Risk
6/10/2009
12:13 PM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%

Layer 7 Brings Governance To The Cloud

Layer 7 SecureSpan Virtual Appliance lets organizations secure cloud-based interactions, monitor service-level conformance

VANCOUVER, British Columbia—June 9, 2009—Layer 7 Technologies, the leading vendor of governance and security solutions for application services, today announced the availability of the Layer 7 SecureSpan Virtual Appliance for cloud governance. The Virtual Appliance offers all the features of the SecureSpan family of hardware appliances, including sophisticated runtime governance, agent-less SOA management and industry-leading XML security in a VMware or ESX-based soft appliance. The Layer 7 Virtual Appliance for cloud governance allows organizations to secure cloud-based interactions, monitor service level conformance and adapt to changing conditions and needs.

Traditionally, Layer 7 customers have deployed the SecureSpan Virtual Appliance as a budget-friendly alternative to hardware appliances. The SecureSpan Virtual Appliance for cloud governance incorporates the new Layer 7 Enterprise Service Manager (ESM), which is a lightweight method of centrally managing, tracking and measuring application services no matter where those services reside: in enterprise SOAs, as part of a Software-as-a-Service offering or in cloud (both public and private) initiatives. With the Virtual Appliance for cloud governance, Layer 7 customers can seamlessly reuse their existing, on-premise SOA governance solution for their cloud-based initiatives.

"Cloud governance is uniquely demanding because of the complexity related to vendor contracts, expectations regarding service level agreements (SLAs) and the increasingly complex regulatory environment," said David Linthicum, cloud and SOA expert and founder of Blue Mountain Labs. "Traditional hardware appliances and monitoring tools were not intended for deployment in a cloud computing environment. They are unable to provide a centralized, accurate snapshot of the entire global network and they cannot give the ROI of a virtual appliance. Layer 7, on the other hand, offers an innovative and effective solution for private and public cloud deployments, while also providing centralized management, tracking and measurement of services. Layer 7 is the 'real deal' when it comes to runtime governance solutions for the extended enterprise, including SOA and cloud initiatives."

"Many organizations are reluctant to move forward with a cloud strategy because of justified concerns related to security and control. Layer 7 guides businesses and government agencies into the cloud in a controlled and secure manner," said Scott Morrison, chief architect for Layer 7 Technologies. "Layer 7's governance program provides the means to control, monitor and adapt application services, regardless of whether they reside on-premises or in the cloud. These capabilities clear the way for organizations to embrace cloud computing in a secure, managed and incremental fashion."

In addition to cloud governance, Layer 7 enables organizations to control, monitor and adapt application services in a variety of enterprise settings, including internal environments and between external domains (such as partners or branch offices). Only Layer 7's highly automated and interoperable gateway solutions, available as hardware, software and virtual (VMware) appliances, are capable of holistically governing today's complex and ever-changing ecosystem of application services, no matter where they reside.

Available resources:

  • InfoWorld Webinars "Three-part series on Cloud Governance and Security -- May 28, Cloud Control: Governance in the Cloud (recorded session) http://w.on24.com/r.htm?e=146747&s=1&k=AB2A7C2727D0056E74FB3B89F0BE0E34 -- June 11, Making the Business Case and ROI for Cloud http://www.accelacomm.com/jaw/Layer7email/11/50463323/ -- Sept 17, Cloud Security and Governance Best Practices http://www.accelacomm.com/jaw/Layer7email/11/50463464/

  • White paper " "Steer Safely into the Clouds: Why You Must Have Cloud Governance Before You Move Your Apps," available at http://www.layer7tech.com/main/images/Steer%20Safely%20into%20the%20Clouds%20v3.0.pdf

  • Data Sheet " "SecureSpan XML Virtual Appliance" http://www.layer7tech.com/main/solutions/cloud-computing.html

  • Podcast " Scott Morrison, Layer 7's chief architect and vice president of engineering, discusses the challenges and importance of cloud governance. www.layer7tech.com/resources/files/Layer%207_Cloud%20podcast.mp3. About Layer 7 Technologies

    Layer 7 Technologies is a leader in security and governance for application services, whose turnkey solutions feature sophisticated runtime governance, agent-less Web services management and industry-leading XML security. Founded in 2003, Layer 7's products include the SecureSpan family of XML appliances, which help organizations address security, visibility and governance issues. Layer 7 enables organizations to control, monitor and adapt their Web services, no matter where they originate " in the enterprise or in the cloud. Layer 7 has been positioned in the "Leader" quadrant in Gartner, Inc.'s Magic Quadrant for Integrated SOA Governance Technology Sets*. For more information, visit us at www.layer7tech.com.

    Comment  | 
    Print  | 
    More Insights
  • Register for Dark Reading Newsletters
    White Papers
    Flash Poll
    Current Issue
    Cartoon
    Video
    Slideshows
    Twitter Feed
    Dark Reading - Bug Report
    Bug Report
    Enterprise Vulnerabilities
    From DHS/US-CERT's National Vulnerability Database
    CVE-2014-4907
    Published: 2014-07-11
    Cross-site scripting (XSS) vulnerability in share/pnp/application/views/kohana_error_page.php in PNP4Nagios before 0.6.22 allows remote attackers to inject arbitrary web script or HTML via a parameter that is not properly handled in an error message.

    CVE-2014-4908
    Published: 2014-07-11
    Multiple cross-site scripting (XSS) vulnerabilities in PNP4Nagios through 0.6.22 allow remote attackers to inject arbitrary web script or HTML via the URI used for reaching (1) share/pnp/application/views/kohana_error_page.php or (2) share/pnp/application/views/template.php, leading to improper hand...

    CVE-2014-2963
    Published: 2014-07-10
    Multiple cross-site scripting (XSS) vulnerabilities in group/control_panel/manage in Liferay Portal 6.1.2 CE GA3, 6.1.X EE, and 6.2.X EE allow remote attackers to inject arbitrary web script or HTML via the (1) _2_firstName, (2) _2_lastName, or (3) _2_middleName parameter.

    CVE-2014-3310
    Published: 2014-07-10
    The File Transfer feature in WebEx Meetings Client in Cisco WebEx Meetings Server and WebEx Meeting Center does not verify that a requested file was an offered file, which allows remote attackers to read arbitrary files via a modified request, aka Bug IDs CSCup62442 and CSCup58463.

    CVE-2014-3311
    Published: 2014-07-10
    Heap-based buffer overflow in the file-sharing feature in WebEx Meetings Client in Cisco WebEx Meetings Server and WebEx Meeting Center allows remote attackers to execute arbitrary code via crafted data, aka Bug IDs CSCup62463 and CSCup58467.

    Best of the Web
    Dark Reading Radio
    Archived Dark Reading Radio
    Marilyn Cohodas and her guests look at the evolving nature of the relationship between CIO and CSO.