Security Experts:

Connect with us

Hi, what are you looking for?


Cloud Security

VMware Unveils New Security Features, Enhancements for NSX, SD-WAN, Secure State

VMware on Tuesday unveiled several new security features and enhancements for its NSX, SD-WAN and Secure State products, along with a new zero trust architecture for digital workspaces.

VMware on Tuesday unveiled several new security features and enhancements for its NSX, SD-WAN and Secure State products, along with a new zero trust architecture for digital workspaces.

VMware’s acquisition of endpoint security firm Carbon Black was completed last month and VMware will start offering new Carbon Black Cloud solutions to its customers, including next-generation antivirus, detection and response, endpoint query and remediation, advanced threat hunting, workload protection, and security analytics solutions. The company also announced that Dell has agreed to make Carbon Black Cloud, along with Secureworks and Dell Trusted Devices, the preferred endpoint security product for commercial customers.

For its NSX software-defined network (SDN) virtualization and security platform, VMware announced the introduction of distributed intrusion detection and prevention (IDS/IPS) capabilities, along with a new Federation capability.

The Federation capability will enable organizations to deploy and enforce security policies generated by NSX Intelligence across multiple data centers.

As for VMware SD-WAN, the company announced new features and capabilities for the built-in branch firewall, including simpler policy definition, improved performance, and logging.

In the case of Secure State, VMware is developing a new API, the Secure State Findings API. Secure State is designed to provide deep visibility into cloud service relationships and helps correlate risk introduced by misconfigurations and threats. The new API should make it easier for customers to continuously verify the security and compliance posture in the continuous integration and delivery (CI/CD) pipeline.

Finally, VMware has published a zero trust security architecture for the digital workspace, as implemented in the company’s Workspace ONE platform. The architecture specifies how device management and compliance, app tunneling and proxying, conditional access, risk analytics, and automated remediation and orchestration can be brought together for a zero trust security model.

All of the new features and capabilities were unveiled at the company’s VMworld Europe event taking place these days in Barcelona, Spain.

The Carbon Black Cloud solutions, the new SD-WAN firewall capabilities, and the Secure State Findings API are expected to become available in the next few months, while the new NSX features should become available in beta in the next few months.

Related: New VMware Firewall Focuses on Known Good Behavior

Related: Many VMware Products Affected by SACK Linux Vulnerabilities

Written By

Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Management & Strategy

Industry professionals comment on the recent disruption of the Hive ransomware operation and its hacking by law enforcement.

Identity & Access

Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the...

Cloud Security

VMware vRealize Log Insight vulnerability allows an unauthenticated attacker to take full control of a target system.

Management & Strategy

Tens of cybersecurity companies have announced cutting staff over the past year, in some cases significant portions of their global workforce.


Out of the 335 public recommendations on a comprehensive cybersecurity strategy made since 2010, 190 were not implemented by federal agencies as of December...

Application Security

A CSRF vulnerability in the source control management (SCM) service Kudu could be exploited to achieve remote code execution in multiple Azure services.

Management & Strategy

Microsoft making a multiyear, multibillion dollar investment in the artificial intelligence startup OpenAI, maker of ChatGPT and other tools.