Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

ABTV //

Malware

5/5/2017
08:00 AM
Curtis Franklin
Curtis Franklin
Curt Franklin
50%
50%

Verizon Hides User Apps With New SDP Service

Verizon offers a new SDP service to enhance customer application security.

You can't hack what you can't find. That's the premise behind Verizon Enterprise Solutions' new Software-Defined Perimeter (SDP) service that uses a cloud architecture to create a virtual perimeter around the sort of enterprise network that knows no physical boundaries.

Verizon says that SDP service provides pre-authenticated, context-aware, secure access to enterprise applications. This means that the cloud-based service is the "public" face of every enterprise application; users must sign in and be authenticated by the SDP, which only then forwards the user transaction to the relevant application.

The concept of the SDP isn't new. It was initially developed from work on an approach known as a "Black Cloud" at the Defense Information Systems Agency in the mid- to late-2000s. Because all user authentication must go through the SDP, all DNS and IP address information for the application can be hidden from public view. This approach is an operational definition of "security through obscurity," a tactic that has its detractors but is widely used in military and enterprise applications.

Verizon SDP service is part of the broader portfolio of virtualized security services available from Verizon. The service includes, in addition to application authentication and obfuscation functions, a perimeter firewall, VPN termination and public key infrastructure (PKI) for the customer. (See Unknown Document 732479.)

Verizon SDP has begun its rollout, and is currently available in the US, Canada, EU countries and Norway.

— Curtis Franklin, Security Editor, Light Reading. Follow him on Twitter @kg4gwa.

Comment  | 
Print  | 
More Insights
Comments
Oldest First  |  Newest First  |  Threaded View
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-23901
PUBLISHED: 2021-01-25
An XML external entity (XXE) injection vulnerability was discovered in the Nutch DmozParser and is known to affect Nutch versions < 1.18. XML external entity injection (also known as XXE) is a web security vulnerability that allows an attacker to interfere with an application's processing of XML ...
CVE-2020-17532
PUBLISHED: 2021-01-25
When handler-router component is enabled in servicecomb-java-chassis, authenticated user may inject some data and cause arbitrary code execution. The problem happens in versions between 2.0.0 ~ 2.1.3 and fixed in Apache ServiceComb-Java-Chassis 2.1.5
CVE-2020-12512
PUBLISHED: 2021-01-22
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated reflected POST Cross-Site Scripting
CVE-2020-12513
PUBLISHED: 2021-01-22
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated blind OS Command Injection.
CVE-2020-12514
PUBLISHED: 2021-01-22
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to a NULL Pointer Dereference that leads to a DoS in discoveryd