Certes Networks, a developer of scalable cloud and network encryption solutions, has released its REST API for Certes TrustNet Manager, the company’s encryption policy and key management solution. When combined with the vCEP (virtual Certes Enforcement Point) cloud encryption solution, the API allows centralized control and programming of security policies through third-party tools, enabling network encryption policies to adapt to dynamic network configurations within virtualized and cloud environments. Acccording to Certes Networks, the solution eliminates the need to manually configure encryption policies as workflows change, and allows connectionless full mesh encryption to be realized in fully automated and self-provisioned cloud environments.
Numerous surveys across different market segments have revealed that security within cloud environments is a major concern and is viewed as a barrier to broad scale cloud adoption. A number of industry associations, analysts, and security experts have also weighed in on the importance of network encryption within virtualized and cloud environments.
“We believe that network encryption in the cloud is a critical component of cloud adoption,” says Luciano “J.R.” Santos, research director for the CSA (Cloud Security Alliance). “Our guidance is that sensitive and regulated workloads should be encrypted even within the cloud provider’s network and advise this as a security best practice for those who adopt cloud based technologies.”
One of the fundamental building blocks required for practical cloud network security is enabling scalable encryption that preserves full mesh connectivity and performance among hundreds or even thousands of virtual servers. Certes Networks brought tunnel-less encryption to the cloud earlier this year with the announcement of the vCEP, which has recently achieved VMware Ready status.
This latest advancement in practical cloud security allows vCEP policy integration with third-party cloud orchestration tools. Integration with these tools will allow encrypted cloud networks to be deployed and modified automatically as changes to the virtual network and workloads occur. Where the vCEP solved the issues with scalable encryption, the availability of the REST API solves the problem of establishing and maintaining policy enforcement in real time within large scale dynamic computing environments. Without central coordination, policies on different enforcement points can become out of sync, providing a window of vulnerability in which an attacker may be able to break through.
The Certes TrustNet Manager REST API will be generally available beginning in October. Customers interested in participating in beta trials should contact Certes Networks.
