Click here to close now.

Welcome!

@ContainersExpo Blog Authors: Liz McMillan, Elizabeth White, Carmen Gonzalez, SmartBear Blog, Rex Morrow, Datical

Related Topics: @ContainersExpo Blog, @MicroservicesE Blog, Microsoft Cloud, Silverlight, Agile Computing, Cloud Security

@ContainersExpo Blog: Article

Bromium, The New Malware Cure

It will work initially on (presumably clean) 64-bit Windows 7 PCs using Internet Explorer 8 and 9

Please, God, let this work - even if it's not completely impenetrable, it sounds better than what we've got as we know from the Chinese.

"It" is widgetry called vSentry from a UK start-up called Bromium that promises to put an end to malware - at least in the enterprise. Bromium is too young to deal with consumers yet.

It will work initially on (presumably clean) 64-bit Windows 7 PCs using Internet Explorer 8 and 9. Later it will be moved to Intel-based Macs and other browsers. Presumably Bromium will prioritize ARM devices somehow and Windows 8 boxes will likely be supported when the enterprise actually starts deploying them.

What is does is use a lightweight second-generation species of virtualization the Bromium boys call a Microvisor to create a disposable virtual machine around every task you do on a PC - click on a URL, open a document or e-mail attachment, or a file on a thumb drive - anything can reportedly run in a Micro-VM provided the PC is based on one of the Intel Core i3, i5, or i7 processors that make what's called hardware-enforced isolation possible. And that's because of Intel's Virtualization Technology (VT).

Users won't even know vSentry and its Micro-VMs are there - at least that's what its creators say.

The virtual machine cages any undetectable malware you might happen upon in a poisoned e-mail or malicious site, gives it something harmless to play with to let it think it's doing its job, and kills it when the VM is killed.

Micro-VMs are automatically discarded when an untrusted task is completed. The Intel hardware nips in the bud any move by a task in a Micro-VM to access trusted files or resources like the network, file system, clipboard and printing, handing control over to the Microvisor to see if it's legit.

The evil malware can't leak into the rest of the machine and can't leak into the enterprise or the mobile devices connected to the corporate network. And it doesn't matter what the malware is or whether it's known or not.

vSentry protects desktops that haven't been patched (not a great safeguard anyway). Users are free to download apps, collaborate, access cloud-hosted programs and the web, and open unsafe documents and media without risking enterprise's data or infrastructure.

See, the hardware virtualization guarantees that the VMs are isolated from the operating system and each other, and enterprise assets are protected by restricting the ability of each Micro-virtual machine to access data, networks and other system resources. To penetrate, the malware would have to break Intel's hardware, which is supposed to be way harder than compromising software.

The widgetry is also supposed to provide in-depth forensic capabilities to determine the intent of the attack without risk of exposure and identify the vectors, targets and methods of new attacks in real-time.

Bromium calls this Live Attack Visualization and Analysis (LAVA), and says vSentry automatically generates signatures for new attacks that legacy detection-centric tools can neither identify nor block.

It lets the malware do what it wants to do - fooling it with fakes - so it can be fully analyzed. vSentry then uploads the data to security software from, say, Symantec, McAfee or Trend Micro to identify.

vSentry, which is configured through Active Directory, debuted Wednesday at a Gartner Security & Risk Management Summit in London and Gartner fixes the value of the market it's headed for at $17.7 billion last year.

However, the Wall Street Journal says Bromium's beta customers told the company they saw the widgetry as additive to old-fashioned endpoint (albeit easily compromised) security and that may translate into a cost hurdle.

vSentry is supposed to be licensed per-user, enterprise-wide, and priced according to volume. What those prices are exactly isn't clear. Maybe a few hundred dollars a head.

The boys who created this stuff are Simon Crosby, Ian Pratt and Gaurav Banga. Crosby and Pratt created the open source Xen virtualization project - Amazon uses Xen - and sold XenSource, the company that commercialized it, to Citrix for $500 million in 2007. Pratt worked with Intel on the virtualization support in its chips. Banga was CTO at Phoenix Technologies, the BIOS outfit.

Banga is now CEO of Bromium, Crosby is CTO and Pratt is SVP, products.

Bromium has raised $35.7 million in two rounds from Highland Capital, Andreessen Horowitz, Ignition, Lightspeed and Intel Capital which apparently see micro-virtualization as having the potential to be a disruptive change in information and infrastructure protection.

Business Insider said Bromium is doing for security what VMware did for servers.

