Gigamon pre-encryption redefines traffic monitoring capability for hybrid cloud organizations
GigamonGigamon, the leader in deep monitoring, announces Gigamon Precryption, an automated solution that gives unobstructed visibility into encrypted traffic across virtual machine (VM) or container workloads. By enabling users to perform advanced threat detection, investigation, and response, Gigamon Precryption brings IT teams out of the dark when it comes to threat activity hidden within encrypted traffic.
As virtual environments become more complex, the nature of their traffic expands along with it. Investigating traffic for threat actors – in a public cloud, private cloud, or multi-cloud environment – is as tedious and complex as it is expensive.
“There is a giant elephant in the room that no one is addressing, which is a huge blind spot that organizations have had for a very long time,” said Bassam Khan, VP of Product Engineering and Technical Marketing at Gigamon. “This is about examining traffic that is running laterally within a virtual environment.”
According to the Gigamon 2023 Hybrid Cloud Security Surveymore than 70% of IT and Security 1,000 leaders reported that they do not inspect encrypted data flowing through their hybrid cloud infrastructure.
Gigamon Precryption addresses this security gap by detecting threat activity—such as lateral movement, malware distribution, and data exfiltration within virtualized and cloud applications and containers—that was previously hidden in cryptographic traffic.
Through strength eBPF Technology, Gigamon Precryption captures traffic before encryption or after decryption. This technology works independently of the application and without the need for key management, reducing the operational challenges expected from agent-based approaches, according to Gigamon.
“Gigamon Precryption technology addresses the critical security challenge of our ability to see certain encrypted traffic, which has the potential to expose our multi-cloud environment and business to unseen threats,” said Michael McCann, Information Systems Network Manager at Foxwoods Resort Casino. . “When I realized that Gigamon Precryption removes the complexity of key management and enables us to detect threats with a single view, it became clear that this technology would redefine our security operations and significantly enhance our security posture.”
Gigamon Precryption provides complete visibility into encrypted traffic across virtual machines or container workloads, and works seamlessly with modern encryption methods, including TLS 1.3 and TLS 1.2 with Perfect Forward Secrecy (PFS). The solution also works with legacy encryption methods, such as TLS 1.2 without PFS.
Benefits of Gigamon Precryption include reduced operational complexity, reduced overhead, and efficient TLS description offloading. This not only gives wider access, but reduces pressure on developers while enhancing decoding ability and performance.
For organizations working with personally identifiable information (PII), Gigamon Precryption hides this sensitive traffic from view to adhere to compliance policies.
“What’s really exciting for us and the customers we’ve worked with so far is the new ability to scan the threat actor and stay ahead of them,” Khan said. “Threat actors operate in the dark. Until now, virtual traffic moving sideways, moving around within the workload has been a really bad blind spot. (Gigamon Precryption) opens up a world of possibilities from a defense perspective and allows our customers to stay one step ahead.”
To learn more about Gigamon pre-coding, please visit the website https://www.gigamon.com/.