Tag Archives: security

Bracket, content, Funding, investment, News & Analysis

Bracket Computing wins $45 million to secure cloud with encapsulated data cells

Cloud securitySecurity start up Bracket Computing has been awarded $45m in a Series C investment round to develop its system for making content safe on the cloud.

Bracket’s Computing Cell technology works by encapsulating content in cell in order to secure it. The enveloped data and applications can then travel in safety across multiple cloud environments, according to its inventors. The Cell technology simplifies the increasingly complex issue of cloud management by consolidating security, networking and data management into a single construct.

The cell can run across multiple public clouds and in a customer’s own data centre. The cell structure also brings consistency to the cloud, as it protects client apps from the performance changes that can occur in cloud computing.

Customers hold the digital keys to their data, which is encrypted. Bracket runs a service that reserves hardware at cloud providers when necessary and distributes the data across multiple machines to smooth performance and improve speed.

The founders, Tom Gillis and Jason Lango, have a pedigree in Internet security having created Ironport Systems’ anti-spam hardware range, which was bought by Cisco Systems 2007 for $830 million. In 2011 they founded Bracket to solve the new security problems created by the cloud.

“Imagine if you could encapsulate your most sensitive applications, data and services and run them securely across hyperscale public clouds and your private cloud, while ensuring consistent security controls and data management,” said Lango, “this is what a Bracket Computing Cell allows. It enables an enterprise without boundaries, without sacrificing security and control.”

The funds will finance a global roll-out said Bracket CEO Tom Gillis. The data centres of the finance sector are an immediate target, but the technology applies to all large corporations, said Gillis. “Financial firms need to remain technology leaders. We’re working with some of the very largest as we define the blueprint for the data centre of the future.”

News

Bracket Computing Raises $45 Million

Bracket Computing, accompany that strives to deliver enterprise computing driven by business needs instead of hardware limitations, has raised upwards of $45 million in a Series C funding round. The total funding from this round and all previous is estimated to be more than $130 million. There are two new investors: Fidelity Management and Research Company and Goldman Sachs, These two companies are joined by Bracket’s previous investors Allegis Capital, Andreessen Horowitz, ARTIS Ventures, Columbus Nova Technology Partners, Norwest Venture Partners, and Sutter Hill Ventures. Bracket Capital plans to use this new capital to develop the Bracket Computing Cell and finance the company’s global expansion. The Bracket Computing cell allows enterprise applications and data and their associated security, networking, and data management infrastructure to reside in a single software design. This Computing Cell has been formatted to function across a multitude of public cloud providers in addition to the company’s on-premise data center. The result of this formatting will be a consistent virtual enterprise-grade infrastructure.

Tom Gillis, CEO and co-founder of Bracket, has commented, “Bracket is fundamentally redefining enterprise computing. Financial firms need to remain technology leaders, and we’re working with some of the very largest as we define the blueprint for the data center of the future. Our vision is to provide a secure, advanced, virtual infrastructure that spans multiple clouds, both private and public, with one consistent set of capabilities. Having investors of this quality bolsters our efforts to build this ambitious technology.”

Tom-Gillis-Bracket-Computing

Jason Lango, CTO and co-founder of Bracket, has added, ““Imagine if you could encapsulate your most sensitive applications, data, and services and have them run securely across leading hyper scale public clouds and your private cloud, all the while ensuring consistent security controls and data management capabilities. This is what a Bracket Computing Cell allows. It enables an enterprise without boundaries, without sacrificing security and control.” Within the Computing Cell there is encryption technology that enhances security by creating a secure fabric that extends the user’s trust across multiple hyper scale clouds that it doesn’t necessarily control. Such an approach allows the user to span multiple public clouds while still maintaining a high level of security.

The post Bracket Computing Raises $45 Million appeared first on Cloud News Daily.

