VIRTUAL DESKTOP STRATEGIES

Sophos Firewall Unleashes Xstream Power for Distributed and Enterprise Edge Computing

Sophos | November 22, 2022 | Read time : 05:24 min

Sophos
Sophos, a global leader in innovating and delivering cybersecurity as a service, today introduced new Sophos Firewall capabilities to better meet the complex and demanding needs of distributed and enterprise edge computing. Sophos Firewall now delivers performance enhancements that accelerate encrypted traffic inspection, dynamic traffic routing for Internet Protocol version 6 (IPv6), added resiliency with software-defined wide area network (SD-WAN) load balancing and high-availability enhancements, and seamless integration with Microsoft Azure Active Directory.

“One of the key benefits of the Xstream architecture and Flow Processors is that they are programmable. This means that while other firewalls get slower over time, we can increase performance, even when we add new features and capabilities, Our design ensures customers’ investment in Sophos Firewall is future-proofed and enables seamless transition to a cloud-enabled world. SD-WAN and Secure Access Service Edge (SASE) demand a more efficient platform, which is not only resilient but also makes day-to-day management easier and faster than ever.”

Daniel Cole, vice president of network security product management at Sophos

The effective and reliable assessment of network traffic is critical in protecting against threat actors, as evidenced in Sophos’ 2023 Threat Report that published today. Distributed offices, remote workforces, cloud workloads, custom-built legacy apps, and a growing reliance on global software-as-a-service providers create a configuration and risk management headache for network security managers.

Sophos Firewall now provides the performance, protection and resiliency that distributed enterprises require, while simplifying the management of complex networks. Benefits include:

Advanced performance and protection: A new high-performance dynamic routing engine and Xstream Transport Layer Security (TLS) FastPath acceleration improves encrypted traffic inspection while also adding headroom for traffic that requires deep-packet inspection; the asymmetric cryptographic capabilities within Xstream Flow Processors – included in every XGS Series appliance – enable TLS inspection on even the most demanding networks
Added resiliency and peace of mind: New SD-WAN load balancing for performance and reliability in the event of an internet service providers’ (ISP) outage along with enhancements to high-availability clusters ensure maximum business continuity and uptime for mission critical networks
Improved ease of management: Managing network security is easier than ever with new Microsoft Azure Active Directory integration for seamless administrator single sign-on and new host and service object search
Sophos Firewall integrates with Sophos ZTNA (zero trust network access) under one unified management plane and is a key pillar of Sophos’ SASE strategy, providing a more simplified, scalable and secure solution over traditional remote-access virtual private networks (VPN). The network solution is also part of the Sophos Adaptive Cybersecurity Ecosystem, which integrates Sophos’ entire portfolio of products, services and Sophos X-Ops threat intelligence for faster and more contextual and synchronized detection, protection and response.

Availability
Sophos Firewall is available for immediate purchase exclusively through Sophos’ global channel of partners and Managed Service Providers (MSPs). It is easily managed in the cloud-native Sophos Central platform alongside other solutions, where users can oversee installations, respond to alerts and track licenses and upcoming renewal dates via a single, intuitive interface, or by Sophos Managed Detection and Response (MDR).

What Analysts, Channel Partners and Customers Say
“With their latest firewall release, Sophos has leveraged the flexibility of their Xstream architecture to deliver improvements in performance for VPN throughput and more efficient handling of TLS encrypted traffic, which is vitally important in today’s encrypted world,” said Christopher Rodriguez, research director of IDC’s Security & Trust practice. “They’ve also completed the build-out of their networking feature set to provide an integrated SD-WAN solution. Combined with other recent enhancements to their secure access portfolio like ZTNA as a Service, they’re positioning to provide the features and capabilities that larger distributed enterprise organizations demand, while also building out a SASE strategy that will appeal to organizations of all sizes.”

“As a multinational technology consulting firm that’s relied on Sophos Firewall since it was first incepted, Seidor Networks intimately knows the offering is a must-have solution for protecting against malware and other unwanted network traffic,” said Sean Hancock, ISP manager at Seidor Networks. “Sophos is continuously innovating and adding new features that are industry best. This new version of Sophos Firewall raises the bar even higher with unrivaled network protection and performance; and when you pair Sophos Firewall with Sophos XDR, the results are truly next level as endpoints and firewalls share real-time threat intelligence for further improved network visibility and lateral movement control.”

