Home > Categories > Security Incident and Event Management > VMware Takes on Cisco and Palo Alto Networks With Announcement of VMware Service-defined Firewall

Software Category

Security Incident and Event Management

Write Review

VMware Takes on Cisco and Palo Alto Networks With Announcement of VMware Service-defined Firewall

VMware is delving deeper into the IT security segment with its recent announcement at RSA 2019, unveiling its Service-defined Firewall product. VMware will be competing with security giants Palo Alto Networks and Cisco, among others, to introduce the new offering that focuses on the internal network by validating good application behavior.

VMware is seeking to build on the unique aspects and characteristics embodied in its virtualization technology to replace integrated solutions with what it has termed “intrinsic security” vs. integrated security solutions. VMware seeks to focus on known “good assets” as opposed to scanning the universe for unknown threats.

VMware claims the new service can displace other solutions to become the “sole firewall solution for their internal needs.” They go one step further in an effort to build instant credibility for the Service-defined Firewall via the publication of a validation report from Verodin.

VMware’s Service-defined Firewall provides an agentless solution that can be deployed and utilized on bare metal, VM, and container-based environments in the cloud, on premises, or in hybrid cloud environments such as VMware Cloud on AWS. VMware advertises that this solution is a differentiator based on the following product characteristics:

  • Application Verification Cloud – leverages “machine intelligence” across VMware’s ecosystem of millions of VMs to map out a “good state” of an application.
  • Protected From the Guest – agentless capability that enables guest OS inspection to defend against root attacks. Works at run time to “detect and block malicious traffic on the network.”
  • Distributed in Software – extends past the traditional methods of “hairpinning” traffic from the network through a hardware appliance scanning, which is inefficient and not easily scalable in complex applications.

VMware appears serious about this latest foray into the enterprise security space. VMware CEO Pat Gelsinger was quoted, “We're the company that makes [cloud infrastructure] okay for our customers, makes it more efficient, scalable, et cetera but we've never until the last couple of years really said, ‘Hey, we can now start changing the security dialogue in a fundamental way.’”

Our Take

IT security and infrastructure leaders will need to carefully examine the purported capabilities in this new VMware offering before “jumping in” with both feet. Should this solution prove true to VMware’s lofty claims, organizations will have to carefully examine the implications from a cost, licensing, and business operating model approach. With most IT shops already experiencing increased costs due to being a captive customer of VMware’s virtualization technology, this new offering could serve to increase this vendor lock-in. Additionally, the convergence of network and security functionality will drive the CISO and CIO to work off the same page or risk falling behind in a world less tolerant of security breaches.

Want to Know More?

Master the Secrets of VMware Licensing to Maximize Your Investment

VMware AWS Strike a Deal: A Hybrid Cloud Enterprises Have Been Looking For

Other Recent Research in Security Incident and Event Management

Security Incident and Event Management

Chronicle Expands Its North American Presence by Partnering With Herjavec Group

Chronicle, Alphabet’s enterprise security company, expands its North American partner base with Herjavec Group, its first Canadian partner. Herjavec Group is the first service provider in Canada to be certified in, and provide access to, Chronicle’s security intelligence products.

Security Incident and Event Management

IBM Raises Price on Software Support; Shoves Customers Toward the Cloud

IBM is changing the terms of its ubiquitous Passport Advantage agreement to remove entitled discounts on over 5,000 on-premises software products, resulting in an immediate price increase for IBM Software & Support (S&S) across its vast customer landscape.

Security Incident and Event Management

Organizations Report Higher Satisfaction When Switching to Software With an Info-Tech Award

Thinking about choosing a new software vendor but don't know where to start? Narrow down your shortlist by focusing on software that has received an Info-Tech Research Group award. New data from SoftwareReviews shows that organizations reported higher satisfaction when they switched to software that had received an Info-Tech award.

Security Incident and Event Management

Bomgar & BMC Team Up to Speed Trouble-Ticket Resolution

For organizations that experience time-sensitive incidents that must be resolved in the most optimal and efficient manner, Bomgar (Beyond Trust) and BMC Software may have the solution. The two vendors have teamed up to address a reduction in the time it takes to resolve problematic tickets and assist in lessening the impact of cyber threats to which all organizations are subjected.