STOCK TITAN

Arista Launches Next Generation Multi-Domain Segmentation for Zero Trust Networking

Rhea-AI Impact
(Low)
Rhea-AI Sentiment
(Neutral)
Tags

Arista Networks announced the launch of its Arista MSS offering, a multi-domain segmentation service that aims to create a robust zero trust network without the need for endpoint software agents or proprietary network protocols. This solution provides effective microperimeters to restrict lateral movement in networks, reducing the impact of security breaches. The MSS solution offers standards-based network microsegmentation that is network-agnostic and endpoint-independent, avoiding operational complexity and cost challenges faced by existing solutions. Arista MSS combines three key capabilities to enable organizations to build microperimeters around each digital asset they seek to protect, offering stateless wire-speed enforcement in the network, redirection to stateful firewalls, and CloudVision for microperimeter management.

Arista Networks ha annunciato il lancio del suo servizio Arista MSS, un servizio di segmentazione multi-dominio che mira a creare una rete di fiducia zero robusta senza la necessità di agenti software sui dispositivi finali o di protocolli di rete proprietari. Questa soluzione offre microperimetri efficaci per limitare il movimento laterale nelle reti, riducendo l'impatto delle violazioni di sicurezza. La soluzione MSS fornisce microsegmentazione di rete basata su standard, indipendente dalla rete e dal dispositivo finale, evitando la complessità operativa e le sfide di costo delle soluzioni esistenti. Arista MSS integra tre capacità chiave per permettere alle organizzazioni di costruire microperimetri attorno a ogni asset digitale che desiderano proteggere, offrendo l'applicazione della politica di rete a velocità del cavo, il reindirizzamento ai firewall con stato e CloudVision per la gestione dei microperimetri.
Arista Networks anunció el lanzamiento de su oferta Arista MSS, un servicio de segmentación multi-dominio que busca crear una red de cero confianza robusta sin la necesidad de agentes de software en los endpoints o de protocolos de red propietarios. Esta solución proporciona microperímetros efectivos para restringir el movimiento lateral en las redes, reduciendo el impacto de las infracciones de seguridad. La solución MSS ofrece microsegmentación de red basada en estándares, agnóstica de la red y independiente de los endpoints, evitando la complejidad operativa y los desafíos de costos que enfrentan las soluciones existentes. Arista MSS combina tres capacidades clave para permitir a las organizaciones construir microperímetros alrededor de cada activo digital que buscan proteger, ofreciendo cumplimiento de la política de red a velocidad de cable sin estado, redirección a firewalls con estado y CloudVision para la gestión de microperímetros.
Arista Networks는 엔드포인트 소프트웨어 에이전트나 고유 네트워크 프로토콜이 필요 없는 강력한 제로 트러스트 네트워크를 생성하기 위해 목표로 하는 Arista MSS 서비스를 출시했습니다. 이 솔루션은 네트워크 내의 측면 이동을 제한하는 효과적인 마이크로퍼리미터를 제공하여 보안 위반의 영향을 줄입니다. MSS 솔루션은 네트워크 및 엔드포인트에 독립적이며, 기존 솔루션의 운영 복잡성과 비용 문제를 피하는 표준 기반의 네트워크 마이크로세그멘테이션을 제공합니다. Arista MSS는 조직이 보호하고자 하는 각 디지털 자산 주변에 마이크로퍼리미터를 구축할 수 있도록 세 가지 주요 기능을 결합하여, 네트워크에서 상태 없는 와이어 스피드 집행, 상태 있는 방화벽으로의 리디렉션, 마이크로퍼리미터 관리를 위한 CloudVision을 제공합니다.
Arista Networks a annoncé le lancement de son offre Arista MSS, un service de segmentation multi-domaines visant à créer un réseau à confiance zéro robuste sans nécessiter d’agents logiciels de point de terminaison ou de protocoles réseau propriétaires. Cette solution fournit des micro-périmètres efficaces pour restreindre les mouvements latéraux dans les réseaux, réduisant l'impact des violations de sécurité. La solution MSS propose une microsegmentation de réseau basée sur des standards, indépendante du réseau et des points de terminaison, évitant la complexité opérationnelle et les défis de coût des solutions existantes. Arista MSS combine trois capacités clés pour permettre aux organisations de construire des micro-périmètres autour de chaque actif numérique qu'elles cherchent à protéger, offrant une exécution en vitesse filaire sans état dans le réseau, la redirection vers des pare-feu à état et CloudVision pour la gestion des micro-périmètres.
Arista Networks kündigte den Start seines Arista MSS-Angebots an, ein Multi-Domänen-Segmentierungsdienst, der darauf abzielt, ein robustes Zero-Trust-Netzwerk zu schaffen, ohne dass Endpunkt-Software-Agenten oder proprietäre Netzwerkprotokolle erforderlich sind. Diese Lösung bietet wirksame Mikroumgebungen, um seitliche Bewegungen in Netzwerken einzuschränken und die Auswirkungen von Sicherheitsverletzungen zu reduzieren. Die MSS-Lösung bietet netzwerk- und endpunktunabhängige, standardbasierte Netzwerkmikrosegmentierung, die die betriebliche Komplexität und Kostenherausforderungen bestehender Lösungen vermeidet. Arista MSS kombiniert drei Schlüsselfunktionen, um Organisationen den Aufbau von Mikroumgebungen um jedes digitale Asset zu ermöglichen, das sie schützen möchten, und bietet netzwerkbasierte Durchsetzung in Drahtgeschwindigkeit, Umleitung zu zustandsbehafteten Firewalls und CloudVision für die Verwaltung von Mikroumgebungen.
Positive
  • Arista Networks' Arista MSS offering addresses the challenge of creating a robust zero trust network without the need for endpoint software agents or proprietary network protocols, providing effective microperimeters to restrict lateral movement in networks.

