PLUMgrid debuts CloudSecure to strengthen security for containers and OpenStack clouds



PLUMgrid announced Monday CloudSecure with the upcoming release of PLUMgrid Open Networking Suite (ONS) 6.0 and CloudApex 2.0 to deliver a comprehensive security solution.

Building on its micro-segmentation and security service insertion technologies, PLUMgrid re-enforced its security solution with new policy-based virtual tap, monitoring and visualization of security policies, and an ecosystem of security offerings including Intel’s Open Security Controller, Fortinet Fortigate NGFW, Check Point security solutions and Rackspace Private Cloud.

As applications are increasingly developed, tested and deployed on ephemeral infrastructure such as containers and virtual machines, the need for segmentation, multi-tenancy, security, and analytics has become crucial to ensure environments are constantly protected and compliant.

CloudSecure helps PLUMgrid customers micro-segment workloads, isolate tenant traffic to contain attacks, protect applications, deploy virtual tap at scale without hardware devices, and monitor virtual networks to minimize the attack surface for software-defined data centers running private, public or hybrid clouds.

Powered by IO Visor, CloudSecure includes features that make it easier to monitor virtual network security, including CloudApex Security View that visualizes security flows, and behaviors in an easy to view chord graph to diagnose security breaches; micro-segmentation that creates zero-trust domains by isolating tenant traffic and enforcing security policies for containers and virtual machines. In the event of a breach, each segmented domain contains attacks to minimize spread of malware.

The solution also delivers security policies that provide in-depth security definitions and group-based policies that can be enforced per tenant, virtual machine, or container; policy-based virtual tap that deploys virtual tap points with policies to select traffic to be mirrored for monitoring, troubleshooting, and remediation; security service insertion that enables any third party security software to be added to PLUMgrid’s virtual network to introduce or update the latest security quickly.; and critical encryption that supports encryption between segmented virtual domains to ensure privacy and protection of data.

“Data centers are increasingly built on ephemeral infrastructure that only lasts for hours or days, instead of months or years,” said Larry Lang, CEO, PLUMgrid. “CloudSecure provides significant protection for increasingly ephemeral, multi-directional traffic flows in container and OpenStack Clouds. Combining it with CloudApex’s simplified visualizations that make it easy to monitor and diagnose breaches, enabling our customers to benefit from the agility and flexibility of these technologies without having to struggle to secure the network infrastructure.”

“As network traffic patterns in data centers change, getting visibility, applying appropriate policies, having third party integration, and using good operational tools for security becomes ever more important.” said Dan Conde, analyst at Enterprise Strategy Group. “PLUMgrid’s investment in core technologies for network virtualization such as virtual domains and IO Visor is paying off as it delivers applications and solutions such as security, taps, service insertion and analytics atop their platform in efficient and integrated ways from themselves alongside their partners.”

Virtual networks connect hundreds or thousands of ephemeral containers per day on any given server to other containers, virtual machines (VMs), applications, workloads and microservices. Such networks may span intra- or inter-data center connections across hybrid or multi-clouds, generating significantly more north-south, east-west, and intra-host traffic that need to be secured with consistent policies.

Growing endpoints and traffic flows increase exposure to attacks that cannot be prevented with perimeter-based security or appliance-based firewalls. PLUMgrid designed CloudSecure precisely to protect this type of ephemeral infrastructure from malware, and its micro-segmented Virtual Domains contain and isolate any potential breaches from spreading to the larger environment.

In addition to PLUMgrid’s traditional enterprise and service provider clients, CloudSecure is ideal for financial institutions, retailers and government agencies that require the customization and security of purpose-built cloud environments to take advantage of the benefits of the latest cloud technologies.

Leave a Reply

WWPI – Covering the best in IT since 1980