Online security

VMware adds more security for various cloud workloads

VMware has added more security features to its upcoming on-demand multi-cloud networking and security service called Northstar, which it previewed at its August VMware Explore 2022 conference.

VMware then said that Northstar will provide a central console to enable networking and security services on private clouds and VMware Cloud deployments that run on public clouds. It will include VMware services such as Network Detection and Response, NSX Intelligence, Advanced Load Balancing, and Web Application Firewall. Within Northstar, network detection and response support will provide scalable threat detection and response for workloads deployed in private and/or public clouds.

The company announced this week that it is adding support for its Hybrid Cloud Extension (HCX) software. The extension, known as HCX+, will allow customers to move workloads between multiple on-premises environments as well as VMware Cloud on AWS, Google Cloud, Microsoft Azure and others.

“The role of HDX+ is to facilitate the migration of workloads, and within Northstar this will allow customers, for example, to move workloads from thousands of virtual machines in their private cloud to a public cloud,” said Tom Gillis, senior vice president and general manager of VMware. . “And since we can look at the application layer of all of these workloads, we can apply unique security analytics that can identify East-West or warranty or movement of an attack. is the name of the game.”

“Because we’re constantly changing and updating algorithms, security and policy are always up to date, and since we’ll see everyone’s traffic, we can correlate holistically across the entire spectrum of workloads. , regardless of where they are running,” said Gilles.

Northstar is expected to launch next spring.

CarbonBlack XDR

This week, VMware also announced VMware Carbon Black XDR to strengthen threat detection and attack prevention on endpoints and networks. Carbon Black is VMware’s endpoint, container, and application workload security platform that tightly integrates with the VMware family of products.

Expanded Detection and Response (XDR) centrally collects and analyzes security information from a variety of sources to respond to threats faster and establish baseline security policies across the enterprise.

Carbon Black XDR will do this using VMware’s Contexa threat intelligence database, which the vendor claims records and processes over 1.5 trillion endpoint events and over 10 billion network flows per day.

Contexa and Carbon Black’s application knowledge combined with NSX’s network intelligence can help security teams identify threats and inform policy decisions to block them, Gillis said. The goal is to improve the lateral security of traditional and modern applications by enabling inspection of every endpoint, packet and process in their environment, Gillis said.

VMware Carbon Black XDR is available in Early Access for select customers.

Copyright © 2022 IDG Communications, Inc.