HyTrust made moves to broaden security and compliance offerings for VMware Cloud Provider Program Partners with further integration of HyTrust solutions and VMware vCloud Director® (vCD). This enhanced offering builds on HyTrust's existing integration with NSX® and vCenter® with the ability to include discrete vCloud Director driven workload encryption for vCloud Director tenants. The solution utilizes Intel® Xeon® processors hardware-based security technologies to assist with the current needs of VMware Cloud Provider Program Partners who are committed to providing secure and regulatory compliant cloud offerings to their customers.
As customers move to public and hybrid cloud environments, VMware Cloud Provider Program Partners must ensure a level of data security that allows them to achieve scale efficiencies and to operate in today's round-the-clock business environment. HyTrust, leveraging Intel technology, delivers critical partner services through regulatory compliance automation, unplanned outage prevention, data breach prevention across clouds and the enablement of new partner revenue streams, such as: Data Sovereignty, Data Geo-Fencing-As-A-Service, and Compliant Cloud Services.
With the new VMware vCloud Director for Service Provider integration, HyTrust provides a level of security and trust that enables the following:
Private and Hybrid Cloud Enforcement
VMware SDDC paired with HyTrust CloudControl, allow VMware Cloud Provider Program Partners to offer high quality secure service to their customers including:
Supporting authentication, enforcing policies and creating a separation of duties for a more secure system
Two-factor authentication and root password vaulting
Automated templates for PCI, NIST, FISMA, FIPS, HIPAA, SOX and FedRamp to enforce best practices and compliant configurations
Data Encryption Across Clouds
HyTrust DataControl encryption, hardware accelerated by Intel AES-NI, VMware Cloud Provider Program Partners can provide secure multi-cloud environments:
Intel® Data Protection Technology with AES-NI and Secure Key protects customer data in use, at rest and in motion, to as workloads move across clouds.
Supports multi-cloud environments and can encrypt VMware, Hyper-V or KVM VMs, offering zero-downtime encryption and dynamic re-key.
Privately owned keys and served from the customer's or CSP's own key management server instead of from a public cloud vendor.
HyTrust KeyControl key management is validated and 'VMware Ready' certified to serve keys for vSphere 6.5 VM encryption and vSAN 6.6 encryption.
Data/Geo-Fencing for Data Sovereignty
Leveraging Intel® technology, HyTrust DataControl enforces boundaries by enforcing controls for workload execution. HyTrust solutions provide a simple way to geo-fence and assure that critical workloads only execute on specific physical servers in specific data centers or private cloud locations.