  • The MSS solution offers standards-based network microsegmentation that is network-agnostic and endpoint-independent, simplifying day-to-day operations and avoiding operational complexity and cost challenges faced by existing solutions.

  • Arista MSS combines three key capabilities to enable organizations to build microperimeters around each digital asset they seek to protect, offering stateless wire-speed enforcement in the network, redirection to stateful firewalls, and CloudVision for microperimeter management.

Negative
  • Despite the advantages of Arista MSS, the solution is still in trials and is expected to be generally available only in Q3 2024, which may delay immediate adoption for organizations looking to enhance their zero trust posture.

Microsegmentation solution mitigates threats across east-west lateral networks

SANTA CLARA, Calif.--(BUSINESS WIRE)-- Arista Networks (NYSE: ANET), a leading provider of cloud networking solutions, today announced a significant update to its Arista MSS (Multi-Domain Segmentation Service) offerings that address the challenge of creating a truly enterprise-wide zero trust network. Without the need for endpoint software agents and proprietary network protocols, Arista MSS enables effective microperimeters that restrict lateral movement in campus and data center networks and thus reduces the blast radius of security breaches such as ransomware.

Enterprise-wide Zero Trust Requires Effective Microsegmentation

Today’s distributed IT infrastructure with work-from-anywhere, the explosion of IoT devices and multi-cloud applications has upended the traditional security perimeter and led to a dynamic and unpredictable attack surface. To improve their defensive posture, organizations have embarked on zero trust efforts that require granular control of both north-south and east-west communication paths. Firewalls are simply not optimized to protect against all lateral movement, which would require a proliferation of security appliances, soaring costs, and an explosion of complex rule sets that still fail to protect against lateral movement.

To address this challenge, the Cybersecurity and Infrastructure Security Agency (CISA) “Zero Trust Maturity Model” recommends the adoption of microsegmentation for highly distributed, fine-grained enforcement through microperimeters. While many microsegmentation solutions are available on the market, both network and endpoint-based, they struggle with operational complexity, interoperability and portability challenges, and cost, which has limited their widespread adoption across the enterprise. As a result, zero trust efforts often stall.

Standards-based Network Microsegmentation

Arista MSS offers standards-based microsegmentation using existing network infrastructure while overcoming the challenges of existing solutions. MSS is network-agnostic and endpoint-independent. It avoids proprietary protocols and can thus seamlessly integrate into a multi-network vendor environment. The solution also does not require endpoint software, avoiding the portability limitations and operational complexity typical of agent-based microsegmentation solutions.

"We are very impressed with the potential of Arista's MSS microperimter segmentation technology,” said Evan Gillette, Security Engineering, Paychex Inc. “We view this technology as highly promising and believe it has the potential to transform our approach to security and segmentation from a traditional perimeter approach to a more distributed network-centric architecture. We are excited to be working with Arista to explore the possibilities of this innovative technology and its applications in our infrastructure.”

