F5 on Thursday announced the launch of F5 distributed cloud service Application Infrastructure Protection (AIP), expanding its SaaS-based security portfolio. The new release is a cloud workload protection solution that will provide application observability and protection for cloud-native infrastructure.
AIP is built using technology acquired through Threat Stack and will be part of the F5 distributed cloud services portfolio launched earlier this year.
AIP will complement F5’s API security
F5 already has a service called API Security that helps organizations discover and map APIs, block unwanted connections, and prevent data leaks. AIP goes one step further, providing telemetry collection and intrusion detection for cloud-native workloads.
“Organizations are drowning in complexity, and end users demand great digital experiences, and those experiences require modern back-end infrastructure,” said Chris Ford, RVP of product and engineering at F5. “This year’s launch of F5 Distributed Cloud is designed to solve these problems and help customers protect their modern applications. The addition of F5 Distributed Cloud Application Infrastructure Protection (AIP) furthers this mission and provides security leaders with a strong presence throughout the modern era. Provides more observability in the environment.
0 of 16 minutes and 6 seconds volume 0%
AIP collects 120 billion events per day and runs them through rules and machine learning-based detection filters to provide real-time threat alerts across the entire infrastructure stack (cloud provider APIs, VM instances, containers, and Kubernetes).
Through behavior-based detection, distributed cloud AIP can identify insider threats, external threats and data exposure risks of modern applications.
According to Gartner, a Cloud Workload Protection Platform (CWPP), such as the F5 Distributed Cloud AIP, is defined as a workload-centric security product designed to protect server workloads in hybrid multi-cloud data center environments. CWPP provides consistent visibility and control for physical machines, virtual machines, containers, and serverless workloads regardless of their location.
AIP will protect, remediate and guide
F5 said its new AIP solution will use behavior-based protection to identify insider threats, external threats and data loss risks to applications. Detection and alerting of anomalous behavior affecting workloads will help organizations analyze whether to prevent or take any remedial action. F5 said AIP will complement existing signature-based security levels that are widely used.
F5 Distributed Cloud AIP is delivered as SaaS and supports a consumption-based model so enterprises pay for what they use. Additionally, customers have the option to add managed services, which can become an extension of their security team.
“Once deployed, AIP will begin collecting telemetry data for all events that occur within cloud workloads. Customers will be able to access insightful analytics, ensure compliance and increase their threat detection capabilities to improve their security posture,” Ford said.