Securing Applications In Virtualized And Cloud Environments With VMware AppDefense Solution Overview
User Manual: vmware-appdefense-solution-overview of /wp-content/uploads/2017/09
Open the PDF directly: View PDF 
.
Page Count: 3
| Download | |
| Open PDF In Browser | View PDF |
SOLUTION OVERVIEW Securing Applications in Virtualized and Cloud Environments with VMware AppDefense While worldwide spending on IT security continues to climb, the odds of an organization falling victim to a data breach have risen to 1 in 4.1 Despite thousands of security products on the market and massive budgets to purchase them, data isn’t any safer. This creates a significant challenge for Chief Information Security Officers (CISOs), who are faced with securing applications and data living in increasingly dynamic, distributed IT environments. As more organizations embrace modern, agile models of application development, the problem of implementing security at the speed of the business is exacerbated – security is often seen as an obstacle to progress. CISOs and their teams face two main challenges while trying to secure their data and applications: Undetected threats and false alarms Existing endpoint security solutions trigger numerous false alarms, resulting in Security Operations teams wasting time manually investigating non-existent threats. Worse yet, the can miss threats entirely. AT A GLANCE VMware AppDefense™ is a data center endpoint security product that protects applications running in virtualized environments. Unlike existing endpoint security solutions that chase threats, AppDefense focuses on monitoring applications against their intended state – what they’re supposed to do – and automatically responding when they deviate from that intended state, indicating a threat. This maximizes Security Operations efficiency and effectiveness and streamlines the application security readiness review process. KEY HIGHLIGHTS • Simplify data center endpoint security Fast-paced, dynamic environments Existing security solutions are not designed to accommodate the speed at which modern application development and deployment occurs, which means that as new applications are launched and updated, security cannot keep pace. Transforming Security through Virtualization VMware AppDefense is uniquely positioned to tackle both of these challenges. AppDefense is a data center endpoint security product that embeds threat detection and response into the virtualization layer on which applications and data live. Leveraging VMware vSphere®, AppDefense delivers three key advantages over existing endpoint security solutions: Authoritative knowledge of application intended state – when you know what’s good, you can detect what’s bad From inside the vSphere hypervisor, AppDefense has an authoritative understanding of how data center endpoints are meant to behave and is the first to know when changes are made. This contextual intelligence removes the guess work involved in determining which changes are legitimate and which are real threats. Automated, precise threat response – the right response at the right time • Improve threat detection in SOC When a threat is detected, AppDefense can trigger vSphere and VMware NSX® to orchestrate the correct response to the threat, without the need for manual intervention. For example, AppDefense can automatically: • Automate incident responses • Block process communication • Streamline application security reviews • Snapshot an endpoint for forensic analysis • Suspend an endpoint • Shut down an endpoint SOLUTION OVERVIE W | 1 SECURING APPLICATIONS IN VIRTUALIZED AND CLOUD ENVIRONMENTS WITH VMWARE APPDEFENSE Isolation from the attack surface – protect the protector The first thing that most malware variants do when they reach an endpoint is disable antivirus and other agent-based endpoint security solutions. The hypervisor provides a protected location from which AppDefense can operate, ensuring that even if an endpoint is compromised AppDefense itself is protected. AppDefense in Action AppDefense is a foundational security product that has a wide-reaching impact on an organization’s security strategy. Application-centric alerting for the Security Operations Center (SOC) AppDefense doesn’t produce a lot of alerts, but when it raises the alarm it’s smart to listen. The authoritative alerts generated by AppDefense coupled with