Bromium Secure Platform Watches for Endpoint Threats Across Networks | eWeek

Bromium Debuts Secure Platform to Improve Enterprise Security

Bromium
Jan 24, 2017
3 minute read
eWeek content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More

Security vendor Bromium announced its new Secure Platform technology on Jan. 24, providing organizations with new capabilities to correlate threat information from endpoint sensors, in an effort to defend against attacks.

According to Simon Crosby, Bromium co-founder and CTO, the Bromium Secure Platform technology marks the completion of the vision that the company first set out to achieve when it was founded in 2011 on the promise of enabling a Byzantine Fault Tolerant system, which is a Computer Science concept defining a system that is able to sustain arbitrary attacks or failures.

In a 2016 video with eWEEK, Crosby detailed how Bromium has evolved since its founding to help organizations protect their computer systems with its secure isolation approach. The Bromium technology makes use of a micro virtual machine (MicroVM), which is a Xen hypervisor virtualization-based approach that provides a high degree of isolation on endpoint devices.

With the new Bromium Secure Platform, data from multiple endpoint sensors is collected to provide an enterprise view of attacks.

“We’re using the endpoints as an army of sensors to immediately share information so we can protect the enterprise as a whole,” Crosby told eWEEK. “We do distributed learning across the network and we respond by circulating highly detailed threat information to every endpoint so it can better protect itself.”

Crosby explained that with Bromium Secure Platform there is now also a hunting capability that will enable enterprises to search for indicators of compromise that have been discovered after malware attacked other endpoints on a network.

A common challenge to correlating security events is that volume of security analysis data becomes unmanageable over time. Crosby emphasized that the information coming from the Bromium endpoint sensors is highly-accurate, which reduces the data volume.

“For example, one of our federal customers has 150,000 endpoints and we generate under 1 Megabit per second of data,” Crosby said. “So the business of correlating and searching is relatively simple.”

Crosby explained then when an attack takes place in a Bromium Micro-VM, full forensic information is made available to the Bromium Secure Platform. That means the system is aware of the specific registry entry that was changed and what the malware attempted to do. The Secure Platform’s database is then queried in real-time to see if any other sensor has ever seen anything similar.

Bromium Secure Platform is also able to help defend Windows Server infrastructure as well. Crosby said that the plan is to add Linux server support in the future. On servers, privilege escalation and memory based malware are increasingly common. Bromium sensors will look for external processes that come from an untrusted source. Those processes are then tracked with Bromium’s platform looking for potential risky behaviors.

Looking forward, the Bromium is preparing set to expand the reach of its security technology to bring its approach to more companies.

“To date, we’ve been selling to the Global Fortune 2000 companies,” Crosby said. “We’re going to make our products more broadly available to enterprises and come as far down-market as we can.”

Sean Michael Kerner is a senior editor at eWEEK and InternetNews.com. Follow him on Twitter @TechJournalist.

eWeek Logo

eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site's focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

Property of TechnologyAdvice. © 2026 TechnologyAdvice. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.