Strengthened Security and Enhanced Fault-Tolerance for Contemporary Private Clouds through VMware Cloud Foundation
Broadcom, a leading technology company (NASDAQ: AVGO), has announced the launch of VMware Cloud Foundation (VCF) Advanced Cyber Compliance, a new service designed to enhance cyber compliance, resiliency, and platform security in VCF environments.
The new service is built around three key business outcomes: Continuous Compliance Enforcement at Scale, Automated Cyber and Data Recovery, and Enhanced Platform Security and Incident Response.
Continuous Compliance Enforcement at Scale
VCF's SaltStack capabilities are leveraged for automated monitoring and remediation at scale, providing continuous compliance for VCF environments. This ensures that the systems remain secure and compliant with the latest regulations.
Automated Cyber and Data Recovery
Automated Cyber and Data Recovery enables recovery to isolated, on-premises VCF clean rooms. This feature includes integrated push-button VM network isolation for rapid recovery from ransomware and IT disruptions. The service offers secure restore operations powered by end-to-end cyber recovery workflows with integrated validation tools that identify and help clean both fileless and file-based strains of malware.
Enhanced Platform Security and Incident Response
Enhanced Platform Security and Incident Response provides secure-by-design container images with enterprise support, advanced secure computing to bolster protection at the core of the infrastructure, and premium compliance and risk management with proactive assessments and early access to compliance updates.
Other Innovations
Avi, a Broadcom company, is introducing a tech preview of securing Model Context Protocol (MCP) traffic with WAF while providing MCP session persistence and authorization. This innovation aims to enhance the security of the platform further.
New automation-driven workflows will fast-track multi-stage segmentation for private cloud workloads, securing foundational services first, then progressively applying granular application-level protection.
A new Network Detection and Response (NDR) sensor will provide comprehensive, data center-wide threat visibility.
vDefend, another Broadcom innovation, introduces a tech preview for Zero Trust lateral security specifically for agentic AI workloads running on VMware Cloud Foundation. This feature targets stealthy in-memory attacks with advanced capabilities for fileless malware detection.
Avi's mTLS capability will support cryptographic authentication for both client and server connections in vSphere Kubernetes Service environments.
The service offers managed and secure data engine images with enterprise support and automated patching to strengthen compliance for critical databases.
In addition, Avi will provide a built-in Web Application Firewall (WAF) assessment tool. New Firewall Rule Analysis will optimize Distributed Firewall rules by identifying redundancies and misconfigurations, allowing lean and efficient security policies.
Broadcom will also support National Institute of Standards and Technology (NIST) specified Post-quantum Cryptography (PQC) algorithms.
These innovations demonstrate Broadcom's commitment to providing robust and secure solutions for its customers, helping them navigate the complex landscape of cybersecurity and compliance.
