High Assurance Edition

Concerns about the security of cloud computing environments top the list of reasons for customers delaying or avoiding adoption of cloud computing services. This can be seen in studies published by Forrester Research, IDC, and many others. 

Security is a key competitive advantage for hosting providers when competing for cloud services customers. Existing customers who already use your dedicated hosting services have a high level of trust in your facilities and infrastructure. Unlike a pure-play public cloud service, a service provider has a trusted relationship and infrastructure which, when combined with Enomaly’s patented security functionality, can deliver a highly secure Cloud Computing service – commanding a higher price point than commodity public cloud providers. 

Enomaly ECP High Assurance Edition extends the featureset of the Service Provider Edition with a unique set of high-security capabilities well suited to meet the needs of customers who require a higher level of security than that offered by any of the commodity cloud computing services available in the marketplace.

As enterprise users increasingly deploy security-sensitive applications on the cloud, ECP High Assurance Edition provides the previously-missing security capabilities enabling enterprises to trust in your public cloud environment to the same degree that they are able to trust the computing platforms within conventional datacenters. 

Full Integrity Verification

Enomaly’s Trusted Cloud platform provides continuous security assurance by means of unique, hardware-assisted mechanisms. Enomaly ECP High Assurance Edition provides both initial and ongoing Full-Stack Integrity Verification to enable customers to receive cryptographic proof of the correct and secure operation of the cloud platform prior to running any application on the cloud.

Full-Stack Integrity Verification provides the customer with hardware-verified proof that the cloud stack (encompassing server hardware, hypervisor, guest OS, and even ECP itself) is intact and has not been tampered with. Specifically, the customer obtains cryptographically verifiable proof that the hardware, hypervisor, etc. are identical to reference versions that have been certified and approved in advance. The customer can therefore be assured, for example, that:

• The hardware has not been modified to duplicate data to some storage medium of which the application is not aware
• No unauthorized backdoors have been inserted into the cloud managment system
• The hypervisor has not been modified (e.g. to copy memory state)
• No hostile kernel modules have been injected into the underlying OS

This capability therefore enables customers to deploy applications to public clouds with confidence that the confidentiality and integrity of their data will not be compromised.