Examining a new approach to data centre security

(c)iStock.com/4x-Image

Changing with the times is frequently overlooked when it comes to data security. Technology is becoming increasingly dynamic, but most data centres are still using archaic security measures to protect their network – which isn’t going to stand a chance against today’s sophisticated attacks.

Recent efforts to upgrade these massive security systems are still falling short. Data centres house a huge amount of data and there shouldn’t be any shortcuts when implementing security to protect that data. The focus remains on providing protection only at the perimeter to keep threats outside. However, implementing perimeter-centric security leaves the insides of the data centre vulnerable, where the actual data resides.

Cybercriminals understand this, and are constantly utilising advanced threats and techniques to breach external protections and move inside the data centre. Without strong internal security protections, hackers have visibility and access to steal data and disrupt business processes before they are even detected.

Businesses face security challenges as traffic behaviour and patterns are shifting. There is a higher amount of applications in the data centre, and these applications are integrated with each other. The increasing number of applications causes east-west traffic within the data centre to drastically grow, and as the perimeter defences are blind to this traffic, it makes lateral movement possible. With the rising number of applications, hackers have a broader choice of targets. Another challenge is that the manual processes for managing security are too slow. New applications that are rapidly created will evolve and change frequently, and static security controls are unable to keep up with the pace.

To address these challenges, a new security approach is needed – one that requires bringing security inside the data centre to protect against advanced threats. Enter micro-segmentation.

Micro-segmentation with advanced threat prevention is emerging as the new way to improve data centre security. Micro-segmentation works by grouping resources within the data centre and applying specific security policies to the communication between those groups. The data centre is essentially divided up into smaller, protected sections (segments) so that any intrusion discovered can be contained.

However, despite the separation, applications need to cross micro-segments in order to communicate with each other. This makes lateral movement still possible, which is why in order to detect and prevent lateral movement in the data centre it is vital for threat prevention to inspect traffic crossing the micro-segments.

In order to address data centre security agility, so it can cope with rapid changes, when new applications are added the security in the software-defined data centre learns about the role, scale, and location of the application. This allows the correct security policies to be enforced and removes the need for a manual process.

Strengthening the perimeter offers little help if there is no additional security within the data centre. With micro-segmentation, advanced security and threat prevention services can be deployed wherever they are needed in the environment. Implementing solutions such as Check Point’s vSEC for VMware NSX will provide multi-layered defences to protect east-west traffic within the data centre, and automatically quarantine infected machines for remediation. This puts required protection inside the organisation’s data centre, securing their company assets and valuable data from attacks.

By deploying advanced security solutions, businesses can better protect their data centres from undetected breaches and sophisticated threats.