Skyport Systems announced the general availability of SkySecure -- a cloud-managed, on-premises, secure server.
When VMware vCenter is hosted on a SkySecure Server, an application-specific firewall for VMware vCenter secures the computing foundation and all communications channels. Essentially,, the SkySecure Server creates a customized firewall protecting VMware vCenter. This application-specific firewall implementation hardens each protocol and communication channel for:
- Administrative access to vCenter Server
- DNS access to/from vCenter Server
- Microsoft Active Directory for user and admin identity management
- Partner API usage such as Software Defined Networking controllers or VM backup systems
- Network Attached Storage entitlements for image management
- ESX Server to vCenter administrative control channel
http://www.skyportsystems.com
See 1 minute video: https://youtu.be/tp_cye0AARc
Skyport Unveils its Hyper-Secured Servers
Skyport Systems, a start-up based in Mountain View, California unveiled its "hyper-secured" server architecture for delivering trusted computing and policy enforcement at the application edge.
The SkySecure System enforces policy on hosted workloads without software agents or network changes. The architecture tightly integrates the components of multiple security appliances that were not designed to work together, reduces the threat surface by removing physical attack vectors and implements Intel's Trusted Execution Technology. SkySecure is designed for deployment at the most critical points of infrastructure, including exposed DMZs, branch and remote environments, high-value business applications and foundational IT control systems such as Microsoft Active Directory, DNS servers and virtualization/cloud/big data/SDN controllers. No changes are required to networks, applications, or operating systems. The company says its server is designed to catch and contain malware and rootkits.
Hardware, firmware and software components are validated at the point of manufacture and continuously monitored once deployed. After properly attesting, the system boots a fully
whitelisted Security Enhanced Linux (SELinux) implementation. SkySecure Compartments enable a dynamic whitelist and application-layer protections around each workload deployed on a SkySecure Server, houses them in a synthetic operating environment and assumes a zero-trust posture regarding all network access.
The SkySecure System enforces policy on hosted workloads without software agents or network changes. The architecture tightly integrates the components of multiple security appliances that were not designed to work together, reduces the threat surface by removing physical attack vectors and implements Intel's Trusted Execution Technology. SkySecure is designed for deployment at the most critical points of infrastructure, including exposed DMZs, branch and remote environments, high-value business applications and foundational IT control systems such as Microsoft Active Directory, DNS servers and virtualization/cloud/big data/SDN controllers. No changes are required to networks, applications, or operating systems. The company says its server is designed to catch and contain malware and rootkits.
Hardware, firmware and software components are validated at the point of manufacture and continuously monitored once deployed. After properly attesting, the system boots a fully
whitelisted Security Enhanced Linux (SELinux) implementation. SkySecure Compartments enable a dynamic whitelist and application-layer protections around each workload deployed on a SkySecure Server, houses them in a synthetic operating environment and assumes a zero-trust posture regarding all network access.