CloudPassage Unveils Halo SVM and Halo Firewall for Elastic Cloud Environments

CloudPassage Inc. introduced the Halo Server Vulnerability Management (SVM) and Halo Firewall products, which are purpose-built for elastic cloud environments.  These products deliver fast, easy and accurate server exposure assessment, configuration compliance monitoring and network access control – automating the three most-fundamental practices for securing servers in public and hybrid clouds.

According to Neil MacDonald, vice president of CloudPassage and Gartner Fellow, the number-one concern preventing enterprises from adopting public cloud computing is security. "As organizations shift workloads to cloud-based providers, it is imperative that security isn't weakened," he said. "Like on-premises workloads, organizations need to minimize attack surfaces, patch vulnerable software and ensure security configurations are maintained as workloads move to the cloud. However, unlike on-premises workloads, security policy enforcement in the cloud must be enforceable regardless of location and scalable elastically to potentially thousands of hosts."

Halo SVM addresses server vulnerability management needs with the scalability, speed and elasticity needed for cloud server environments. Built on the innovative Halo architecture, the Halo SVM product delivers accurate server exposure assessment with little affect on customers' server resources. Halo SVM functions quickly and efficiently – thousands of server configuration points are assessed in seconds – enabling customers to maintain continuous exposure and compliance intelligence, even in rapidly growing cloud server farms.

"Security and privacy will continue to be a critical priority for us as we dramatically increase the number of users and venues that Foursquare serves," said Foursquare senior operations engineer David Birdsong.  "We need server security that includes nonstop vulnerability management and firewalling – and we need it to automatically keep up with our cloud environment.  We have been impressed with the accuracy and performance of CloudPassage, and it has taken very little time to deploy and manage."

The Halo Firewall product controls server attack surfaces by centralizing and automating host-based firewall management, the preferred alternative to traditional enterprise perimeter firewalls. The product provides customers with unified cloudwide firewall policy management from a graphical Web front-end, eliminating the untenable operational overhead and likely errors associated with manual host-based firewall management. The Halo Firewall product automatically updates individual host-based firewall configurations whenever cloud servers are added or removed – including server cloning or cloudbursting operations – with zero intervention by system administrators.  The product also transparently addresses the issues of dynamic public-cloud IP addressing, cited by IaaS providers as a complication in cloud server firewall management.(2) Halo Firewall enables customers to ensure strong, flexible network access control with the ease of management that parallels traditional enterprise firewalls.

Server security fundamentals are critical in cloud environments, especially public cloud servers that must operate without the benefits of traditional enterprise perimeter protection. Recent studies by Verizon Business and the U.S. Secret Service indicate that 95 percent of compromises leading to information and identity theft could have been prevented by basic security configuration, software patching and network access control, basic steps recommended by IaaS providers.

The Halo architecture provides high levels of server security automation for multiple security functions while transparently handling the problems associated with securing highly fluid, agile and scalable cloud server hosting environments. Secure, ultra light-weight Halo Daemons are backed by the elastic compute power of the Halo Grid, eliminating resource utilization on protected servers and delivering scalability and elasticity that can keep up with cloud-hosted server farms.

Featured

  • Gaining a Competitive Edge

    Ask most companies about their future technology plans and the answers will most likely include AI. Then ask how they plan to deploy it, and that is where the responses may start to vary. Every company has unique surveillance requirements that are based on market focus, scale, scope, risk tolerance, geographic area and, of course, budget. Those factors all play a role in deciding how to configure a surveillance system, and how to effectively implement technologies like AI. Read Now

  • 6 Ways Security Awareness Training Empowers Human Risk Management

    Organizations are realizing that their greatest vulnerability often comes from within – their own people. Human error remains a significant factor in cybersecurity breaches, making it imperative for organizations to address human risk effectively. As a result, security awareness training (SAT) has emerged as a cornerstone in this endeavor because it offers a multifaceted approach to managing human risk. Read Now

  • The Stage is Set

    The security industry spans the entire globe, with manufacturers, developers and suppliers on every continent (well, almost—sorry, Antarctica). That means when regulations pop up in one area, they often have a ripple effect that impacts the entire supply chain. Recent data privacy regulations like GDPR in Europe and CPRA in California made waves when they first went into effect, forcing businesses to change the way they approach data collection and storage to continue operating in those markets. Even highly specific regulations like the U.S.’s National Defense Authorization Act (NDAA) can have international reverberations – and this growing volume of legislation has continued to affect global supply chains in a variety of different ways. Read Now

  • Access Control Technology

    As we move swiftly toward the end of 2024, the security industry is looking at the trends in play, what might be on the horizon, and how they will impact business opportunities and projections. Read Now

Featured Cybersecurity

Webinars

New Products

  • A8V MIND

    A8V MIND

    Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area. 3

  • Unified VMS

    AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities 3

  • Camden CV-7600 High Security Card Readers

    Camden CV-7600 High Security Card Readers

    Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure. 3