More Stories By Maureen O'Gara

Maureen O'Gara the most read technology reporter for the past 20 years, is the Cloud Computing and Virtualization News Desk editor of SYS-CON Media. She is the publisher of famous "Billygrams" and the editor-in-chief of "Client/Server News" for more than a decade. One of the most respected technology reporters in the business, Maureen can be reached by email at maureen(at)sys-con.com or paperboy(at)g2news.com, and by phone at 516 759-7025. Twitter: @MaureenOGara

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.


@ThingsExpo Stories
2015 predictions circa 1970: houses anticipate our needs and adapt, city infrastructure is citizen and situation aware, office buildings identify and preprocess you. Today smart buildings have no such collective conscience, no shared set of fundamental services to identify, predict and synchronize around us. LiveSpace and M2Mi are changing that. LiveSpace Smart Environment devices deliver over the M2Mi IoT Platform real time presence, awareness and intent analytics as a service to local connected devices. In her session at @ThingsExpo, Sarah Cooper, VP Business of Development at M2Mi, will d...
"For over 25 years we have been working with a lot of enterprise customers and we have seen how companies create applications. And now that we have moved to cloud computing, mobile, social and the Internet of Things, we see that the market needs a new way of creating applications," stated Jesse Shiah, CEO, President and Co-Founder of AgilePoint Inc., in this SYS-CON.tv interview at 15th Cloud Expo, held Nov 4–6, 2014, at the Santa Clara Convention Center in Santa Clara, CA.
The Internet of Things is not only adding billions of sensors and billions of terabytes to the Internet. It is also forcing a fundamental change in the way we envision Information Technology. For the first time, more data is being created by devices at the edge of the Internet rather than from centralized systems. What does this mean for today's IT professional? In this Power Panel at @ThingsExpo, moderated by Conference Chair Roger Strukhoff, panelists will addresses this very serious issue of profound change in the industry.
Health care systems across the globe are under enormous strain, as facilities reach capacity and costs continue to rise. M2M and the Internet of Things have the potential to transform the industry through connected health solutions that can make care more efficient while reducing costs. In fact, Vodafone's annual M2M Barometer Report forecasts M2M applications rising to 57 percent in health care and life sciences by 2016. Lively is one of Vodafone's health care partners, whose solutions enable older adults to live independent lives while staying connected to loved ones. M2M will continue to gr...
The world is at a tipping point where the technology, the device and global adoption are converging to such a point that we will see an explosion of a world where smartphone devices not only allow us to talk to each other, but allow for communication between everything – serving as a central hub from which we control our world – MediaTek is at the heart of both driving this and allowing the markets to drive this reality forward themselves. The next wave of consumer gadgets is here – smart, connected, and small. If your ambitions are big, so are ours. In his session at @ThingsExpo, Jack Hu, D...
The multi-trillion economic opportunity around the "Internet of Things" (IoT) is emerging as the hottest topic for investors in 2015. As we connect the physical world with information technology, data from actions, processes and the environment can increase sales, improve efficiencies, automate daily activities and minimize risk. In his session at @ThingsExpo, Ed Maguire, Senior Analyst at CLSA Americas, will describe what is new and different about IoT, explore financial, technological and real-world impact across consumer and business use cases. Why now? Significant corporate and venture...
"At our booth we are showing how to provide trust in the Internet of Things. Trust is where everything starts to become secure and trustworthy. Now with the scaling of the Internet of Things it becomes an interesting question – I've heard numbers from 200 billion devices next year up to a trillion in the next 10 to 15 years," explained Johannes Lintzen, Vice President of Sales at Utimaco, in this SYS-CON.tv interview at @ThingsExpo, held Nov 4–6, 2014, at the Santa Clara Convention Center in Santa Clara, CA.
Aria Systems, which helps enterprises grow recurring revenue, today announced that its co-founder and inventor of cloud billing Brendan O'Brien, will be a featured speaker at the Cloud Expo, June 9-11 at The Javits Center in New York. Aria also will be demonstrating its Active Monetization platform in Booth #424 on the Expo Floor. O'Brien will lead the following sessions: June 9 - 11:00 am - 11:35 am, Room 1A16 with participants from Constant Contact, MGI Research and ATG Enabling Complex Recurring Revenue Strategies – With IoT exploding, massive data will transform businesses with oppor...
Growth hacking is common for startups to make unheard-of progress in building their business. Career Hacks can help Geek Girls and those who support them (yes, that's you too, Dad!) to excel in this typically male-dominated world. Get ready to learn the facts: Is there a bias against women in the tech / developer communities? Why are women 50% of the workforce, but hold only 24% of the STEM or IT positions? Some beginnings of what to do about it!
