Sponsored By

Verizon Hides User Apps With New SDP Service

Verizon offers a new SDP service to enhance customer application security.

You can't hack what you can't find. That's the premise behind Verizon Enterprise Solutions' new Software-Defined Perimeter (SDP) service that uses a cloud architecture to create a virtual perimeter around the sort of enterprise network that knows no physical boundaries.

Verizon says that SDP service provides pre-authenticated, context-aware, secure access to enterprise applications. This means that the cloud-based service is the "public" face of every enterprise application; users must sign in and be authenticated by the SDP, which only then forwards the user transaction to the relevant application.

The concept of the SDP isn't new. It was initially developed from work on an approach known as a "Black Cloud" at the Defense Information Systems Agency in the mid- to late-2000s. Because all user authentication must go through the SDP, all DNS and IP address information for the application can be hidden from public view. This approach is an operational definition of "security through obscurity," a tactic that has its detractors but is widely used in military and enterprise applications.

Verizon SDP service is part of the broader portfolio of virtualized security services available from Verizon. The service includes, in addition to application authentication and obfuscation functions, a perimeter firewall, VPN termination and public key infrastructure (PKI) for the customer. (See Unknown Document 733062.)

Verizon SDP has begun its rollout, and is currently available in the US, Canada, EU countries and Norway.

— Curtis Franklin, Security Editor, Light Reading. Follow him on Twitter @kg4gwa.

Read more about:

Security Now

About the Author(s)

Curtis Franklin, Principal Analyst, Omdia

Senior Analyst, Omdia

Curtis Franklin Jr. is Senior Analyst at Omdia, focusing on enterprise security management. Previously, he was senior editor of Dark Reading, editor of Light Reading's Security Now, and executive editor, technology, at InformationWeek, where he was also executive producer of InformationWeek's online radio and podcast episodes

Curtis has been writing about technologies and products in computing and networking since the early 1980s. He has been on staff and contributed to technology-industry publications including BYTE, ComputerWorld, CEO, Enterprise Efficiency, ChannelWeb, Network Computing, InfoWorld, PCWorld, Dark Reading, and ITWorld.com on subjects ranging from mobile enterprise computing to enterprise security and wireless networking.

Curtis is the author of thousands of articles, the co-author of five books, and has been a frequent speaker at computer and networking industry conferences across North America and Europe. His most recent books, Cloud Computing: Technologies and Strategies of the Ubiquitous Data Center, and Securing the Cloud: Security Strategies for the Ubiquitous Data Center, with co-author Brian Chee, are published by Taylor and Francis.

When he's not writing, Curtis is a painter, photographer, cook, and multi-instrumentalist musician. He is active in running, amateur radio (KG4GWA), the MakerFX maker space in Orlando, FL, and is a certified Florida Master Naturalist.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like


More Insights