure Business Platforms with Intel® vPro™ Technology Kevin S. Havre, Product Marketing Engineer, Intel Michael L. White, Program Manager, Intel CRIS006 Agenda • Business Client Strategy • Intel® Pro Wireless Display • Intel® vPro™ Technology with Location Based Services • Intel vPro Technology with Wireless Docking • XenGT • Intel vPro Technology with MeshCentral 2 The ‘device’ itself is only one component… …and will change… Business Continuum Mainframe Personal Compute Mobility …the user is what is important… 3 Business Client Strategy is: Embracing the business end-user while providing IT with the security & manageability they need… Bridging the GAP between CIO and Users 4 4 New Business Computing Experiences Bridging End User Wants and IT Needs Form-Factor Innovation Security 5 No Wires No Passwords Automation Immersive Collaboration Flexibility Intel® vPro™ Platform Intel® Pro Wireless Display XenGT Intel vPro Technology with Wireless Docking Processor Chipset Network Intel® Core™ processors Intel® Express Chipset Intel® LAN/WLAN controller IT USER Intel® vPro™ technology with Location Based Services Intel® Active Management Technology (Intel® AMT) Intel® Virtualization Technology (Intel® VT) Intel® Trusted Execution Technology (Intel® TXT) Intel vPro Platform is the sum of hardware, BIOS extensions and applications that deliver solutions for Business 6 Intel® Pro Wireless Display 7 Intel® Pro WiDi Segmentation Intel® Pro Wireless Display Provides Enterprise-class capabilities: The Intel® WiDi application turns on when installed on an Intel® vPro™ technology platform connected to an Intel® Pro WiDi-certified Receiver “Enhanced security for IT, privacy for end users” Intel Wireless Display The Intel app uses Intel® Graphics and Wi-Fi* components to deliver higher quality experience than Miracast* baseline. Consumer Business No wires in the Living room; Blu-Ray* and Gaming quality and performance. New dual screen usages. No wires in dense conference room environments; video conferencing performance, low wireless interference. Miracast = Standard protocol for wireless display Intel® PROSet Wi-Fi Performance Enterprise Security 8 Intel® HD Graphics Performance Productivity and Privacy Intel® Pro WiDi Segmentation (cont’d) The complete Intel® Pro Wireless Display solution requires: • an Intel® vPro™ Technology Platform • an Intel® Pro WiDi-certified Receiver Transmitters Receivers 9 Certified Intel Pro WiDi Security & Manageability Certified Intel® WiDi Intel® vPro™ Technology With Intel Pro WiDi Security & Manageability Intel Pro WiDi Information Security and Privacy in dense conference room environments Intel Pro WiDi PAN/LAN security features Non Intel vPro Platforms With Intel WiDi Intel WiDi in Business Fast Presenter Handoff / Managed Meetings Intel WiDi Performance & Quality over Miracast* baseline Intel® Pro Wireless Display Solution Components CENTRALIZED IT MANAGEMENT OF WiDi PERFORMANCE AND SECURITY ISV AND IT CONSOLES WIRED OR WIRELESS MANAGEABILITY OF WiDi CLIENTS ENTERPRISE WLAN AP WIRED OR WIRELESS MANAGEABILITY OF WiDi RECEIVERS Receivers configured for <6 per channel and non-DFS DISABLED WLAN-WPAN BRIDGE ONE WAY SECURE WPAN TRAFFIC QUICK CONNECTION | FULL DISPLAY SHARING | MANAGED HAND-OFF INTEL® vPro™ TECHNOLOGY CLIENT 10 INTEL PRO WIDI RECEIVERS: • Receiver is the Wi-Fi* Direct Group Owner • Channel Management Intel® Pro Wireless Display Solution Components CENTRALIZED IT MANAGEMENT OF WiDi PERFORMANCE AND SECURITY ISV AND IT CONSOLES WIRED OR WIRELESS MANAGEABILITY OF WiDi CLIENTS ENTERPRISE WLAN AP WIRED OR WIRELESS MANAGEABILITY OF WiDi RECEIVERS DISABLED WLAN-WPAN BRIDGE ONE WAY SECURE WPAN TRAFFIC QUICK CONNECTION | FULL DISPLAY SHARING | MANAGED HAND-OFF INTEL® vPro™ TECHNOLOGY CLIENT 11 INTEL PRO WIDI RECEIVERS: • Receiver is the Wi-Fi* Direct Group Owner • Channel Management • Remote Manageability • VGA Pass-through Intel® Pro Wireless Display Privacy Usages Confirm Before Display A Privacy Screen blocks confidential content on your desktop in case you connect to the wrong conference room Your employee you, your boss, Employee's peers Currently Connected Taskbar icon turns green to remind you to disconnect when you lave the conference room 12 New Collaboration User Experience: Managed Meetings Meeting Modes I. Exclusive – I do not allow a requests to take over the session (CEO or college professor) II. Interactive – I would allow another user to take over the session (normal business user workflow) III.Moderated – I control a multi-user meeting (the first user controls who shares until their session is disconnected) 13 Ecosystem Update Shipping Gen 3 WiDi Certified Rx Devices Adapters 4 TVs Other More Devices from Leading