NEW VIDEO: COVID-19: Securing newly remote users and admins (Paul's Security Weekly). WATCH NOW!
search this site
 
 

Zero Trust Auto-Segmentation for Hybrid Cloud

Microsegmentation that is simpler and stronger, accomplished with one click.

Microsegments created automatically — 1 click to deploy

1-Click Auto-Segmentation. Legacy microsegmentation involves multiple steps that can take months. Edgewise microsegmentation happens in mere minutes—with just one click. From mapping data flows to measuring exposure risk to deploying policies for enforcement, our microsegmentation is quick and simple.
Microsegments created automatically — with 1 click

Policies built without any manual intervention

Policy Recommendation Engine. Based on the cryptographic identities all software and machines communicating software on your networks, Edgewise eliminates risk by building policy recommendations using our patented machine learning technology. All software updates are captured instantly, meaning, your days of manual policy creation are in the past.
Policies built without any manual intervention

Risk is reduced through policy compression

Risk-Based Policy Management. Policy Compression. At the heart of Edgewise’s policies is a model of every application connection across your environment. Using a combination of exposure, reputation, behaviors—and of course, software identity—Edgewise creates risk-driven policies that are 25x fewer than those of traditional microsegmentation tools.
Risk is reduced through policy compression

Security outcomes are provable

Exposure Analysis (Risk analysis). Edgewise automatically builds a real-time application topology map and measures network exposure. As you apply segmentation policies, see how risk is reduced as attack paths are blocked and critical assets are protected with the highest level of confidence.
Security outcomes are provable

Software- and machine-identity verified through cryptographic attributes

Zero Trust Identity. All software and machines in the environment are fingerprinted using a combination of cryptographic identity attributes. Software- and machine-identity is the basis for every access control decision. Per our zero trust model, if a software or a machine can’t be verified, it can’t communicate, regardless of previous permissions. This ensures the strongest level of protection for your workloads, independent of network changes.
Software identity verified through cryptographic attributes

Segments adapt to accommodate app updates and changes

Adaptive Segments. Segmentation using traditional controls requires ongoing manual policy management because it can’t easily account for software updates and new hosts being added to a segment. In contrast, Edgewise segments are based on the identity of communicating software and not the network itself. This means that segments can adjust as new applications and hosts are added, verified, and permitted to communicate. The result: hardened security minus operational burden and complexity.
Segments adapt to accommodate app updates and changes

Security monitoring tools are enriched with app data

SIEM-ple API. Feed your customized Edgewise application communication logs directly into your SIEM, which enables you to prioritize security events better, detect anomalous communication faster, and reduce alert fatigue, all while monitoring the health of your Edgewise implementation.
Security monitoring tools are enriched with app data