Arista MSS combines three capabilities that enable organizations to build microperimeters around each digital asset they seek to protect, whether in the campus or the data center. Arista MSS enables:

  • Stateless Wire-speed Enforcement in the Network: Arista EOS-based switches deliver a simple model for fine-grained, identity-aware microperimeter enforcement. This enforcement model is independent of endpoint type and identical across campus and data center environments, simplifying day two operations. Importantly, Arista MSS thus enables lateral segmentation that is often missing today and offloads the capability from firewalls that would have to be explicitly deployed for this purpose.
  • Redirection to Stateful Firewalls: Arista MSS can seamlessly integrate with firewalls and cloud proxies from partners such as Palo Alto Networks and Zscaler for stateful network enforcement, especially for north-south and inter-zone traffic. MSS thus ensures the right traffic is sent to these critical security controls, allowing them to focus on L4-L7 stateful enforcement while avoiding unnecessary hairpinning of all other traffic.
  • CloudVision for Microperimeter Management: Arista CloudVision powered by NetDL™ provides deep real-time visibility into packets, flows, and endpoint identity. This, in turn, enables effective east-west lateral segmentation. In addition, MSS dashboards within CloudVision ease operator effort to manage the microperimeters. MSS extends Arista’s Ask AVA™ (Autonomous Virtual Assist) service to provide a chat-like interface for operators to navigate the dashboard data and query and filter policy violations.

“As a bank, we are committed to delivering comprehensive financial products and solutions, while putting customer's data and security as our top priority. Security is also embedded in one of our core architectural principles when designing our data center networks,” said Komang Artha Yasa, Technology Division Head, OCBC. “Arista MSS completes our zero trust posture by working efficiently with our firewalls to microsegment our critical payment systems. Arista's approach is easy for us to adopt since it avoids software-based agents and still gives us interoperability across our entire data center environment.”

Zero Trust Ecosystem

Arista MSS seamlessly integrates with the broader Arista Zero Trust Networking solution, including Arista CloudVision, CV AGNITM and Arista NDR. It also integrates with industry-leading firewalls such as Palo Alto Networks, IT service management (ITSM) such as ServiceNow, and virtualization platforms such as VMware.

"Arista MSS has been a welcome addition to our zero trust strategy,” said Dougal Mair, Associate Director, Networks and Security at The University of Waikato. "The ability to provide an open but secure network for many users (e.g., students, faculty, guests), IT (e.g., laptops, printers), and IoT devices (including sensors and smart lighting) in a large environment was a huge challenge at the university. Arista MSS prevents any unauthorized peer-to-peer and lateral movement on our dynamic network."

Availability

Arista MSS is in trials now, with general availability in Q3 2024.

Visit us at booth #6453 in the North Hall at the RSA Conference. Learn more about multi-domain segmentation services at Arista’s webinar on May 9. For more insight on this announcement, read Jayshree Ullal’s blog here.

About Arista

Arista Networks is an industry leader in data-driven, client-to-cloud networking for large data center/AI, campus, and routing environments. Its award-winning platforms deliver availability, agility, automation, analytics, and security through an advanced network operating stack. For more information, visit www.arista.com.

ARISTA, AGNI, AVA, CloudVision, MSS and NetDL are among the registered and unregistered trademarks of Arista Networks, Inc. in jurisdictions worldwide. Other company names or product names may be trademarks of their respective owners. Additional information and resources can be found at www.arista.com. This press release contains forward-looking statements including, but not limited to, statements regarding the performance and capabilities of Arista’s products and services. All statements other than statements of historical fact are statements that could be deemed forward-looking statements. Forward-looking statements are subject to risks and uncertainties that could cause actual performance or results to differ materially from those expressed in the forward-looking statements, including rapid technological and market change, customer requirements and industry standards, as well as other risks stated in our filings with the SEC available on Arista's website at www.arista.com and the SEC's website at www.sec.gov. Arista disclaims any obligation to publicly update or revise any forward-looking statement to reflect events that occur or circumstances that exist after the date on which they were made.

Media Contact

Amanda Jaramillo

Corporate Communications

Tel: (408) 547-5798

amanda@arista.com

Investor Contact

Liz Stine

Investor Relations

Tel: 408-547-5885

liz@arista.com

Source: Arista Networks

FAQ

<p>What is the significance of Arista's MSS offering?</p>

Arista's MSS offering aims to create a robust zero trust network by providing effective microperimeters without the need for endpoint software agents or proprietary network protocols, addressing the challenge of lateral movement in networks.

<p>How does Arista MSS enable microsegmentation?</p>

Arista MSS offers standards-based network microsegmentation that is network-agnostic and endpoint-independent, simplifying operations and avoiding complexity and cost issues faced by other solutions.

<p>When will Arista MSS be generally available?</p>

Arista MSS is currently in trials and is expected to be generally available in Q3 2024, providing organizations with an opportunity to enhance their security posture.

Arista Networks

NYSE:ANET

ANET Rankings

ANET Latest News

ANET Stock Data

138.10B
1.03B
18.16%
69.6%
0.95%
Computer Hardware
Computer Communications Equipment
Link
United States of America
SANTA CLARA