SYS-CON Events announced today that the "First Containers & Microservices Conference" will take place June 9-11, 2015, at the Javits Center in New York City. The “Second Containers & Microservices Conference” will take place November 3-5, 2015, at Santa Clara Convention Center, Santa Clara, CA. Containers and microservices have become topics of intense interest throughout the cloud developer and enterprise IT communities.
"There is a natural synchronization between the business models, the IoT is there to support ,” explained Brendan O'Brien, Co-founder and Chief Architect of Aria Systems, in this SYS-CON.tv interview at the 15th International Cloud Expo®, held Nov 4–6, 2014, at the Santa Clara Convention Center in Santa Clara, CA.
The 17th International Cloud Expo has announced that its Call for Papers is open. 17th International Cloud Expo, to be held November 3-5, 2015, at the Santa Clara Convention Center in Santa Clara, CA, brings together Cloud Computing, APM, APIs, Microservices, Security, Big Data, Internet of Things, DevOps and WebRTC to one location. With cloud computing driving a higher percentage of enterprise IT budgets every year, it becomes increasingly important to plant your flag in this fast-expanding business opportunity. Submit your speaking proposal today!
The 4th International Internet of @ThingsExpo, co-located with the 17th International Cloud Expo - to be held November 3-5, 2015, at the Santa Clara Convention Center in Santa Clara, CA - announces that its Call for Papers is open. The Internet of Things (IoT) is the biggest idea since the creation of the Worldwide Web more than 20 years ago.
The basic integration architecture, as defined by ESBs, hasn’t changed for more than a decade. Most cloud integration providers still rely on an ESB architecture and their proprietary connectors. As a result, enterprise integration projects suffer from constraints of availability and reliability of these connectors that are not re-usable across other integration vendors. However, the rapid adoption of APIs and almost ubiquitous availability of APIs amongst most SaaS and Cloud applications are rapidly redefining traditional integration approaches and their reliance on proprietary connectors. ...
With major technology companies and startups seriously embracing IoT strategies, now is the perfect time to attend @ThingsExpo in Silicon Valley. Learn what is going on, contribute to the discussions, and ensure that your enterprise is as "IoT-Ready" as it can be! Internet of @ThingsExpo, taking place Nov 3-5, 2015, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with 17th Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The Internet of Things (IoT) is the most profound change in personal an...
“Connect2Me is basically a game changer in the IoT industry. We have created IoT connecter middleware that can enable a connection to any kind of device," explained Yasser Khan, CTO of Connect2Me, in this SYS-CON.tv interview at @ThingsExpo, held Nov 4–6, 2014, at the Santa Clara Convention Center in Santa Clara, CA.
17th Cloud Expo, taking place Nov 3-5, 2015, at the Santa Clara Convention Center in Santa Clara, CA, will feature technical sessions from a rock star conference faculty and the leading industry players in the world. Cloud computing is now being embraced by a majority of enterprises of all sizes. Yesterday's debate about public vs. private has transformed into the reality of hybrid cloud: a recent survey shows that 74% of enterprises have a hybrid cloud strategy. Meanwhile, 94% of enterprises are using some form of XaaS – software, platform, and infrastructure as a service.
“In the past year we've seen a lot of stabilization of WebRTC. You can now use it in production with a far greater degree of certainty. A lot of the real developments in the past year have been in things like the data channel, which will enable a whole new type of application," explained Peter Dunkley, Technical Director at Acision, in this SYS-CON.tv interview at @ThingsExpo, held Nov 4–6, 2014, at the Santa Clara Convention Center in Santa Clara, CA.
SYS-CON Events announced today that BMC will exhibit at SYS-CON's 16th International Cloud Expo®, which will take place on June 9-11, 2015, at the Javits Center in New York City, NY. BMC delivers software solutions that help IT transform digital enterprises for the ultimate competitive business advantage. BMC has worked with thousands of leading companies to create and deliver powerful IT management services. From mainframe to cloud to mobile, BMC pairs high-speed digital innovation with robust IT industrialization – allowing customers to provide amazing user experiences with optimized IT per...
SYS-CON Events announced today that the "First Containers & Microservices Conference" will take place June 9-11, 2015, at the Javits Center in New York City. The “Second Containers & Microservices Conference” will take place November 3-5, 2015, at Santa Clara Convention Center, Santa Clara, CA. Containers and microservices have become topics of intense interest throughout the cloud developer and enterprise IT communities.