Welcome!

Containers Expo Blog Authors: Liz McMillan, Pat Romanski, APM Blog, Lori MacVittie, Elizabeth White

Related Topics: Containers Expo Blog, Microservices Expo, Microsoft Cloud, Silverlight, Agile Computing, Cloud Security

Containers Expo Blog: Article

Bromium, The New Malware Cure

It will work initially on (presumably clean) 64-bit Windows 7 PCs using Internet Explorer 8 and 9

Please, God, let this work - even if it's not completely impenetrable, it sounds better than what we've got as we know from the Chinese.

"It" is widgetry called vSentry from a UK start-up called Bromium that promises to put an end to malware - at least in the enterprise. Bromium is too young to deal with consumers yet.

It will work initially on (presumably clean) 64-bit Windows 7 PCs using Internet Explorer 8 and 9. Later it will be moved to Intel-based Macs and other browsers. Presumably Bromium will prioritize ARM devices somehow and Windows 8 boxes will likely be supported when the enterprise actually starts deploying them.

What is does is use a lightweight second-generation species of virtualization the Bromium boys call a Microvisor to create a disposable virtual machine around every task you do on a PC - click on a URL, open a document or e-mail attachment, or a file on a thumb drive - anything can reportedly run in a Micro-VM provided the PC is based on one of the Intel Core i3, i5, or i7 processors that make what's called hardware-enforced isolation possible. And that's because of Intel's Virtualization Technology (VT).

Users won't even know vSentry and its Micro-VMs are there - at least that's what its creators say.

The virtual machine cages any undetectable malware you might happen upon in a poisoned e-mail or malicious site, gives it something harmless to play with to let it think it's doing its job, and kills it when the VM is killed.

Micro-VMs are automatically discarded when an untrusted task is completed. The Intel hardware nips in the bud any move by a task in a Micro-VM to access trusted files or resources like the network, file system, clipboard and printing, handing control over to the Microvisor to see if it's legit.

The evil malware can't leak into the rest of the machine and can't leak into the enterprise or the mobile devices connected to the corporate network. And it doesn't matter what the malware is or whether it's known or not.

vSentry protects desktops that haven't been patched (not a great safeguard anyway). Users are free to download apps, collaborate, access cloud-hosted programs and the web, and open unsafe documents and media without risking enterprise's data or infrastructure.

See, the hardware virtualization guarantees that the VMs are isolated from the operating system and each other, and enterprise assets are protected by restricting the ability of each Micro-virtual machine to access data, networks and other system resources. To penetrate, the malware would have to break Intel's hardware, which is supposed to be way harder than compromising software.

The widgetry is also supposed to provide in-depth forensic capabilities to determine the intent of the attack without risk of exposure and identify the vectors, targets and methods of new attacks in real-time.

Bromium calls this Live Attack Visualization and Analysis (LAVA), and says vSentry automatically generates signatures for new attacks that legacy detection-centric tools can neither identify nor block.

It lets the malware do what it wants to do - fooling it with fakes - so it can be fully analyzed. vSentry then uploads the data to security software from, say, Symantec, McAfee or Trend Micro to identify.

vSentry, which is configured through Active Directory, debuted Wednesday at a Gartner Security & Risk Management Summit in London and Gartner fixes the value of the market it's headed for at $17.7 billion last year.

However, the Wall Street Journal says Bromium's beta customers told the company they saw the widgetry as additive to old-fashioned endpoint (albeit easily compromised) security and that may translate into a cost hurdle.

vSentry is supposed to be licensed per-user, enterprise-wide, and priced according to volume. What those prices are exactly isn't clear. Maybe a few hundred dollars a head.

The boys who created this stuff are Simon Crosby, Ian Pratt and Gaurav Banga. Crosby and Pratt created the open source Xen virtualization project - Amazon uses Xen - and sold XenSource, the company that commercialized it, to Citrix for $500 million in 2007. Pratt worked with Intel on the virtualization support in its chips. Banga was CTO at Phoenix Technologies, the BIOS outfit.

