CloudPassage Unveils Halo SVM and Halo Firewall for Elastic Cloud Environments

CloudPassage Inc. introduced the Halo Server Vulnerability Management (SVM) and Halo Firewall products, which are purpose-built for elastic cloud environments.  These products deliver fast, easy and accurate server exposure assessment, configuration compliance monitoring and network access control – automating the three most-fundamental practices for securing servers in public and hybrid clouds.

According to Neil MacDonald, vice president of CloudPassage and Gartner Fellow, the number-one concern preventing enterprises from adopting public cloud computing is security. "As organizations shift workloads to cloud-based providers, it is imperative that security isn't weakened," he said. "Like on-premises workloads, organizations need to minimize attack surfaces, patch vulnerable software and ensure security configurations are maintained as workloads move to the cloud. However, unlike on-premises workloads, security policy enforcement in the cloud must be enforceable regardless of location and scalable elastically to potentially thousands of hosts."

Halo SVM addresses server vulnerability management needs with the scalability, speed and elasticity needed for cloud server environments. Built on the innovative Halo architecture, the Halo SVM product delivers accurate server exposure assessment with little affect on customers' server resources. Halo SVM functions quickly and efficiently – thousands of server configuration points are assessed in seconds – enabling customers to maintain continuous exposure and compliance intelligence, even in rapidly growing cloud server farms.

"Security and privacy will continue to be a critical priority for us as we dramatically increase the number of users and venues that Foursquare serves," said Foursquare senior operations engineer David Birdsong.  "We need server security that includes nonstop vulnerability management and firewalling – and we need it to automatically keep up with our cloud environment.  We have been impressed with the accuracy and performance of CloudPassage, and it has taken very little time to deploy and manage."

The Halo Firewall product controls server attack surfaces by centralizing and automating host-based firewall management, the preferred alternative to traditional enterprise perimeter firewalls. The product provides customers with unified cloudwide firewall policy management from a graphical Web front-end, eliminating the untenable operational overhead and likely errors associated with manual host-based firewall management. The Halo Firewall product automatically updates individual host-based firewall configurations whenever cloud servers are added or removed – including server cloning or cloudbursting operations – with zero intervention by system administrators.  The product also transparently addresses the issues of dynamic public-cloud IP addressing, cited by IaaS providers as a complication in cloud server firewall management.(2) Halo Firewall enables customers to ensure strong, flexible network access control with the ease of management that parallels traditional enterprise firewalls.

Server security fundamentals are critical in cloud environments, especially public cloud servers that must operate without the benefits of traditional enterprise perimeter protection. Recent studies by Verizon Business and the U.S. Secret Service indicate that 95 percent of compromises leading to information and identity theft could have been prevented by basic security configuration, software patching and network access control, basic steps recommended by IaaS providers.

The Halo architecture provides high levels of server security automation for multiple security functions while transparently handling the problems associated with securing highly fluid, agile and scalable cloud server hosting environments. Secure, ultra light-weight Halo Daemons are backed by the elastic compute power of the Halo Grid, eliminating resource utilization on protected servers and delivering scalability and elasticity that can keep up with cloud-hosted server farms.

Featured

  • Survey: Less Than Half of IT Leaders are Confident in their IoT Security Plans

    Viakoo recently released findings from its 2024 IoT Security Crisis: By the Numbers. The survey uncovers insights from IT and security executives, exposes a dramatic surge in enterprise IoT security risks, and highlights a critical missing piece in the IoT security technology stack. The clarion call is clear: IT leaders urgently need to secure their IoT infrastructure one application at a time in an automated and expeditious fashion. Read Now

  • ASIS International and SIA Release “Complexities in the Global Security Market: 2024 Through 2026”

    ASIS International and the Security Industry Association (SIA) – the leading security associations for the security industry – have released ”Complexities in the Global Security Market: 2024 Through 2026”, a new research report that provides insights into the equipment, technologies, and employment of the global security industry, including regional market breakouts. SIA and ASIS partnered with global analytics and advisory firm Omdia to complete the research. Read Now

  • President Biden Issues Executive Order to Bolster U.S Port Cybersecurity

    On Wednesday, President Biden issued an Executive Order to bolster the security of the nation’s ports, alongside a series of additional actions that will strengthen maritime cybersecurity and more Read Now

  • Report: 15 Percent of All Emails Sent in 2023 Were Malicious

    VIPRE Security Group recently released its report titled “Email Security in 2024: An Expert Look at Email-Based Threats”. The 2024 predictions for email security in this report are based on an analysis of over 7 billion emails processed by VIPRE worldwide during 2023. This equates to almost one email for everyone on the planet. Of those, roughly 1 billion (or 15%) were malicious. Read Now

Featured Cybersecurity

Whitepapers

New Products

  • QCS7230 System-on-Chip (SoC)

    QCS7230 System-on-Chip (SoC)

    The latest Qualcomm® Vision Intelligence Platform offers next-generation smart camera IoT solutions to improve safety and security across enterprises, cities and spaces. The Vision Intelligence Platform was expanded in March 2022 with the introduction of the QCS7230 System-on-Chip (SoC), which delivers superior artificial intelligence (AI) inferencing at the edge. 3

  • Unified VMS

    AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities 3

  • A8V MIND

    A8V MIND

    Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area. 3