Vendors Coming Soon 14 4 Indicates Intel® Wireless Display Gen 4 certified receiver Intel® vPro™ Technology with Location Based Services 15 Emerging Market for Indoor Location Services • Modern OS’s offer Location Frameworks and/or APIs • Indoor location is growing (Baidu, Bing* Maps mobile, Google* Maps 6.0, etc.) • Increasing interest in location aware applications • 4th Generation Intel® Core™ vPro™ processor based mobile platforms include Location Based Services (LBS) 16 Out of the Box Intel / AeroScout* Use Cases Find Near Me: Anything that’s mapped can be found faster – Office: Printers, conference rooms, offices, office equipment – Industrial: Equipment, storage, first aid/safety Asset Tracking: Track device location (within ~ 3 to 5 meters) – Track/locate of sensitive assets – An added measure of protection for devices containing sensitive data 17 High Level Overview 2 1 3 Network controller Application 4 1. End user opts in 2. 4th Generation Intel® Core™ vPro™ processor based mobile platform sends a beacon to Wi-Fi* network (5, 10, 60 or 360 seconds) in active or standby or modes 3. Each AP measures the Received Signal Strength Indicator (RSSI) and forwards this information to a location engine 4. The location engine this information to determine the device location Intel Confidential 18 Four Components and Solution Maturity Enterprise Class Wi-Fi* (>20 vendors) 19 Enterprise Maps AeroScout* Intel® vPro™ MobileView Technology (>1000 customers) (Millions of Units) Comparing Free & Full Versions of AeroScout* MobileView 5.0 Capability MobileView 5.0 Capabilities # of Discrete AeroScout* Tags Supported Full Version Free Version All Capabilities Find Near Me - Asset Tracking Unlimited Up to 20 # of 4th Generation Intel® Core™ vPro™ processor based devices Unlimited Management Console Plugin (SCCM + 4) Supported MobileView API & SDK Supported Store Historical Data Number of Icon Types (Printers, Conference Rooms, etc.) Yes No Unlimited Up to 6 MobileView 5.0 first adds Find Near Me Use Case 20 Intel® vPro™ Technology with Wireless Docking 21 Why Wireless Docking? Freedom • No physical docking connections! • Easily auto-dock with wireless docking when the device is simply placed nearby • Position system anyway the user wants, with lid open or closed Form Factors • Docking connectors often don’t fit or significantly impact the design and thickness of ultra-thin devices • No need to compromise on productivity for device mobility 22 Aesthetics • No more forcing the PC into a stationary dock which is always there and useless without the PC • No tethering to a port replicator wire via a ‘fragile’ PC connector Wireless Docking – Intel’s First WiGig Usage Focus User is positioned up to 1 meter from the display(s) with productivity intentions • Expects experience similar to operating a desktop or workstation • High sensitivity to the finest details and responsiveness “I’m getting into my office, and by the time I reach my seat and place my 12” Ultrabook™ on the table I’m already connected to my 24” screen, full size keyboard and mouse, and the office GbE network, ready to work!” 23 “I can really get the full experience from my detachable – it’s fun to walk around with, and when I’m wirelessly docked in my den I’m getting the full productivity experience without the hassle of wires” Why WiGig? 24 Wi-Fi (802.11ac) Comparison 802.11ad standard Supported by Wi-Fi Alliance* Earlier standard Highly developed ecosystem 60GHz new unlicensed Radio Frequency band Worldwide availability with very high bandwidth 2.4/5GHz spectrum Limited bandwidth 80GHz x 5ch or 160GHz x 1ch Allows very high throughput, including in dense environments, up to 7Gbps (PHY rates) 1x1<433Mbps in clean environments, Multiple clients will reduce throughput Replaces display (HDMI*, DP) and IO (USB, SD, PCI Express*) cables Exceptional visual performance for text and complex graphics, up to 2 displays, no delays IP centric technology SoC/APP and TCP/IP stack is required on both ends Designed for power consumption efficiency Enabling longer battery life Wi-Fi demonstrating gen to gen improvements XenGT 25 Client Virtualization with XenGT Excellent Graphics Performance Provisioning & Management Rapid Recovery Security & Control Excellent Graphics Performance © 2012 Virtual Computer Inc Local PC User Experience 26 GPU Virtualization: XenGT vGPU DomainU Domain0 OS GPU Driver Xen 27 GPU Virtualization: XenGT vGPU Domain0 Domain1 Domain2 Domain3 GPU Driver GPU Driver GPU Driver GPU Driver XenGT Xen XenGT XenGT Only on 4th Generation Intel® Core™ vPro™ processors 28 XenGT XenGT Architecture 1. A mediated pass-through solution for graphics virtualization 2. Run native graphics driver in VM 