Banga is now CEO of Bromium, Crosby is CTO and Pratt is SVP, products.

Bromium has raised $35.7 million in two rounds from Highland Capital, Andreessen Horowitz, Ignition, Lightspeed and Intel Capital which apparently see micro-virtualization as having the potential to be a disruptive change in information and infrastructure protection.

Business Insider said Bromium is doing for security what VMware did for servers.

More Stories By Maureen O'Gara

Maureen O'Gara the most read technology reporter for the past 20 years, is the Cloud Computing and Virtualization News Desk editor of SYS-CON Media. She is the publisher of famous "Billygrams" and the editor-in-chief of "Client/Server News" for more than a decade. One of the most respected technology reporters in the business, Maureen can be reached by email at maureen(at)sys-con.com or paperboy(at)g2news.com, and by phone at 516 759-7025. Twitter: @MaureenOGara

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.


@ThingsExpo Stories
Digital transformation is too big and important for our future success to not understand the rules that apply to it. The first three rules for winning in this age of hyper-digital transformation are: Advantages in speed, analytics and operational tempos must be captured by implementing an optimized information logistics system (OILS) Real-time operational tempos (IT, people and business processes) must be achieved Businesses that can "analyze data and act and with speed" will dominate those t...
Almost two-thirds of companies either have or soon will have IoT as the backbone of their business in 2016. However, IoT is far more complex than most firms expected. How can you not get trapped in the pitfalls? In his session at @ThingsExpo, Tony Shan, a renowned visionary and thought leader, will introduce a holistic method of IoTification, which is the process of IoTifying the existing technology and business models to adopt and leverage IoT. He will drill down to the components in this fra...
As ridesharing competitors and enhanced services increase, notable changes are occurring in the transportation model. Despite the cost-effective means and flexibility of ridesharing, both drivers and users will need to be aware of the connected environment and how it will impact the ridesharing experience. In his session at @ThingsExpo, Timothy Evavold, Executive Director Automotive at Covisint, will discuss key challenges and solutions to powering a ride sharing and/or multimodal model in the a...
Internet of @ThingsExpo, taking place November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with the 19th International Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world and ThingsExpo Silicon Valley Call for Papers is now open.
I'm a lonely sensor. I spend all day telling the world how I'm feeling, but none of the other sensors seem to care. I want to be connected. I want to build relationships with other sensors to be more useful for my human. I want my human to understand that when my friends next door are too hot for a while, I'll soon be flaming. And when all my friends go outside without me, I may be left behind. Don't just log my data; use the relationship graph. In his session at @ThingsExpo, Ryan Boyd, Engi...
SYS-CON Events announced today that Pulzze Systems will exhibit at the 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. Pulzze Systems, Inc. provides infrastructure products for the Internet of Things to enable any connected device and system to carry out matched operations without programming. For more information, visit http://www.pulzzesystems.com.
Why do your mobile transformations need to happen today? Mobile is the strategy that enterprise transformation centers on to drive customer engagement. In his general session at @ThingsExpo, Roger Woods, Director, Mobile Product & Strategy – Adobe Marketing Cloud, covered key IoT and mobile trends that are forcing mobile transformation, key components of a solid mobile strategy and explored how brands are effectively driving mobile change throughout the enterprise.
SYS-CON Events announced today that ReadyTalk, a leading provider of online conferencing and webinar services, has been named Vendor Presentation Sponsor at the 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. ReadyTalk delivers audio and web conferencing services that inspire collaboration and enable the Future of Work for today’s increasingly digital and mobile workforce. By combining intuitive, innovative tec...
If you’re responsible for an application that depends on the data or functionality of various IoT endpoints – either sensors or devices – your brand reputation depends on the security, reliability, and compliance of its many integrated parts. If your application fails to deliver the expected business results, your customers and partners won't care if that failure stems from the code you developed or from a component that you integrated. What can you do to ensure that the endpoints work as expect...
