“Security breaches are the norm,” says Shehzad Merchant, CTO of Gigamon. “The magnitude of these breaches are reaching an industrial scale right now. These attacks are having despite the fact that people are spending massive amounts of money on cybersecurity initiatives.”
Merchant says that several organizations are relying on perimeter-centric options for security, but it’s a broken model because today’s threats and malware are significantly different from those of the past.
GigaSecure aims to address this with its patent pending application session filtering (ASF) feature. As a GigaSmart application, the ASF can identify applications based on particular behaviors and patterns within packets. It then pulls the entire session, letting network operators forward “traffic of interest” to security devices.
“Today’s environment is focused on creating a backdoor channel for malware, which is different from old threats that used to move loudly and were easy to find,” Shezad says. “Today’s threats are low and slow. They take place over weeks and months. Malware-as-a-service is becoming a big offering these days, too. Once something is compromised, it’s rented out.”
Gigamon’s answer to the problem is to behave as if the network has already been breached. Detection and containment must take precedence over purely preventative models, Merchant says. He says GigaSecure offers five capabilities that give organizations back the power to protect their networks and shift the balance in their favor:
- Network wide reach for both physical and virtual appliances
- Metadata extraction for forensics
- Application isolation for targeted inspection
- Encrypted traffic visibility
- Inline and out-of-bound simultaneous support.
In a market where seemingly everyone has a visibility-as-a-security tool, Gigamon says GigaSecure is unique for giving users all of the above on one platform.
Visibility is quickly becoming synonymous with security, so what’s Gigamon’s end goal in regards to protection?
“Our objective is to provide a platform. Enough money and resources are being thrown into security solutions,” says Merchant. “That’s not our game, but we do want to provide a platform that will work with security vendors that can build the security ecosystem. It’s a symbiotic relationship.”
Gigamon has several security companies already signed on to act as partners with GigaSecure. Companies like Cisco, Cyphort, Symantec, Fortinet, and Splunk are are offering their support, to name a few.
GigaSecure is now generally available.