News

Azure Cloud Security Enhancement

One of the most anticipated user management and security features for Microsoft Azure has officially been launched. According to Alex Simons, director of program management at Microsoft’s Identity Division, the Azure Roles-Based Access Control, or RBAC, is now generally available. RBAC has been requested by customers that have evaluated Azure as the foundation of their own enterprise cloud sectors. Azure Roles-Based Access Control permits administrators to selectively grant access to both cloud services and production workloads,  adding a level of security.

As Dushyant Gill, a Microsoft Azure Active Directory program manager explained, “Until now, to give people the ability to manage Azure you had to give them full control of an entire Azure subscription. Now, using RBAC, you can grant people only the amount of access that they need to perform their jobs.” RBAC interfaces with Azure Active Directory (AD), Microsoft’s cloud-based identity management platform, to show users their assigned Azure resources. Once you extend your Active Directory to the cloud, using Azure AD—your employees can purchase and manage Azure subscriptions using their existing work identity. These Azure subscriptions automatically connect to your Azure AD for single sign-on and access management.”

Azure

If an Active Directory account becomes disabled, access to all Azure subscriptions is cut off, enhancing the security of the azure program. Roles-Based Access Control may also provide departments a certain level of independence whilst still being compliant with the organizations IT policies. Gill described, “Using Azure RBAC, you can enable self-service management of cloud resources for your project teams while retaining central control over security sensitive infrastructure. For example, a common setup is to allow project teams to create and manage their own virtual machines and storage accounts, but only allow them to connect to networks managed by a central team.”

RBAC is currently available with a multitude of preset roles; however, “if none of the built-in RBAC roles addresses your specific access need, you will be able to create a custom RBAC role composing the exact operations to which you wish to grant access” (Gill).

The post Azure Cloud Security Enhancement appeared first on Cloud News Daily.

cloud security, Internet of Things, IoT, KDDI, Kii, News & Analysis

Kii and KDDI say their joint platform will make IoT safe on cloud

Secure cloudJapanese telco KDDI is working with Internet of Things (IoT) cloud platform provider Kii to create a risk averse system in which enterprises can develop mobile apps.

The KDDI cloud platform service (KCPS) is described as a mobile back end as a service (mBaaS) offering that uses Kii’s software to create mobile and IoT apps on a private network. The two companies have worked together on ways to apply cloud disciplines for efficient sharing of resources, contained within the confines on an Intranet environment. The object of the collaboration is to allow companies to develop machine to machine systems, without exposing them to the public cloud while they are in development.

According to KDDI, the KCPS uses the telco’s Wide Area Virtual Switch to integrate a number of different virtual network layers with Kii’s software. Together they create a new level of fast connections across the Intranet. KCPS also provides a service environment for intranet-conscious customers who need high standards of security and enterprise functions without resorting to the public Internet, according to the vendor.

KDDI claims this is the first instance in which both Intranet and Internet services can work seamlessly with any mobile application developed on the KCPS platform.

KDDI’s application development support will allow developers to build better quality, lower priced applications in a short period of time, it claims. The platform is designed to help developers manage application development, devices and data, while providing essential features like push notifications and geo-location information. KCPS should be compatible with mobile apps on Android and iOS, according to KDDI.

“As the IoT gains mass acceptance, we see tremendous value helping mobile app developers get more IoT devices into the hands of consumers,” said Kii CEO Masanari Arai, “our collaboration will use the cloud to build the backend support of these apps in Japan.”

Data, Europe, Facebook, News & Analysis, Policy and Regulation, Safe Harbour

Cloud industry shaken by European Safe Harbour ruling

Europe US court of justiceThe Court of Justice of the European Union has ruled the Safe Harbour agreement between Europe and the US, which provides blanket permission for data transfer between the two, is invalid.

Companies looking to move data from Europe to the US will now need to negotiate specific rules of engagement with each country, which is likely to have a significant impact on all businesses, but especially those heavily reliant on the cloud.

The ruling came about after Austrian privacy campaigner Max Schrems asked to find out what data Facebook was passing on to US intelligence agencies in the wake of the Snowden revelations. When his request was declined on the grounds that the safe harbour agreement guaranteed his protection he contested the decision and it was referred to the Court of Justice.

