VMware Announces Security Strategy with Zero Trust at the Core ``VMware Cloud Web Security'' is also GA

Two solutions for promoting zero trust in multi-cloud

So, what kind of approaches are taken for multi-cloud and digital workspaces? First of all, for multi-cloud, "VMware NSX-T" and "VMware Carbon Black" are the main solutions.

　NSX-T has micro-segmentation (risk reduction) with a distributed firewall function, signature-based distributed IDS/IPS (risk visualization, protection against known threats), advanced malware detection with sandboxes (risk It has powerful built-in security functions such as identification of intrusion), and by linking with Carbon Black, an endpoint security (EDR: Endpoint Detection and Response) product that supports everything from intrusion detection to recovery, multi-cloud security is enhanced. It is possible to realize powerful XDR (eXtended Detection & Response: an approach to detect threats by expanding the scope from endpoints to the cloud) that constantly checks.

　Until now, multi-cloud security has generally been a "north-south type" that uses the entrances and exits of data centers as boundaries, but by combining NSX-T and Carbon Black, it is an "east-west type". In other words, it will be possible to respond to malware (including unknown threats) that have infiltrated the data center while minimizing changes to settings and permissions. Another feature of VMware's multi-cloud solution is that security can be scaled linearly even when the number of resources (workloads, endpoints) to be protected increases.

NSX-T and Carbon Black are the main solutions for promoting multi-cloud zero trust. By linking these, it is possible not only to respond to the north-south type that protects the entrance, but also to respond to the east-west type that visualizes, identifies, and detects malware after intrusion

　In line with multi-cloud, many Security in the digital workspace is a major concern for companies. “Anywhere Workspace” has accelerated due to the corona disaster, but it is also true that the possibility of being attacked has increased at the same time. VMware cites "not to trust the endpoint (employee's work environment) too much" as an important point in promoting zero trust in the digital workspace.

　The security of endpoints used by employees working remotely is often incomparably weaker than in the office. If compromised from a remote endpoint, the attacker could well have unfettered access to any company resource.

In order to prevent such a situation, VMware

・ Digital space where you can work anywhere: VMware Workspace ONE ・ One-stop provision of zero trust security for digital space: VMware SASE ・ Endpoint verification: VMware Carbon Black

It is recommended to implement three countermeasures at the same time.

Zero trust in the digital workplace is achieved by combining Workspace ONE, VMware SASE, and Carbon Black

　Among these, the most important solution is VMware SASE (Secure Access Service), which facilitates the visualization and identification of risks. Edge). Similar to Zero Trust, SASE is a security keyword that has been heard more and more in the last year or two, but it is a framework for providing secure network access from the edge regardless of the location of the endpoint. It is a work, and commercialized services are released from each company.

　VMware SASE has

・ VMware Edge Network Intelligence: Vendor-agnostic AIOps solution that provides end-user and IoT client performance, security, and self-healing capabilities with SASE ・ VMware SD-WAN: < /b> SD-WAN solution (formerly VeloCloud) that enables secure branch office connectivity ・ VMware Secure Access: Solution that provides consistent and secure cloud application access for Workspace ONE users ・ VMware Cloud Web Security: A cloud-hosted service security gateway that provides threat protection, visibility, control and compliance for users and endpoints accessing SaaS and Internet applications.

　4 components are included, and VMware Cloud Web Security (CWS) has been generally available in Japan since June 25th.

　VMware has approximately 130 locations (PoPs: Points of Presence) around the world as bases for deploying its cloud services, but in conjunction with the GA of this CWS, the PoPs in Tokyo are also available. . With the spread of digital workspaces, there are more opportunities for employees working remotely to use SaaS that the company does not know about or access unauthorized websites via the Internet. facilitates rapid and dynamic protection of users and endpoints.

Together with SASE (CSW), multi-factor authentication and device posture reduce the risk of the digital workspace, Workspace ONE visualizes it, and AI analyzes threat information based on huge amounts of data and knowledge, and creates a risk score. By applying Carbon Black, which judges the