CloudPassage launches new security product for public clouds
The company's Halo NetSec product tackles the tough problem of securing servers in the cloud
IDG News Service - CloudPassage is launching a new security product for virtual servers in public clouds such as Amazon Web Services that it says takes care of the all-important need for security when using services from infrastructure providers.
The product, called Halo NetSec, offers a firewall, two-factor authentication in order to access virtual servers, as well as intrusion-detection capabilities. It allows administrators to set up a so-called "perimeter" defense without needing access to the actual network, which they don't have when using cloud-based services, said Rand Wacker, vice president of product at CloudPassage.
"What we've done is create a cloud-ready platform that handles automatically all management and policy controls with a combination of a lightweight host-based agent and software-as-a-service grid," Wacker said.
Halo NetSec runs a small, 3MB daemon on a virtual server, which is responsible for executing commands and communicating with CloudPassage's computing grid. The small footprint means customers do not end up paying more to their provider for computing services, Wacker said.
CloudPassage has developed technology to be able to deploy the firewall as administrators fire up new virtual servers such as databases or Web applications, the firewall and its rules are applied.
"We never considered in the old days of firewall management the idea of a server dynamically appearing, disappearing and changing IPs," Wacker said.
Halo NetSec also has two-factor authentication for administrators when accessing their servers. An administrator goes to CloudPassage's Web portal and uses a USB key to generate a one-time passcode, and then access is granted to their servers, Wacker said.
The product also does not need access to the hypervisor since it runs within the operating system of the virtual server, Wacker said. Other types of security software need access to the hypervisor, but infrastructure providers such as Amazon Web Services and Rackspace do not allow it.
"Amazon has no issue with where our software is installed," Wacker said.
Halo NetSec is a lighter version of its Halo Professional package. For example, administrators can do a daily intrusion-detection scan and store the log for one day. With a Professional subscription, administrators can run a scan once an hour and store the results for two years, Wacker said. CloudPassage also has a free basic version of Halo.
The goal with Halo NetSec was to create a "mid-range" package that was "very easy to get a basic set of security capabilities," Wacker said.
Halo NetSec costs 3.5 cents per server per hour, although volume discounts apply and other discounts are available with a monthly minimum usage commitment.
Send news tips and comments to firstname.lastname@example.org
- REST easy: API Design, Evolution and Connection RESTful design increases API performance, reduces development effort, and minimizes operational support burden. By following a few best practices and selecting RESTful tooling,...
- DevOps meets ALM in the Cloud - Cloud DevOps PaaS To improve software delivery performance and effectiveness, teams need automation, governance, architecture best practices, and increased team collaboration. Find out more.
- The Path to Responsive IT A responsive IT team enables on-demand self-service, ticketless IT, a low cost structure & wider participation. When extending the IT team to analysts,...
- WSO2 Reduces Infrastructure Cost and Improves Agility By adopting WSO2's cloud-native multi-tenant deployment topology and offering middleware as a service, your team can reduce costs and deliver a complete solution...
- ElectricAccelerator: Dramatically Faster Builds and Test ElectricAccelerator dramatically speeds up builds and test by parallelizing jobs across clusters of physical or cloud CPUs.
- Electric Cloud: Your AnthillPro Alternative Many organizations have become leery about AnthillPro since its acquisition by IBM. In this webinar, learn why ElectricCommander is an excellent alternative to... All Cloud Computing White Papers | Webcasts
Our new weekly Consumerization of IT newsletter covers a wide range of trends including BYOD, smartphones, tablets, MDM, cloud, social and what it all means for IT. Subscribe now and stay up to date!