3. Achieve a better user experience by exposing all of the GPU’s features with good performance Performance Device Emulation Mainframes… Split Driver Model Early Virtualization Mediated PassThrough Today Direct Pass-Through Tomorrow See session <SFTS008 in Theatre 4 at 15:45> or the demo booth #120 for more details and information about XenGT 29 Intel, Citrix* and Lenovo* Delivering World Class Desktop Virtualization 30 Lenovo* ThinkCentre And ThinkPad* Platform Leadership Citrix* XenClient Virtualization Leadership Intel® Core™ and Core vPro™ processor Silicon Leadership el Platforms & Technologies Pavilion For power users or OS migrations: Multiple VMs Dock • Citrix Receiver • RDP Client • Chrome Browser Come see the XenClient demo booth #193 in the Intel Platforms & Technologies Pavilion in the Technology Showcase 31 Intel® vPro™ Technology with MeshCentral 32 Meshcentral.com • Open source cloud management web site – Scales well, based on peer-to-peer technology – Nodes monitor each other, relay traffic – Make use of Intel® platform technologies: Intel® AMT, Intel® Remote Wake, etc. Meshcentral 33 Peer-to-peer network MeshCentral Cloud Usages • Remote desktop – In-band & Intel® AMT • Remote file access • Remote terminal access • Remote web access • Device state monitoring • Remote power control • General monitoring • Asset tracking • Location tracking 34 Mesh Agent Code Available Portable C code • Microsoft* Windows* (32bit & 64bit) • Apple* Mac* OSX (x86) • Linux* (x86, 64bit, MIPS, ARM) • Google* Android* (x86, ARM) • Xen (x86) • PogoPlug* (ARM) • Intel® Galileo (x86) • Raspberry Pi* (ARM) BSD Open Source at: opentools.homeip.net/mesh Actual devices managed today Support all devices. Better with Intel. 35 Meshcentral.com Mobile Support • Manage your devices using any mobile device • Phone / Tablet, Android* / IOS* 36 Summary Intel® Pro Wireless Display Offers a wireless audio/video connection to conference room displays and projectors. On Intel® vPro™ platforms Pro WiDi adds security and privacy for dense environments, and a more productive collaboration experience through Managed Meetings. Intel vPro technology with Location Based Services Intel vPro Technology with Location Based Services enables business workers to find useful resources (printers, conference rooms, private phone booths) and IT departments to track assets. This is a Wi-Fi based, indoor location tracking capability into business built into Intel inspired Ultrabooks, business-built Mobile PCs and business-ready tablets. Intel vPro technology with Wireless Docking Wireless Docking provides the user freedom to position their business ready Intel vPro technology based devices anywhere they wish. No need to push an Intel 5th Gen based PC into a dock or connect cables. XenGT XenGT available today as an open source solution and will be available this year as an integrated solution with Citrix* XenClient Enterprise. XenGT offers near native performance with mediated GPU pass-thru. Intel vPro technology with MeshCentral Take advantage today of this open source device management solution. Supports all major operating systems and devices: cell phones, tablets, notebooks, desktops and servers. With MeshCentral you can make use of Intel vPro built in platform technologies. 37 Call to Action • This is your time. Catch the vision and be part of the next generation of Intel® vPro™ technology. • Be creative and innovate a future with no wires, high-performing virtualization and secure manageability… all with Intel® vPro™ technology. • Take advantage of Intel’s open source contributions in virtualization and Cloud device manageability to create your own solutions. • Stand out from the crowd by becoming an early adopter of these new Intel vPro technologies. 38 Resources Intel® Pro Wireless Display Location Based Service Intel.com/prowidi Aeroscout.com/intelLBS Intel Pro WiDi certified receivers XenGT Software and Driver update tool Xen: https://github.com/01org/XenGT-Preview-xen.git Meshcentral Linux*: https://github.com/01org/XenGT-Previewkernel.git PowerPoint instructions: http://meshcentral.intel.com/info/extras/Meshcen tral-Quark-X1000.pptx Qemu: https://github.com/01org/XenGT-Previewqemu.git Video demonstration: http://meshcentral.intel.com/info/extras/Meshcen tral-Quark-X1000.mp4 Mesh Info: https://meshcentral.intel.com/info/ See Intel Pro Wireless Display and XenGT demonstrations in the Intel Platforms & Technologies Pavilion in the Technology Showcase PDF of this presentation is available from our Technical Session Catalog: www.intel.com/idfsessionsSZ. The URL is on top of Session Agenda Pages in Pocket Guide. 