“The new Sophos Firewall software has multiple advantages for all of our customers,” said Marc Hurrelmann, chief executive officer at Midland IT. “Many of the features added have been designed to address the challenges that larger organizations are facing with implementing SD-WAN, optimizing performance, scaling their network, improving resiliency and up-time, and enhancing management efficiency. Smaller organizations will benefit from all the added value packed into Sophos Firewall with better performance, protection, networking, and management.”

About Sophos
Sophos is a worldwide leader and innovator of advanced cybersecurity solutions, including Managed Detection and Response (MDR) and incident response services and a broad portfolio of endpoint, network, email, and cloud security technologies that help organizations defeat cyberattacks. As one of the largest pure-play cybersecurity providers, Sophos defends more than 500,000 organizations and more than 100 million users globally from active adversaries, ransomware, phishing, malware, and more. Sophos’ services and products connect through its cloud-based Sophos Central management console and are powered by Sophos X-Ops, the company’s cross-domain threat intelligence unit. Sophos X-Ops intelligence optimizes the entire Sophos Adaptive Cybersecurity Ecosystem, which includes a centralized data lake that leverages a rich set of open APIs available to customers, partners, developers, and other cybersecurity and information technology vendors. Sophos provides cybersecurity-as-a-service to organizations needing fully-managed, turnkey security solutions. Customers can also manage their cybersecurity directly with Sophos’ security operations platform or use a hybrid approach by supplementing their in-house teams with Sophos’ services, including threat hunting and remediation. Sophos sells through reseller partners and managed service providers (MSPs) worldwide. Sophos is headquartered in Oxford, U.K.

Spotlight

Virtualization and cloud computing are broadly similar technologies, but they each have notable differences which business decision makers need to know so that they can choose the right option for their company.

Spotlight

Virtualization and cloud computing are broadly similar technologies, but they each have notable differences which business decision makers need to know so that they can choose the right option for their company.

Related News

VIRTUAL SERVER INFRASTRUCTURE

Hewlett Packard Enterprise Introduces Next-Generation Compute Engineered for a Hybrid World

