Endpoint

4/10/2015
12:00 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Pertino Brings Zero-Trust Networking to the Wide Area Network

Pertino Combines Secure Overlays, Network Virtualization And Multi-Layer Authentication To Address The Network Security Challenges Of Distributed Workforces And Workloads

LOS GATOS, Calif. – April 9, 2015 – Pertino, a company reinventing networking for the mobile and cloud era, today announced an extension of its Cloud Network Engine security foundation that brings zero-trust networking to the WAN and addresses the network security challenges of distributed workforces and workloads within the enterprise. Pertino combines secure overlays, virtualization and new Multi-Layer Authentication (MLA) capabilities to enable enterprises to extend zero-trust networking over the Internet to remote and mobile devices, virtual machines (VMs), Docker containers, and even IP-connected devices like kiosks and industrial controls.

According to Cisco’s 2014 Global Cloud Index, enterprise cloud IP traffic will more than triple from 2013 to 2018 to reach 2.2 zettabytes annually. This represents a seismic shift of enterprise traffic from private networks to the public Internet and makes network security a paramount concern of CIOs embracing SaaS and public and hybrid cloud computing.

“As enterprise workforces and workloads become more distributed and diverse, we are forced to rethink our current network security paradigm,” said Bharath Rangarajan, vice president of product at Pertino. “Traditional network security has been predicated on IT controlling both sides of WAN and everything that connects to them. Pertino’s approach makes no such assumptions and instead integrates security functionality as part of an overlay virtual network.”

Shifting Trends Require Shift in Approach

Despite enterprises spending a record of more than $71 billion worldwide on information security (Gartner) in 2014, security incidents are growing at a 66 percent CAGR according to the 2015 PWC Global Information Security Survey. Common trends in recent high-profile breaches include inadequate authentication, limited segmentation and security policy within the enterprise network—allowing attackers to roam freely once inside—and lack of on-the-wire security. This widening gap between security spending and efficacy signals that traditional security models are falling short of protecting increasingly distributed IT infrastructures.

Pertino developed the security foundation of its Cloud Network Engine platform specifically to deal with the implications of the growing diversity, distribution and transiency of enterprise network endpoints—both physical and virtual. The main pillars are:

●   Abstraction through secure overlays: By abstracting and encrypting traffic from the underlying Internet and public networks, virtual networks become impervious to port scans, packet sniffing and DDoS attacks.

●   Isolation through network virtualization: By combining SDN and network virtualization, Pertino enables enterprises to extend zero-trust networks across the WAN to micro-segment and isolate specific users, devices and workloads into virtual networks of any size. If a device or VM becomes infected or breached, the threat is instantly contained.

●   Trust through multi-layer authentication: Hybrid cloud, automation, BYOD and an increasingly mobile workforce are challenging traditional authentication models. Pertino MLA addresses these challenges by enabling enterprises to deploy or extend a combination of authentication modalities:

o    Overlay Domains: Extend Active Directory domains to devices anywhere to ensure remote users are always authenticating to AD and that group policies and security updates are always up-to-date.

o    Machine API Keys: Auto-generated machine-level API keys that can be included within cloud automation scripts to instantly authenticated VMs and Docker containers to the network at scale.

o    Auto-PKI: PKI-as-a-Service that uses the SDN control plane to automate generation, distribution and administration of secure, elliptic curve keys, providing certificate authentication on every device without configuration or management headaches.

“As enterprise IT extends to include SaaS, public cloud, and even IoT devices, the traditional, network perimeter model of network security no longer makes sense,” said Peter Christy, director of network research at 451 Research. “Network virtualization and the logical segmentation and more flexible and robust authentication it can provide will play critical roles in securing today’s hybrid workloads, distributed workforces and connected devices.”

About Pertino

Pertino is a new way to WAN for the mobile and cloud era—secure, software-defined and delivered as a service. Mobile and cloud technologies are transforming IT, resulting in a hybrid IT model where distributed workforces and workloads are reliant on the Internet. Our Cloud Network Engine platform enables enterprises to build and manage private cloud networks that overlay the public Internet, securely connecting people, devices and resources anywhere. With AppScape, our network services app store, Pertino cloud networks can be extended with enterprise-level visibility, security and control services. This modern approach to networking combines the power and pervasiveness of the cloud with SDN and virtualization technologies to eliminate cost and complexity. Finally, a WAN that is cloud-agile and works the way organizations work today, without hardware, hassles, or high costs. Founded in 2011, Pertino is venture funded by premier firms and headquartered in Los Gatos, Calif. For more information or to try Pertino free for 30-days, please visit pertino.com.

 

Media Contact:

Megan Grasty

(415) 963-4174 x26

[email protected]

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
WebAuthn, FIDO2 Infuse Browsers, Platforms with Strong Authentication
John Fontana, Standards & Identity Analyst, Yubico,  9/19/2018
NSS Labs Files Antitrust Suit Against Symantec, CrowdStrike, ESET, AMTSO
Kelly Jackson Higgins, Executive Editor at Dark Reading,  9/19/2018
Turn the NIST Cybersecurity Framework into Reality: 5 Steps
Mukul Kumar & Anupam Sahai, CISO & VP of Cyber Practice and VP Product Management, Cavirin Systems,  9/20/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: Are you sure this is how we get our data into the cloud?
Current Issue
Flash Poll
The Risk Management Struggle
The Risk Management Struggle
The majority of organizations are struggling to implement a risk-based approach to security even though risk reduction has become the primary metric for measuring the effectiveness of enterprise security strategies. Read the report and get more details today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2015-8298
PUBLISHED: 2018-09-24
Multiple SQL injection vulnerabilities in the login page in RXTEC RXAdmin UPDATE 06 / 2012 allow remote attackers to execute arbitrary SQL commands via the (1) loginpassword, (2) loginusername, (3) zusatzlicher, or (4) groupid parameter to index.htm, or the (5) rxtec cookie to index.htm.
CVE-2018-14825
PUBLISHED: 2018-09-24
On Honeywell Mobile Computers (CT60 running Android OS 7.1, CN80 running Android OS 7.1, CT40 running Android OS 7.1, CK75 running Android OS 6.0, CN75 running Android OS 6.0, CN75e running Android OS 6.0, CT50 running Android OS 6.0, D75e running Android OS 6.0, CT50 running Android OS 4.4, D75e ru...
CVE-2018-17437
PUBLISHED: 2018-09-24
Memory leak in the H5O_dtype_decode_helper() function in H5Odtype.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service (memory consumption) via a crafted HDF5 file.
CVE-2018-17438
PUBLISHED: 2018-09-24
A SIGFPE signal is raised in the function H5D__select_io() of H5Dselect.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack.
CVE-2018-17439
PUBLISHED: 2018-09-24
An issue was discovered in the HDF HDF5 1.10.3 library. There is a stack-based buffer overflow in the function H5S_extent_get_dims() in H5S.c. Specifically, this issue occurs while converting an HDF5 file to a GIF file.