This decision had been anticipated, and on top of any legal contingencies already made large players such as Facebook, Google and Amazon are offered some protection by the fact that they have datacentres within Europe. However the legal and logistical strain will be felt by all, especially smaller companies that rely on US-based cloud players.

“The ability to transfer data easily and securely between Europe and the US is critical for businesses in our modern data-driven digital economy,” said Matthew Fell, CBI Director for Competitive Markets. “Businesses will want to see clarity on the immediate implications of the ECJ’s decision, together with fast action from the Commission to agree a new framework. Getting this right will be important to the future of Europe’s digital agenda, as well as doing business with our largest trading partner.”

“The ruling invalidating Safe Harbour is seismic,” said Andy Hardy, EMEA MD at Code42, which recently secured $85 million in Series B funding. “This decision will affect big businesses as well as small ones. But it need not be the end of business as we know it, in terms of data handling. What businesses need to do now is safeguard data. They need to find solutions that keep their, and their customer’s, data private – even when backed up into public cloud.”

“Symantec respects the decision of the EU Court of Justice,” said Ilias Chantzos, Senior Director of Government Affairs EMEA at Symantec. “However, we encourage further discussion in order to create a strengthened agreement with the safeguards expected by the EU Court of Justice. We believe that the recent ruling will create considerable disruption and uncertainty for those companies that have relied solely on Safe Harbour as a means of transferring data to the United States.”

“The issues are highly complex, and there are real tensions between the need for international trade, and ensuring European citizen data is treated safely and in accordance with data protection law,” said Nicky Stewart, commercial director of Skyscape Cloud Services. “We would urge potential cloud consumers not to use this ruling as a reason not to adopt cloud. There are very many European cloud providers which operate solely within the bounds of the European Union, or even within a single jurisdiction within Europe, therefore the complex challenges of the Safe Harbor agreement simply don’t apply.”

These were just some of the views offered to BCN as soon as the ruling was announced and the public hand-wringing is likely to continue for some time. From a business cloud perspective one man’s problem is another’s opportunity and companies will be queuing up to offer localised cloud services, encryption solutions, etc. In announcing a couple of new European datacentres today Netsuite was already making reference to the ruling. This seems like a positive step for privacy but only time will tell what it means for the cloud industry.

compliance, managed security, News & Analysis, Rackspace

Rackspace launches managed security and compliance service for enterprise cloud clients

Security concept with padlock icon on digital screenRackspace has announced new managed security and compliance assistance services to protect businesses and mitigate the risk of cyber threats. These services will give Rackspace clients ‘holistic’ coverage across cover complex, multi-cloud environments, it claims.

The service will provide consultation and tailored security using Rackspace’s inhouse expertise. It can both improve security while cutting the cost of vigilance, Rackspace claimed.

The Rackspace Managed Security offering is to be backed by round the clock support from the Customer Security Operations Center (CSOC) at Rackspace headquarters and will open in October. The service comprises four elements: host and network protection, vulnerability management, threat intelligence and compliance assistance.

Host and Network Protection will protect against zero-day and non-malware attacks as well as traditional compromise tactics. Security Analytics uses a security information and event management (SIEM) system paired with big data analytics to collect and analyse security data from the customer’s environment. As part of its Vulnerability Management service Rackspace will scan its clients’ environments and tailor its responses to estimated threats. Meanwhile, its Threat Intelligence will use fuse information from 20 feeds with Rackspace’s own internal data to constantly redraw the changing threat landscape.

All this information will help clients meet their governance objectives, as part of Rackspace’s Compliance Assistance service, which offers detailed proof of configuration hardening and monitoring, patch monitoring and user observance, the service provider said.

This information, in tandem with detail about file integrity, will help cloud service managers and CIOs to keep on top of their mounting compliance challenge, claimed Brian Kelly, chief security officer at Rackspace.

“Cyber-attacks are the new normal for companies,” said Kelly. It will be a lot cheaper and quicker to use Rackspace to manage cloud services, said Kelly. “We have 16 years of first-hand knowledge managing IT infrastructure and direct experience with today’s complex threats.”