Hewlett Packard Enterprise | November 03, 2022

Hewlett Packard Enterprise announced a next generation compute portfolio that delivers a cloud operating experience designed to power hybrid environments and digital transformation. The new HPE ProLiant Gen11 servers provide organizations with intuitive, trusted, and optimized compute resources, ideally suited for a range of modern workloads, including AI, analytics, cloud-native applications, graphic-intensive applications, machine learning, Virtual Desktop Infrastructure (VDI), and virtualization. “The foundation of any hybrid strategy is compute, HPE Compute brings businesses closer to the edge, where data is created, where new cloud experiences are delivered, and where security is integral. The new HPE ProLiant Gen11 servers are engineered for the hybrid world to deliver an intuitive cloud operating experience, trusted security by design, and optimized performance for workloads.” Neil MacDonald, executive vice president and general manager, Compute, at HPE VIDEO: Be data-first: Next generation HPE ProLiant – engineered for your hybrid world Intuitive cloud operating experience On HPE ProLiant servers, an HPE GreenLake for Compute Ops Management subscription provides a cloud-native management console. This increases operational efficiency by securely automating the process to access, monitor, and manage servers, no matter where the compute environment lives. The console provides simple, unified, and automated capabilities to allow customers to control their compute with global visibility and insight. Customers can also easily onboard thousands of distributed devices and benefit from faster server firmware updates to focus efforts on business operations, and not on managing complex IT infrastructure. HPE GreenLake for Compute Ops Management also includes carbon footprint reporting for customers to view emission metrics, from individual servers to full compute environments, to monitor energy usage. Trusted security by design HPE continues to lead and deliver secure infrastructure, from edge to cloud, starting at the silicon level with the HPE Silicon Root of Trust, an industry-exclusive security capability that protects millions of lines of firmware code, from malware and ransomware, with a digital fingerprint that is unique to the server. Today, the HPE Silicon Root of Trust secures millions of HPE servers around the world. The next-generation HPE ProLiant servers build on this security innovation with the following new features to protect data and systems: Ensure verification and authentication for device components with the new version of the HPE Integrated Lights-Out (iLO), with iLO6. ILO is a remote server management software that enables customers to securely configure, monitor, and update HPE servers seamlessly. The latest version features new authentication using the Security Protocol and Data Model (SPDM), a key security capability in servers for authenticating and securely monitoring devices in an open standards-based approach. Prevent alterations to unique server identity access with the inclusion of platform certifications and Secure Device Identity (iDevID) by default. Gain an additional layer of authentication by monitoring a secure boot and system state through the Trusted Platform Module (TPM). Adopt the highest level of security through the HPE Trusted Supply Chain. The HPE Trusted Supply Chain advances end-to-end security with certified servers that feature hardened data protection during the manufacturing process. Recently, HPE extended options for certified servers, from US-based factories, to produce and ship worldwide.1 Optimized performance for any workload As organizations run more demanding workloads, including AI, machine learning, and rendering projects, they require optimal compute and accelerated compute performance. The next-generation HPE ProLiant servers are optimized to deliver high performance on an organization’s most data-intensive workloads and support a diverse set of architectures, including 4th Generation AMD EPYC™ processors, 4th Gen Intel® Xeon® Scalable processors, and Ampere® Altra® and Ampere® Altra® Max Cloud Native Processors. Compared to the previous generation, the new HPE ProLiant Gen11 servers support twice as much I/O bandwidth for the most demanding applications, 50% more cores per CPU for improved workload consolidation, and 33% more high-performance GPU density per server to support AI and graphic-intensive workloads. Service providers, and enterprises that are embracing cloud-native workloads, require dedicated, cloud-native compute to deliver agile and extensible capabilities to drive innovation. In June 2022, HPE announced that it was the first tier-one server provider to offer compute with optimized cloud-native silicon, using Ampere® Altra® and Ampere® Altra® Max Cloud Native Processors in the new HPE ProLiant RL300 Gen11 server. Delivering a pay-as-you-go consumption model with HPE GreenLake Organizations looking to transition from one generation to the next, can adopt HPE’s next-generation compute through a traditional infrastructure purchase or through a pay-as-you-go model with HPE GreenLake. HPE GreenLake is an as-a-service platform that enables customers to accelerate data-first modernization and provides over 70 cloud services that can run on-premises, at the edge, in a colocation facility, and in the public cloud. Additionally, through HPE Financial Services (HPEFS), customers can convert existing technology assets into capital to purchase new or upgraded technology. Expanding the customer experience with new services Through HPE Pointnext Services, an award-winning team of over 15,000 experts, customers adopting the HPE ProLiant Gen11 servers can leverage in-depth global expertise to deploy next-generation HPE ProLiant servers and create new experiences, gain real-time insights from their data, and modernize IT to unlock value. Today, HPE unveiled enhancements to its customer experience, supporting HPE ProLiant Gen11 servers, including: HPE Pointnext Complete Care Secure Locations offers customers assigned experts to deliver support to locations where access, connectivity as well as electronic and verbal communications, are subject to specific security measures. HPE Expert on Demand provides customers with access to services professionals with dedicated expertise related to HPE’s next-generation compute offerings. HPE Support Center, which provides online services and a support platform, has been enhanced to include greater collaboration, case management, enhanced virtual agent troubleshooting and a new digital insights dashboard. Support for HPE’s next-generation compute has been extended from three to five years, to up to seven years. Availability HPE ProLiant Gen11 servers featuring 4th Generation AMD EPYC™ processors will be available to order worldwide starting on November 10, and available through the HPE GreenLake cloud platform. The HPE ProLiant RL300 Gen11 server using Ampere processors is available to order worldwide today. All HPE ProLiant servers can be purchased through HPE and HPE’s channel partners. About Hewlett Packard Enterprise Hewlett Packard Enterprise (NYSE: HPE) is the global edge-to-cloud company that helps organizations accelerate outcomes by unlocking value from all of their data, everywhere. Built on decades of reimagining the future and innovating to advance the way people live and work, HPE delivers unique, open and intelligent technology solutions as a service. With offerings spanning Cloud Services, Compute, High Performance Computing & AI, Intelligent Edge, Software, and Storage, HPE provides a consistent experience across all clouds and edges, helping customers develop new business models, engage in new ways, and increase operational performance. For more information, visit: www.hpe.com Intel, the Intel logo, and other Intel marks are trademarks of Intel Corporation or its subsidiaries. HPE ProLiant servers – Customer Quote Sheet Fernando Hortal, CTO, Pleiades “At Pleiades, our mission is to assist companies in adopting new technologies and solutions through our technology services, which include architecting labs for proof-of-concepts, and training. Having high-performing, reliable, secure and efficient compute is key to optimizing our business. The new HPE ProLiant Gen11 server is already more powerful that anything we have experienced in the data center, and through the new HPE iLO6, we have gained more control and security of our devices to guarantee the integrity of our compute environment. We look forward to using these powerful capabilities to continue innovating and enabling new workloads.” Christian Sack, Lead System Architect, Canon “At Canon, our customers expect the highest level of reliability, performance and security due to their mission critical workload. That is why we are delighted to partner with HPE to adopt next-generation HPE ProLiant servers. This new generation will deliver all the capabilities we rely on from HPE, but with unprecedented levels of performance, simplified management and enhanced security.” Vasco Portugal, CEO and Co-Founder of Sensei “At Sensei, we are committed to transforming retail to deliver a seamless shopping experience for customers while also optimizing operations with automated, cashier-less stores. In partnership Through our global OEM partnership with HPE, and using its HPE ProLiant servers that delivers high-performance and versatility to support a range of workloads, we have successfully driven deployed our proprietary AI-enabled applications software and hardware platform that turns physical stores autonomous and cashierless, while digitizing store operations and boosted inventory efficiencies. We look forward to the new HPE ProLiant Gen11 servers, that will provide even greater performance and flexibility to innovate with AI and machine learning.” Craig Sinasac, Vice-President Development & Technology at Velocix "We provide class-leading, carrier-grade streaming technology that our customers use to deliver video services to millions of people around the globe. Our software runs on HPE ProLiant servers to maximise performance, minimise power consumption, and achieve the rock-solid reliability required to stream high-quality video content with the lowest possible latency. We look forward to adding the upcoming HPE ProLiant Gen 11 servers to our portfolio to further extend our performance and flexibility advantage.” Nate Engum, Information Systems, Kimley-Horn “Our greatest difficulty was transferring huge data files to our branch offices for updates, and HPE GreenLake for Compute Ops Management solved this problem with a novel approach. Instead of pulling down the entire file, we could schedule updates and the system would download only the necessary data for that specific update. Overnight, the server update process went from about four hours to 45 minutes. That is a considerable improvement in terms of the operational impact of downtime.” Roger Hilton, Technical Advisor of Global Deployment, Infrastructure, & Integration, InterContinental Hotels Group (IHG) “We partnered with HPE and worked closely with their engineering team to help bring HPE GreenLake for Compute Ops Management to life. It allows me to rest easy as an IT professional because I no longer have to worry about a component failing or a firmware update breaking our infrastructure. Imagine being on vacation and pushing out firmware without interrupting your holiday. That’s what you get.” Michael Taylor, IT Director, Mercedes-AMG Petronas Formula One Team “We don’t have the luxury of time to relay data back to the factory to process and send results back to the track. We need the ability to process data and make those decisions faster, at the edge, and that is why the team deployed a mobile data center, based on HPE ProLiant servers, to provide our engineering team with the processing power required to compute and visualize data at-scale. There is no doubt that next-generation HPE ProLiant servers will provide the same level of reliability with even greater performance and capabilities to process data-intensive workloads at the edge to unlock insights in real-time.”

