A new cloud security startup has emerged from stealth mode today, unveiling solutions specifically designed from the ground up to provide security for elastic cloud servers.
CloudPassage, headquartered in Menlo Park, California, is looking to help companies manage their own cloud security by offering a single, purpose-built solution for the cloud that delivers multiple layers of defense for cloud servers.
With the company launch, CloudPassage introduced its new line of server security and compliance products purpose-built for elastic cloud environments: Halo SVM (Server Vulnerability Management) and Halo Firewall.
Most compromises can be prevented by simple configuration changes, software patching or better firewall policies; but in an elastic cloud environment, the rate of growth and change are difficult for companies to manage.
The company’s Halo Firewall controls server attack surfaces by centralizing and automating host-based firewall management. The product provides customers with unified cloud-wide firewall policy management from a graphical web front-end, eliminating the untenable operational overhead and likely errors associated with manual host-based firewall management. Halo Firewall can automatically update individual host-based firewall configurations whenever cloud servers are added or removed – including server cloning or cloudbursting operations – with zero intervention by system administrators. It also helps address the issues of dynamic public-cloud IP addressing, a common firewall management complication cited by IaaS providers.
“Customers of our on-demand, enterprise-level email and social media marketing solutions have high standards for protecting their data and supporting their compliance needs,” said Tim McQuillen CIO and co-founder of StrongMail. “CloudPassage allows us to clearly communicate in exact technical terms how we secure our environments and deliver compliance verification as frequently as needed.”
The ability to create new servers in the cloud within seconds means IT departments can be faster and more agile, but it creates huge security problems. New copies of servers will duplicate all of the vulnerabilities and exposures that already exist, resulting in an increased attackable surface area on a company’s cloud server farm.
“Other server protection solutions that work in public clouds require painful deployment and management contortions,” said Carson Sweet, co-founder and CEO CloudPassage. “Because dozens of new servers can be created in seconds, through cloning and bursting, vulnerability and firewalling need to be done differently in the cloud; they need to be elastic.”
CloudPassage was co-founded by CEO Carson Sweet who previously served as the Principal Solutions Architect at RSA’s financial industry practice.
Read More on Cloud Security in SecurityWeek’s Cloud Security Section.

For more than 10 years, Mike Lennon has been closely monitoring the threat landscape and analyzing trends in the National Security and enterprise cybersecurity space. In his role at SecurityWeek, he oversees the editorial direction of the publication and is the Director of several leading security industry conferences around the world.
More from Mike Lennon
- Video: How to Build Resilience Against Emerging Cyber Threats
- Webinar Today: Understanding Hidden Third-Party Identity Access Risks
- Watch on Demand: Supply Chain & Third-Party Risk Summit Sessions
- Virtual Event Today: Supply Chain & Third-Party Risk Summit
- Ferrari Says Ransomware Attack Exposed Customer Data
- Webinar Today: How to Build Resilience Against Emerging Cyber Threats
- Make Your Picks: Cyber Madness Bracket Challenge Starts Today
- Cyber Madness Bracket Challenge – Register to Play
Latest News
- Anti-Bot Software Firm DataDome Banks $42M Financing
- Unpatched Security Flaws Expose Water Pump Controllers to Remote Hacker Attacks
- 500k Impacted by Data Breach at Debt Buyer NCB
- Chinese Cyberspies Use ‘Melofee’ Linux Malware for Stealthy Attacks
- Why Endpoint Resilience Matters
- Microsoft Cloud Vulnerability Led to Bing Search Hijacking, Exposure of Office 365 Data
- 3CX Confirms Supply Chain Attack as Researchers Uncover Mac Component
- UK Introduces Mass Surveillance With Online Safety Bill