Analytics, HDS, Internet of Things, News & Analysis

Hitachi Data Systems unveils new automated IoT policing system

A new IoT system can predict crime by reading social media and analysing the public’s movements, claims Hitachi data Systems (HDS).

Hybrid cloud systems designed by HDS are to offer new automated policing systems, including predictive crime analytics and video management systems. The new public safety technologies were unveiled yesterday by HDS at the ASIS International Annual Seminar and Exhibits in Anaheim, California.

The new Hitachi Visualization Suite (HVS) (version 4.5) now includes Predictive Crime Analytics (PCA) and version 2.0 of the Video Management Platform (VMP).

The PCA predicts crime by analysing live social media and Internet data feeds to gather intelligent insights which enable the users of the system to make ‘highly accurate crime predictions’, claims HDS. Both social media and video camera data will be analysed for both historical crime and to predict potential incidents.

The HVS is a hybrid cloud-based platform that integrates disparate data and video assets from public safety systems, such as computer-aided emergency services dispatch, number plate readers and gunshot sensors. The real time info is then presented geospatially to monitors at law enforcement agencies in order to improve intelligence, support their investigations and make policing more efficient, says HDS. The geospatial visualizations will also provide better historical crime data, by presenting information on crime in several forms, including heat maps.

Blending real-time event data from public safety systems with historical and contextual crime data allows agencies to conduct more thorough analysis, using spatial and temporal prediction algorithms, that could help solve many hitherto unsolvable crimes. It could also provide underlying risk factors that generate or mitigate crime, says HDS.

The system uses natural language processing for topic intensity modelling using social media networks which, HDS claims, will deliver highly accurate crime predictions.

The systems will ultimately create faster police response times when situations develop, according to Mark Jules, HDS’s VP of Public Safety and Data Visualization. “Today, we are empowering them with the ability to take a proactive approach to crime and terrorism,” said Jules, “Public safety is a fundamental pillar of our vision for smart cities and societies.”

News, Services

Imperva Inc.’s New Senior Vice President of Cloud Services

Imperva Inc., a company dedicated to protecting critical data and applications throughout the cloud, has recently announced that Meg Bear will become the company’s Senior Vice President of Cloud Services. Bear is responsible for increasing the company’s range of cloud services on an international level. In general, Bear is very qualified for this position. She has over twenty years of experience in a multitude of aspects within the software business. She also holds eleven patents for innovations in data management, social business, recruitment and talent management. Bear is a pivotal figure in the transition to cloud based business models. Bear was previously the Group Vice President for Social Cloud at Oracle responsible for delivering an integrated global social suite and held many other leadership roles at Oracle, including Vice President of Human Capital Management (HCM) Development and Senior Director of Development for Oracle PeopleSoft.

meg bear

“Hiring Meg is one more example of our continued investment in our rapidly growing cloud business, and we are thrilled to bring her on board,” said Anthony Bettencourt. “With the 98% year-over-year increase in subscription revenue reported in our Q2 earnings, we are well positioned with Meg’s experience and leadership to maintain momentum and take advantage of mounting cloud opportunities, adoption rates, and technological innovations.”

“Customers today need more than traditional endpoint and network security solutions that clearly don’t go far enough, given recent high-profile data breaches,” said Bear. “The cloud is an engine of innovation for many companies, and that requires new views on security. I look forward to working with the world class Imperva cloud teams to address those challenges, all with the aim of helping customers protect their business critical data and apps.”

In addition to all previously mentioned qualifications, she also is an Advisory Board Member at Unitive and Brand Amper, and previously served as Advisory Board Member at Storyvite. She has held a plethora of advisory roles with many different organizations, such as Watermark.  Bear graduated with a Degree in Economics and Entrepreneurship from the University of Arizona. Clearly, Bear has a lot to offer to Imperva, the leading provider of cyber security solutions in a business setting.

The post Imperva Inc.’s New Senior Vice President of Cloud Services appeared first on Cloud News Daily.

