McAfee Announces Advanced Security for Amazon Web Services
August 2017 by Marc Jacob
McAfee announced a limited time free trial to “test drive” McAfee® Virtual Network Security Platform (McAfee® vNSP) on Amazon Web Services (AWS) for a hands-on experience running advanced security in the public cloud. Unlike other solutions, McAfee vNSP protects at the workload level, eliminating the single point of failure created by other solutions for a whole network segment. As part of the test drive, participants can simulate real-world attack use cases, configure policy and review reporting Dashboard.
Advanced malware can reach an organization’s AWS workloads through network traffic, along with cross site scripting, botnets and SQL injection attacks. Deploying infrastructure in the cloud can also open the window for new vulnerabilities that fall under the customer’s responsibility—if one virtual server in AWS is compromised, the malware can potentially roam to other vulnerable servers in the same customer environment. This lateral path is known as “east-west” network traffic, and often represents the majority of communication within virtualized environments.
McAfee vNSP has been designed from the ground up to work in highly distributed AWS infrastructure to ease network congestion. Instead of taking a traditional approach, monitoring an entire network segment to effect protection for a single workload, McAfee vNSP protects at the individual workload level. This approach is significantly different from other market solutions, guaranteeing visibility of inter-segment traffic, eliminating a single point of failure for an entire network segment and efficiently using security resources only where directed. The McAfee vNSP solution built specifically for AWS can also be managed from the same console as on-premises McAfee NSP.
Development teams can easily integrate security into their application deployment process by using automation frameworks such as Cloud Formation templates, Chef and Puppet to deploy and manage McAfee vNSP in AWS. Network security controls are comprehensive and include inline exploit prevention, with web application protection, zero-day malware detection, and workload isolation through segmentation and east-west attack detection.