Read More

VIRTUAL DESKTOP TOOLS,SERVER VIRTUALIZATION

Introducing New Security and Management Features for D2iQ's Kubernetes Platform

D2iQ | January 05, 2023

D2iQ, a company that provides enterprise Kubernetes for cloud-native applications, has announced the release of D2iQ Kubernetes Platform (DKP) 2.4. The platform includes updates, new features, and expanded infrastructure support for major cloud service providers. It makes Kubernetes clusters easier to manage in hybrid, multi-cloud, and multi-cluster environments by improving security, adding more deployment options, and improving the user interface. With the release of DKP 2.4, D2iQ is making it easier for organizations to make the transition to cloud-native applications. DKP 2.4 also includes an enhanced Insights Engine, which provides self-service troubleshooting capability and automated alerts for identifying missing best practices and deprecated API versions in cluster configurations. With the release of DKP 2.4, D2iQ continues to offer users a complete Kubernetes platform that makes it easier to deploy and manage enterprise-level apps. "At D2iQ, our goal is to consistently improve the customer's experience running enterprise-scale Kubernetes on premises, in a public cloud, or in a hybrid environment. DKP Insights Engine is just one example of our ongoing innovation and focus on simplifying Kubernetes management to help customers succeed in their cloud-native journeys." D2iQ CEO and cofounder, Tobi Knaup Support for Kubernetes 1.24, Red Hat Enterprise Linux 8.6, Rook Ceph storage services, and better documentation for Konvoy Image Builder are some of the other features. In summary, the Kubernetes Platform 2.4 update offers a wealth of features and benefits that can improve the user experience when managing Kubernetes clusters in hybrid, multi-cloud, and multi-cluster environments. About D2iQ D2iQ is the leading provider of enterprise-grade cloud platforms, enabling businesses to embrace open-source and cloud-native innovations while delivering smarter Day 2 operations. D2iQ enables organizations to navigate and accelerate cloud-native journeys by providing enterprise-grade technologies, training, professional services, and support. D2iQ has unmatched experience driving some of the world's largest cloud deployments. D2iQ has the expertise, services, and technology to enable your success, whether you are deploying your first Kubernetes workload, optimizing your business analytics with Spark or Jupyter, or educating your developers on the benefits of cloud native. In addition to its headquarters in San Francisco, D2iQ has offices in London and Hamburg, Germany. Andreessen Horowitz, Hewlett-Packard Enterprise, Khosla Ventures, Koch Disruptive Technologies, Microsoft, and T. Rowe Price Associates, Inc. are among the investors in D2iQ.

