When we first started the company, the world was a different place. The movement toward software-based distributed infrastructure within the data center was picking up steam. Compute had been re-invented by virtualization, and it was clear that networking and storage were next. Traditional data center infrastructure was being transformed by distributed systems into scheduled infrastructure – whether on-prem in private clouds or outside the enterprise in public clouds.
However, security was another story. Virtual security, at that point, meant a software copy of a physical perimeter appliance. But where in the world of scheduled infrastructure is the perimeter? In the cloud, workloads live transient lives. They’re spun up, moved, cloned, moved again, and destroyed all through real-time automation. The whole notion of a clearly defined perimeter was dead. Yet, the traditional security companies clung to old technology models rather than embrace this new world.
We created vArmour to redefine security for this new world of cloud. First off, the security model itself needed to change. De-perimeterization needed to be embraced and controlled. That meant moving the trust boundary down to each individual workload and asset in the data center. This effectively creates a micro-perimeter with full L7 controls around each individual workload; one that can follow the work through its lifecycle. While this model would enable security professionals to regain control over their infrastructure, it was technically impossible with traditional approaches.
Solving this technical riddle involved embracing new world architectures – distributed systems. Distributed systems scale horizontally, not vertically. Distributed systems are API-driven, and thereby extensible and automatable. These properties had been used to great effect by companies like Google and SalesForce in the application space, and were being used to disrupt the rest of the infrastructure space. By using the principles of distributed systems, we could develop a system that delivered enterprise-grade security in a world without perimeters. This was the founding innovation of the company.
We publically launched the company in September of 2014, and started introducing these ideas to the world. Since then, it’s been very exciting to see customers embrace this idea of distributed security systems. The diagram below illustrates a simplified example of vArmour’s distributed security architecture, and shows how it can be used to create policies across physical, virtual, and cloud workloads.
At vArmour, we will continue to innovate and protect our customers’ intellectual property and critical data. Along the way, as we’ve done throughout our careers, we’re also protecting our own intellectual property. With four patents already issued by the US Patent and Trademark Office and 14 additional patents filed, vArmour’s expanding portfolio will cover the micro-segmentation of virtualized and physical workloads enabled by vArmour’s distributed security technology.
It’s clear now, that in a world without perimeters, security is not about packaging up software copies of hardware perimeter appliances. Security is about using distributed systems to secure workloads wherever they are, and vArmour is leading the charge.
To learn more about how vArmour is leading the charge in securing the world without perimeters, go to www.varmour.com to read our new white paper: Micro-segmentation for Cloud-scale Security.