I see HPE gaining invaluable mind share across enterprises already familiar with HPE portfolio capabilities and giving extra consideration to Project Aurora in their assessment of zero-trust cloud solutions, due in good part to its immutable source assurances. This approach involves an anchor for the boot process rooted in hardware that cannot be updated or modified.
HPE’s Project Aurora builds upon HPE’s Silicon Root of Trust approach, which is HPE’s hardware-validated boot process built to ensure a system can only be started using code from an immutable source. HPE is emphasizing that it has standardized its security portfolio by measuring, attesting, and verifying everything – from silicon to cloud. For example, in June HPE launched Project Aurora built specifically to bring zero-trust to the HPE GreenLake edge to cloud platform. The BeyondCorp Enterprise enhancements are critical as Google Cloud needed to counter the recent zero-trust initiatives of key cloud rivals. Google’s BeyondCorp Enterprise Enhancements Are Critical in the Face of Cloud Rival Activity The set of attributes are in public preview and include time and date restrictions, credential strength leveraging two-step verification, and Chrome browser zero-trust activation capabilities. The ability to leverage new attributes gives administrators more ways to build fine-grained access control policies to safeguard their applications and Google Cloud resources. Google Cloud announced the availability of even more zero trust access conditions in Access Context Manager, the zero-trust policy engine behind BeyondCorp Enterprise. When a request is made for an on-premises app, IAP authenticates and authorizes the user request and then routes the request to the connector.Įasy to configure custom access policies. Customers can secure HTTP or HTTPS based on-premises applications (outside of Google Cloud) with IAP (Identity Aware Proxy) by deploying a connector.
Google Cloud is giving customers the choice on how to connect to on-premises resources with its now generally available On-prem connector. Google Cloud is now offering native support for client certificates for eight types of VPC-SC resources: GCE, GKE, PubSub, Spanner, Cloud KMS, GCS, BigQuery, and Logging, with more to follow.
Using certificate-based access protects against credential theft or accidental exposure by only granting when credentials plus a verified device certificate are presented. Certificate-based access for GCP (Google Cloud Platform) APIs through VPC Service Controls (VPC-SC) is now GA (generally available). The collaboration produced three new features consisting of:Ĭertificate-based access via VPC-SC. Since BeyondCorp Enterprise’s launch, Google Cloud has collaborated with clients to find ways to improve and advance their overall zero trust journey. Google Cloud’s BeyondCorp Enterprise Offering Enhancements the Result of Client-Focused Collaboration With BeyondCorp Enterprise, Google is using itself as a prime reference and offering its zero-trust security proposition to organizations with the goal of kick-starting their own zero-start journey and fulfilling the company’s objective of supporting security innovation without disrupting security operations. In sum, when it comes to BeyondCorp-based security, Google drinks its own punch and eats its own chow. In January, Google introduced its zero-trust product solution, BeyondCorp Enterprise, which augments and replaces BeyondCorp Remote Access.įor over a decade, Google has internally implemented BeyondCorp to protect its own applications, data, and users. Google Cloud’s BeyondCorp Enterprise Zero Trust Enhancements Are Designed to Boost Customer TrustĪnalyst Take: Google Cloud’s BeyondCorp Enterprise Zero Trust enhancements are three appealing new features aimed at using zero trust capabilities to improve overall security and deliver a more satisfactory user experience. The three new features include certificate-based access via VPC-SC, On-prem connector, and easy to configure custom access policies. The News: Google Cloud’s BeyondCorp Enterprise Zero Trust enhancements feature three new BeyondCorp Enterprise features designed to help its customers provide their users simple and secure access to key applications.