Read More

SERVER VIRTUALIZATION

The End-User Experience Must Be the Top Consideration When Implementing Virtual Desktop Infrastructure, Says Info-Tech Research Group

Info-Tech Research Group | November 04, 2022

Global IT research and advisory firm Info-Tech Research Group has released a new blueprint titled Considerations for a Move to Virtual Desktops. The industry resource was created to assist IT professionals in considering virtual desktop infrastructure (VDI) or desktop as a service (DaaS). These solutions can increase user satisfaction, reduce IT complexity, decrease management and storage costs, and maintain a secure and effective environment for both the end user and the business. Info-Tech's new research analyzes the user experience data that the IT industry tracks but often doesn't use or even consider. VDI or DaaS users expect the user experience to be at least equal to that provided by a physical desktop and typically do not concern themselves with the underlying infrastructure. If the experience is less, it means IT has failed in the considerations for VDI/DaaS. "If employees are the competitive edge and key differentiators for a business, Infrastructure & Operations (I&O) has a duty of care to ensure that the employees' digital experience enables and does not impede the value of that asset," John Annand, principal director at Info-Tech Research Group Hybrid work environments and the security concerns that come with them have accelerated the move to VDI and DaaS solutions, but implementation comes with its own unique set of challenges to consider when deciding which solution is best suited for the business. In addition to considering the user experience, IT must also ensure productivity standards throughout the process, both strategically and tactically. Common obstacles IT departments may encounter include complicated shared infrastructure, inadequate in-house training, or insufficient staff to execute migration or manage post-migration activities such as governance and retention policies and other security, compliance, legal, and data classification concerns. Info-Tech Research Group recommends that organizations define their end goals, frame solutions based on end-user workloads, and understand the pros and cons to decide which solutions will best meet business needs. The new data-backed blueprint offers self-evaluation tools and questions IT leaders can ask themselves in order to accomplish these steps: Define and build your value hypothesis/proposition\ What is the business case? Who is championing the investment? Identify the project management team and stakeholders. Set goals to be achieved based on value. Identify KPIs and metrics to measure success. Identify use cases and personas Identify possible user friction (e.g., emotional, cognitive, interaction). Understand current infrastructure shortcomings and capabilities (e.g., network, security posture and tolerance, staffing needs, qualified technicians, end-user devices, etc.). Articulate use cases into functional and non-functional requirements Separate must-haves and nice-to-haves. Categorize requirements into identifiable functionality capabilities. Review your outputs and identify "gotchas" using the MECE (mutually exclusive, collectively exhaustive) principle. Conducting a self-evaluation of the business and understanding the strengths and weaknesses of in-house technical skills and business requirements will assist IT leaders in making the right decision when it comes to VDI or DaaS solutions. About Info-Tech Research Group Info-Tech Research Group is one of the world's leading information technology research and advisory firms, proudly serving over 30,000 IT professionals. The company produces unbiased and highly relevant research to help CIOs and IT leaders make strategic, timely, and well-informed decisions. For 25 years, Info-Tech has partnered closely with IT teams to provide them with everything they need, from actionable tools to analyst guidance, ensuring they deliver measurable results for their organizations. Media professionals can register for unrestricted access to research across IT, HR, and software and over 200 IT and Industry analysts through the ITRG Media Insiders Program.

Read More