automated response capabilities allow security administrators to focus on catching and eradicating threats from their environment, rather than sifting through noisy data and investigating threats that aren’t there. Transforming application security readiness reviews In the world of modern application development, applications are launched, changed, and decommissioned rapidly. By the time a security team learns of the existence of a new application, it has often already changed. AppDefense creates a common source of truth between application team and the security teams, streamlining the security review process. Application-Centric Security with VMware VMware has changed the face of network security with our network virtualization platform, VMware NSX, and its ability to enable micro-segmentation across the data center. NSX architects network and security services – such as firewalling – directly into the hypervisor, enabling a least privilege model for the network. The net outcome is that network security teams can prevent threats from moving laterally within their environments. SOLUTION OVERVIE W | 2 SECURING APPLICATIONS IN VIRTUALIZED AND CLOUD ENVIRONMENTS WITH VMWARE APPDEFENSE LEARN MORE For more information or to purchase VMware AppDefense, visit http://www.vmware.com/appdefense and test drive the product in our Hands-on Lab. Least Privilege Network Least Privilege Compute [Micro-Segmentation] [AppDefense] Align Security Controls [Insert/Orchestrate/Enrich our Partners] AppDefense layers in threat detection and response capabilities into another core area of the infrastructure, enabling a least privilege model for data center endpoints. Should a threat make it onto an endpoint, AppDefense will immediately detect the threat and automatically respond with precision. Together, NSX and AppDefense offer a robust solution for securing the application infrastructure and thus, the applications and data that live there. 1 Ponemon Institute, June 2017, “2017 Cost of a Data Breach Study: Global Overview” VMware, Inc. 3401 Hillview Avenue Palo Alto CA 94304 USA Tel 877-486-9273 Fax 650-427-5001 www.vmware.com Copyright © 2017 VMware, Inc. All rights reserved. This product is protected by U.S. and international copyright and intellectual property laws. VMware products are covered by one or more patents listed at http://www.vmware.com/go/patents. VMware is a registered trademark or trademark of VMware, Inc. and its subsidiaries in the United States and other jurisdictions. All other marks and names mentioned herein may be trademarks of their respective companies. Item No: vmw53313-sb-securing-app-cloud-env-app-defense-en-US-uslet-101 8/ 17
Source Exif Data:
File Type : PDF File Type Extension : pdf MIME Type : application/pdf PDF Version : 1.5 Linearized : No Language : en-US XMP Toolkit : Adobe XMP Core 5.6-c015 84.159810, 2016/09/10-02:41:30 Instance ID : uuid:dc381d79-9050-1f4f-9f95-e2da09bfdc92 Original Document ID : adobe:docid:indd:8c5a5d36-a055-11de-b124-cfa611640cbd Document ID : xmp.id:0391b836-e7ee-44e3-9079-904d9fdbc99c Rendition Class : proof:pdf Derived From Instance ID : xmp.iid:03e93fcb-a276-4383-b97a-59d3a52d0193 Derived From Document ID : xmp.did:e0da17ce-b655-4421-a40f-09fab6a777a2 Derived From Original Document ID: adobe:docid:indd:8c5a5d36-a055-11de-b124-cfa611640cbd Derived From Rendition Class : default History Action : converted History Parameters : from application/x-indesign to application/pdf History Software Agent : Adobe InDesign CC 2017 (Macintosh) History Changed : / History When : 2017:08:15 12:17:28-04:00 Create Date : 2017:08:15 12:17:28-04:00 Modify Date : 2017:08:15 12:23:31-04:00 Metadata Date : 2017:08:15 12:23:31-04:00 Creator Tool : Adobe InDesign CC 2017 (Macintosh) Format : application/pdf Title : Securing Applications in Virtualized and Cloud Environments with VMware AppDefense Creator : VMware AppDefense Solution Information Description : VMware Rights : Copyright © 2017 VMware, Inc. All rights reserved. Subject : VMware AppDefense, Cybersecurity, Endpoint Security Producer : Adobe PDF Library 15.0 Trapped : Unknown Marked : True Page Layout : OneColumn Page Mode : UseThumbs Page Count : 3 Author : VMware AppDefense Solution Information Keywords : VMware AppDefense, Cybersecurity, Endpoint Security Warning : [Minor] Ignored duplicate Info dictionaryEXIF Metadata provided by EXIF.tools