VMware Partners with Carbon Black on Datacenter Security

VMware and Carbon Black, a provider of endpoint security solutions, are working on a new security offering that aims to protect datacenters by analyzing historical application data.

Expected to become generally available by February 2018, the new solution combines elements of AppDefense, VMware's recently launched application-whitelisting product, and Cb Defense, Carbon Black's cloud-based anti-virus solution. The result will be a "total endpoint security" solution for software-defined datacenters, according to a blog post late last week by Tom Barsi, senior vice president of business development at Carbon Black.

"This new solution provides an unprecedented level of security for applications running on VMware and will help businesses around the world (who are running more than 60 million virtual machines) achieve the highest levels of security," Barsi wrote. "It is also the industry's first security solution that fully leverages the unique properties of virtualization plus streaming prevention to prevent, detect and respond to advanced threats."

The new solution -- so far, neither company has revealed its official name in press materials -- will take a three-pronged approach to protecting applications inside the datacenter. First, it will establish and enforce "known good application behavior." Tapping AppDefense's whitelisting capabilities, the joint solution will be able to identify how a given organization's endpoints behave when they're secure and healthy. This intelligence includes being able to distinguish between endpoint changes that are legitimate and which are cause for suspicion.

Second, the solution will analyze an applications' historical behaviors to root out suspicious activities. "The solution will leverage application context to perform advanced behavioral threat detection to provide additional protection beyond least privilege. Any threat that isn't prevented by locking down the application's behavior will be picked up by Carbon Black's Streaming Prevention -- a next-gen threat detection technology that uses event stream processing to correlate multiple events over time to indicate the presence of a threat," Barsi wrote.

Third, the solution will allow users to automate their responses to attacks, whether it's taking a snapshot of an affected instance, or quarantining or suspending a compromised virtual machine.

The new joint offering represents an expansion of VMware's existing partnership with Carbon Black that allows AppDefense users to access Carbon Black's security platform, Predictive Security Cloud.

To promote their new offering, VMware and Carbon Black are embarking on a 15-city roadshow to give businesses a chance to test-drive the solution in person. Information on cities and dates is available on this page with sign-up. More information on the solution itself is available here.

About the Author

Gladys Rama is the senior site producer for, and


  • Microsoft Uniting OneDrive and SharePoint Admin Portals Next Month

    Microsoft is converging its OneDrive and SharePoint Admin Center management portals, with a consolidated portal expected to arrive for Microsoft 365 subscribers "through February."

  • Phishing Tops Concerns in Microsoft Study of Remote Work

    Potential phishing attacks were a top concern of most IT security professionals when organizations switched to remote-work conditions early last year.

  • How To Configure Windows 10 for Intel Optane Memory

    Intel's Optane memory technology can significantly improve the performance of your Windows 10 system -- provided you enable it correctly. A single mistake can render the system unbootable. Here's how to do it the right way.

  • Microsoft and SAP Enhance Partnership with Teams Integration

    Microsoft and SAP this week described continuing partnership efforts on Microsoft Azure, while also planning a Microsoft Teams integration with SAP's enterprise resource planning product and other solutions.

comments powered by Disqus