Interest in microsegmentation is growing rapidly. Vendors are stepping forward to help enterprises update their infrastructure security to prevent catastrophic intrusions and data thefts. Here’s a look at three microsegmentation market players, showing what they offer, how they work and the ways they differ.
Edgewise Networks zero-trust environment
Product name: Edgewise Zero Trust Segmentation
What it does: Edgewise takes the position that address-based controls aren’t sufficient to protect enterprise assets, particularly in cloud environments where security teams have only limited control over the network. The company says it’s the only vendor to offer a zero-trust platform that microsegments data and applications via a cryptographic identity fingerprint instead of with traditional address-based controls.
Key features: Edgewise promises to eliminate unnecessary communication paths and shrink attack surfaces by more than 90%. The product automatically creates a compressed set of policies that enable organizations to build zero trust security. Users can review policies created by machine learning and simulate their effects prior to enforcement. As a network overlay, there’s no need for major architectural changes.
Differentiation: Promises to place protection as close to data as possible. Application-aware policies travel with all applications and services to limit potential compromises to the affected asset, not the entire network. The product automatically identifies all communicating software and suggests zero-trust policies, which can be applied with a single click.
VMware takes agentless approach
Product name: VMware NSX
What it does: VMware NSX is a networking and security platform that’s designed to deliver infrastructure microsegmentation across the entire data center. Adopters can prevent unauthorized lateral movements by using VMware NSX’s microsegmentation capabilities to define and enforce network security policies consistently on any workload hosted anywhere within their