Analytics
2/1/2012
05:01 PM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%

CloudPassage Launches Network Security In The Cloud Inbox

Halo NetSec aimed at companies running servers in public clouds like EC2 and Rackspace

SAN FRANCISCO – Feb. 1, 2012 – CloudPassage, the leading cloud server security company, today unveils HaloNetSec, an automated solution that provides advanced network access control for servers running in public clouds including Rackspace and Amazon EC2. Halo NetSec is specifically designed for multi-cloud environments, installs in less than five minutes and provides administrators with easy-to-manage perimeter controls. “Cloud computing has ushered in a new set of security risks and challenges that are not addressed at the IaaS level, and traditional firewall defenses do not adequately translate into the cloud,” said Andrew Hay, senior security analyst for 451 Research. “A host-based server security solution designed specifically for cloud environments picks up where the IaaS leaves off, providing organizations with the scalable security they need to consider when migrating traditional on-premise systems to the cloud.” Companies running servers in the public cloud demand a simple network security solution to close the gap between security/compliance requirements and the limited network security features included by cloud providers. A recent CloudPassage survey of IT managers revealed the lack of perimeter defenses in the public cloud is a critical issue, with 45 percent indicating it’s their top cloud security concern. Halo NetSec was purpose-built to address these concerns with centralized host–based firewall management, dynamic two-factor authentication, and a powerful REST API for sophisticated automation. “Given the fluctuating nature of on-demand computing, we’re finding cloud adopters are challenged to find effective ways to secure their servers,” said Rand Wacker, vice president of product management for CloudPassage. “With Halo NetSec, you don’t have to be a security expert to achieve strong network protection for your cloud infrastructure. We’ve packaged the most important network security features into an easy-to-manage and instantly usable SaaS solution, making strong perimeter security dynamic cloud servers a snap.” Halo NetSec is a premium Halo package that offers cloud-ready firewall protection for an unlimited number of servers and includes GhostPorts, a feature that secures remote network access through multi-factor authentication. Users also benefit from access to a powerful REST API for simple integration with other systems and professional support. The Halo NetSec package is part of CloudPassage Halo, the award-winning cloud security platform purpose-built to bridge the gap between traditional data center security and protection of dynamic cloud environments. It addresses cloud security needs through firewall automation, vulnerability management, security, server account management and intrusion detection. Delivered as Software-as-a-Service (SaaS), Halo requires no hardware, complex deployment or special expertise.

Pricing and Availability Halo NetSec is now available on a utility basis at the rate of 3.5 cents per server-hour. Volume discounts are automatically applied as usage increases, and additional discounts are available with monthly minimum usage commitments. To sign up for Halo NetSec, visit http://www.cloudpassage.com/netsec/

About CloudPassage CloudPassage is the leading cloud server security provider, and creator of Halo™, the industry's first and only security and compliance platform, purpose-built for elastic cloud environments. Halo supports cloud server bursting, cloning, and migration and operates across public, private, and hybrid cloud environments. Industry-leading companies like Foursquare, StrongMail and ExoIS trust Halo to seamlessly manage their server security configuration, host-based firewalls, intrusion detection, and server account auditing from one system. Headquartered in San Francisco, Calif., CloudPassage is backed by Benchmark Capital. Among many other awards, Gartner, Inc. named CloudPassage one of four "Cool Vendors in Cloud Security Services, 2011." For more information, please visit: http://www.CloudPassage.com.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-2963
Published: 2014-07-10
Multiple cross-site scripting (XSS) vulnerabilities in group/control_panel/manage in Liferay Portal 6.1.2 CE GA3, 6.1.X EE, and 6.2.X EE allow remote attackers to inject arbitrary web script or HTML via the (1) _2_firstName, (2) _2_lastName, or (3) _2_middleName parameter.

CVE-2014-3310
Published: 2014-07-10
The File Transfer feature in WebEx Meetings Client in Cisco WebEx Meetings Server and WebEx Meeting Center does not verify that a requested file was an offered file, which allows remote attackers to read arbitrary files via a modified request, aka Bug IDs CSCup62442 and CSCup58463.

CVE-2014-3311
Published: 2014-07-10
Heap-based buffer overflow in the file-sharing feature in WebEx Meetings Client in Cisco WebEx Meetings Server and WebEx Meeting Center allows remote attackers to execute arbitrary code via crafted data, aka Bug IDs CSCup62463 and CSCup58467.

CVE-2014-3315
Published: 2014-07-10
Cross-site scripting (XSS) vulnerability in viewfilecontents.do in the Dialed Number Analyzer (DNA) component in Cisco Unified Communications Manager allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCup76308.

CVE-2014-3316
Published: 2014-07-10
The Multiple Analyzer in the Dialed Number Analyzer (DNA) component in Cisco Unified Communications Manager allows remote authenticated users to bypass intended upload restrictions via a crafted parameter, aka Bug ID CSCup76297.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Marilyn Cohodas and her guests look at the evolving nature of the relationship between CIO and CSO.