39 MC G ZTE* Microsoft*SK Hynix* Tencent* Lenovo* Huawei* 40 40 Legal Disclaimer INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION WITH INTEL PRODUCTS. NO LICENSE, EXPRESS OR IMPLIED, BY ESTOPPEL OR OTHERWISE, TO ANY INTELLECTUAL PROPERTY RIGHTS IS GRANTED BY THIS DOCUMENT. EXCEPT AS PROVIDED IN INTEL'S TERMS AND CONDITIONS OF SALE FOR SUCH PRODUCTS, INTEL ASSUMES NO LIABILITY WHATSOEVER AND INTEL DISCLAIMS ANY EXPRESS OR IMPLIED WARRANTY, RELATING TO SALE AND/OR USE OF INTEL PRODUCTS INCLUDING LIABILITY OR WARRANTIES RELATING TO FITNESS FOR A PARTICULAR PURPOSE, MERCHANTABILITY, OR INFRINGEMENT OF ANY PATENT, COPYRIGHT OR OTHER INTELLECTUAL PROPERTY RIGHT. A "Mission Critical Application" is any application in which failure of the Intel Product could result, directly or indirectly, in personal injury or death. SHOULD YOU PURCHASE OR USE INTEL'S PRODUCTS FOR ANY SUCH MISSION CRITICAL APPLICATION, YOU SHALL INDEMNIFY AND HOLD INTEL AND ITS SUBSIDIARIES, SUBCONTRACTORS AND AFFILIATES, AND THE DIRECTORS, OFFICERS, AND EMPLOYEES OF EACH, HARMLESS AGAINST ALL CLAIMS COSTS, DAMAGES, AND EXPENSES AND REASONABLE ATTORNEYS' FEES ARISING OUT OF, DIRECTLY OR INDIRECTLY, ANY CLAIM OF PRODUCT LIABILITY, PERSONAL INJURY, OR DEATH ARISING IN ANY WAY OUT OF SUCH MISSION CRITICAL APPLICATION, WHETHER OR NOT INTEL OR ITS SUBCONTRACTOR WAS NEGLIGENT IN THE DESIGN, MANUFACTURE, OR WARNING OF THE INTEL PRODUCT OR ANY OF ITS PARTS. Intel may make changes to specifications and product descriptions at any time, without notice. Designers must not rely on the absence or characteristics of any features or instructions marked "reserved" or "undefined". Intel reserves these for future definition and shall have no responsibility whatsoever for conflicts or incompatibilities arising from future changes to them. The information here is subject to change without notice. Do not finalize a design with this information. The products described in this document may contain design defects or errors known as errata which may cause the product to deviate from published specifications. Current characterized errata are available on request. Contact your local Intel sales office or your distributor to obtain the latest specifications and before placing your product order. Copies of documents which have an order number and are referenced in this document, or other Intel literature, may be obtained by calling 1-800-548-4725, or go to: http://www.intel.com/design/literature.htm Intel, vPro, Core, Ultrabook, Look Inside and the Intel logo are trademarks of Intel Corporation in the United States and other countries. Intel is under license. *Other names and brands may be claimed as the property of others. Copyright ©2014 Intel Corporation. 41 Legal Disclaimer • • • • • 42 Intel® Active Management Technology (Intel® AMT) requires activation and a system with a corporate network connection, an Intel® AMT-enabled chipset, network hardware and software. For notebooks, Intel AMT may be unavailable or limited over a host OS-based VPN, when connecting wirelessly, on battery power, sleeping, hibernating or powered off. Results dependent upon hardware, setup and configuration. For more information, visit Intel® Active Management Technology. Intel® vPro™ Technology is sophisticated and requires setup and activation. Availability of features and results will depend upon the setup and configuration of your hardware, software and IT environment. To learn more visit: http://www.intel.com/technology/vpro. Intel® Data Protection Technology (includes the following features: Secure Key and Advanced Encryption Standard New Intel® Pro WiDi Display: No computer system can provide absolute security under all conditions. Intel® Pro Wireless Display Network Security features require a system with an Intel® Core™ Processor with Intel® vPro™ Technology, 1080p and Blu-Ray* or other protected content playback only available on select Intel® processor-based systems with built-in visuals enabled, a compatible Intel® WiDi adapter and media player, and supporting Intel® WiDi software and graphics driver installed. Consult your PC manufacturer. For more information, see www.intel.com/go/widi Intel® WiDi Technology requires an Intel® Wireless Display enabled system, compatible adapter and TV. 1080p and Blu-Ray* or other protected content playback only available on select Intel® Core™ processor-based systems with built-in visuals enabled, a compatible adapter and media player, and supporting Intel WiDi software and graphics driver installed. Consult your PC manufacturer. For more information, see www.intel.com/go/widi. Intel® Pro WiDi Display: No computer system can provide absolute security under all conditions. Intel® Pro Wireless Display Network Security features require a system with an Intel® Core™ Processor with Intel® vPro™ Technology, 1080p and BluRay* or other protected content playback only available on select Intel® processor-based systems with built-in visuals enabled, a compatible Intel® WiDi adapter and media player, and supporting Intel® WiDi software and graphics driver installed. Consult your PC manufacturer. For more information, see www.intel.com/go/widi Risk Factors The above statements and any others in this document that refer to plans and expectations for the first quarter, the year and the future are forward-looking statements that involve a number of risks and uncertainties. Words such as “anticipates,” “expects,” “intends,” “plans,” “believes,” “seeks,” “estimates,” “may,” “will,” “should” and their variations identify forward-looking statements. Statements that refer to or are based on projections, uncertain events or assumptions also identify forward-looking statements. Many factors could affect Intel’s actual results, and variances from Intel’s current expectations regarding such factors could cause actual results to differ materially from those expressed in these forward-looking statements. Intel presently considers the following to be the important factors that could cause actual results to differ materially from the company’s expectations. Demand could be different from Intel's expectations due to factors including changes in business and economic conditions; customer acceptance of Intel’s and competitors’ products; supply constraints and other disruptions affecting customers; changes in customer order patterns including order cancellations; and changes in the level of inventory at customers. Uncertainty in global economic and financial conditions poses a risk that consumers and businesses may defer purchases in response to negative financial events, which could negatively affect product demand and other related matters. Intel operates in intensely competitive industries that are characterized by a high percentage of costs that are fixed or difficult to reduce in the short term and product demand that is highly variable and difficult to forecast. Revenue and the gross margin percentage are affected by the timing of Intel product introductions and the demand for and market acceptance of Intel's products; actions taken by Intel's competitors, including product offerings and introductions, marketing programs and pricing pressures and Intel’s response to such actions; and Intel’s ability to respond quickly to technological developments and to incorporate new features into its products. The gross margin percentage could vary significantly from expectations based on capacity utilization; variations in inventory valuation, including variations related to the timing of qualifying products for sale; changes in revenue levels; segment product mix; the timing and execution of the manufacturing ramp and associated costs; start-up costs; excess or obsolete inventory; changes in unit costs; defects or disruptions in the supply of materials or resources; product manufacturing quality/yields; and impairments of long-lived assets, including manufacturing, assembly/test and intangible assets. Intel's results could be affected by adverse economic, social, political and physical/infrastructure conditions in countries where Intel, its customers or its suppliers operate, including military conflict and other security risks, natural disasters, infrastructure disruptions, health concerns and fluctuations in currency exchange rates. Expenses, particularly certain marketing and compensation expenses, as well as restructuring and asset impairment charges, vary depending on the level of demand for Intel's products and the level of revenue and profits. Intel’s results could be affected by the timing of closing of acquisitions and divestitures. Intel's results could be affected by adverse effects associated with product defects and errata (deviations from published specifications), and by litigation or regulatory matters involving intellectual property, stockholder, consumer, antitrust, disclosure and other issues, such as the litigation and regulatory matters described in Intel's SEC reports. An unfavorable ruling could include monetary damages or an injunction prohibiting Intel from manufacturing or selling one or more products, precluding particular business practices, impacting Intel’s ability to design its products, or requiring other remedies such as compulsory licensing of intellectual property. A detailed discussion of these and other factors that could affect Intel’s results is included in Intel’s SEC filings, including the company’s most recent reports on Form 10-Q, Form 10-K and earnings release. Rev. 1/16/14 43
© Copyright 2024