Cloudera, Hadoop, News & Analysis, Open Source

Cloudera announces tighter security measures for Hadoop

Cloud securityCloudera has announced a new open source project that aims to use real-time analytical applications in Hadoop and an open source security layer for unified access control enforcement.

Kudu, an in-memory store for Hadoop, aims to give developers more choice and stop them from having their options limited. Currently developers must choose between fast analytics with HDFS or updating data with HBase. Combining the two, according to Cloudera, can be potentially fatal for any developers that try, since the systems are both highly complex.

Cloudera says Kudu eliminates the complexities involved in processes like time series analysis, machine data analytics and online reporting. It does this by supporting high-performance sequential and random reads and writes, enabling fast analytics on changing data.

Cloudera co-authored Kudu with Intel, which helped it make better use of in-memory hardware and Intel’s 3D XPoint technology. Other contributors included Xiaomi, AtScale, Splice Machine and Zoomdata.

“Our infrastructure team has been working with Cloudera to develop Kudu, taking advantage of its unique ability to support columnar scans and fast inserts and updates to continue to expand our Hadoop ecosystem footprint,” Baoqiu Cui, chief architect at smartphone developer Xiaomi, told CIO magazine. “Using Kudu, alongside interactive SQL tools like Impala, has allowed us to build a next-generation data analytics platform for real-time analytics and online reporting.”

Meanwhile a new core security for Hadoop has been launched. RecordService aims to provide unified access control enforcement for Hadoop by enforcing role based access controls. It acts as a new layer that sits between Hadoop’s storage and computing engines and aims to consistently enforce the role-based access controls defined by Sentry. RecordService also provides dynamic data masking across Hadoop, protecting sensitive data as it is accessed.

“Security is a critical part of Hadoop, but for it to evolve the security needs to become universal across the platform. With RecordService, the Hadoop community fulfils the vision of unified fine-grained access controls for every Hadoop access path,” said Mike Olson, co-founder and chief strategy officer at Cloudera.

News, Services

Internap and Akami Pair Up

Recently, Internap Corporation, which provides high performance Internet infrastructure services, and Akamai Technologies, Inc., the current global leader in Content Delivery Network services, have announced that they are teaming to provide their customers with Internap’s cloud, data center, and network services in conjunction with Akamai’s cloud security and data protection services. Underneath this alliance, Internap shall offer the Akami Cloud Security solutions to industries that require infrastructure availability, reliability, and scalability, such as the healthcare industry. The combination of these two companies will result in optimal performance for customers.

“Organizations that demand optimal web and application performance simply can’t afford the potentially business-impacting outages and downtime associated with DDoS attacks,” said Michael Ruffolo, Internap’s president and CEO. “We believe this alliance is a logical and powerful combination that uniquely addresses this problem for our joint customers. Akamai will be our sole DDoS mitigation provider, bringing market-leading security capabilities to Internap’s state-of-the-art data center facilities and to our expertise in delivering high-performance cloud, colocation and networking services.”

Internap-logo-22B0B3C6BC-seeklogo.com

Akamai works to protect websites and other internet based applications from threats such as data theft. The Akamai Cloud Security solutions, constructed on the Akamai Intelligent Platform, are designed to protect against the threat of web application attacks while still providing maximum performance. In addition, the capability of adapting to shifting tactics and attack vectors is offered.

“We view the combination of Internap’s high-performance Internet infrastructure services and Akamai’s cloud security solutions as a natural extension to what has been a very synergistic alliance between our two companies,” said Brad Rinklin, Chief Marketing Officer and SVP – Global Alliances, Akamai. “Faced with an ever-changing threat landscape, organizations require comprehensive security solutions that address many different protection scenarios. These include securing mission?critical Web properties and applications from attack, as well as protecting enterprise IP applications across a data center. With this expanded alliance, Internap and Akamai are providing joint customers with both high-performing cloud and security capabilities.”

The post Internap and Akami Pair Up appeared first on Cloud News Daily.