WebRTC adoption has generated a wave of creative uses of communications and collaboration through websites, sales apps, customer care and business applications. As WebRTC has become more mainstream it has evolved to use cases beyond the original peer-to-peer case, which has led to a repeating requirement for interoperability with existing infrastructures. In his session at @ThingsExpo, Graham Holt, Executive Vice President of Daitan Group, will cover implementation examples that have enabled ea...
There is growing need for data-driven applications and the need for digital platforms to build these apps. In his session at 19th Cloud Expo, Muddu Sudhakar, VP and GM of Security & IoT at Splunk, will cover different PaaS solutions and Big Data platforms that are available to build applications. In addition, AI and machine learning are creating new requirements that developers need in the building of next-gen apps. The next-generation digital platforms have some of the past platform needs a...
So, you bought into the current machine learning craze and went on to collect millions/billions of records from this promising new data source. Now, what do you do with them? Too often, the abundance of data quickly turns into an abundance of problems. How do you extract that "magic essence" from your data without falling into the common pitfalls? In her session at @ThingsExpo, Natalia Ponomareva, Software Engineer at Google, provided tips on how to be successful in large scale machine learning...
In his session at @ThingsExpo, Kausik Sridharabalan, founder and CTO of Pulzze Systems, Inc., will focus on key challenges in building an Internet of Things solution infrastructure. He will shed light on efficient ways of defining interactions within IoT solutions, leading to cost and time reduction. He will also introduce ways to handle data and how one can develop IoT solutions that are lean, flexible and configurable, thus making IoT infrastructure agile and scalable.
SYS-CON Events announced today that Numerex Corp, a leading provider of managed enterprise solutions enabling the Internet of Things (IoT), will exhibit at the 19th International Cloud Expo | @ThingsExpo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. Numerex Corp. (NASDAQ:NMRX) is a leading provider of managed enterprise solutions enabling the Internet of Things (IoT). The Company's solutions produce new revenue streams or create operating...
In his general session at 18th Cloud Expo, Lee Atchison, Principal Cloud Architect and Advocate at New Relic, discussed cloud as a ‘better data center’ and how it adds new capacity (faster) and improves application availability (redundancy). The cloud is a ‘Dynamic Tool for Dynamic Apps’ and resource allocation is an integral part of your application architecture, so use only the resources you need and allocate /de-allocate resources on the fly.
IoT is fundamentally transforming the auto industry, turning the vehicle into a hub for connected services, including safety, infotainment and usage-based insurance. Auto manufacturers – and businesses across all verticals – have built an entire ecosystem around the Connected Car, creating new customer touch points and revenue streams. In his session at @ThingsExpo, Macario Namie, Head of IoT Strategy at Cisco Jasper, will share real-world examples of how IoT transforms the car from a static p...
Fifty billion connected devices and still no winning protocols standards. HTTP, WebSockets, MQTT, and CoAP seem to be leading in the IoT protocol race at the moment but many more protocols are getting introduced on a regular basis. Each protocol has its pros and cons depending on the nature of the communications. Does there really need to be only one protocol to rule them all? Of course not. In his session at @ThingsExpo, Chris Matthieu, co-founder and CTO of Octoblu, walk you through how Oct...
Web Real-Time Communication APIs have quickly revolutionized what browsers are capable of. In addition to video and audio streams, we can now bi-directionally send arbitrary data over WebRTC's PeerConnection Data Channels. With the advent of Progressive Web Apps and new hardware APIs such as WebBluetooh and WebUSB, we can finally enable users to stitch together the Internet of Things directly from their browsers while communicating privately and securely in a decentralized way.
"My role is working with customers, helping them go through this digital transformation. I spend a lot of time talking to banks, big industries, manufacturers working through how they are integrating and transforming their IT platforms and moving them forward," explained William Morrish, General Manager Product Sales at Interoute, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.
The Internet of Things can drive efficiency for airlines and airports. In their session at @ThingsExpo, Shyam Varan Nath, Principal Architect with GE, and Sudip Majumder, senior director of development at Oracle, will discuss the technical details of the connected airline baggage and related social media solutions. These IoT applications will enhance travelers' journey experience and drive efficiency for the airlines and the airports. The session will include a working demo and a technical d...