Close
  • Latest News
  • Artificial Intelligence
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Artificial Intelligence
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Cybersecurity
    • Cybersecurity

    Menlo Security Turns to an Isolation Tactic to Limit Risks

    By
    Sean Michael Kerner
    -
    June 8, 2015
    Share
    Facebook
    Twitter
    Linkedin
      security

      Web-based attacks executed over Web browsers are a common attack vector. To combat such attacks, Menlo Security today officially emerged from stealth mode with its Isolation Platform, which makes use of Linux containers to limit risks.

      In addition to launching its Isolation Platform, Menlo Security announced that it has closed a $25 million Series B round of funding that included the participation of Sutter Hill Ventures, General Catalyst, Osage University Partners and Engineering Capital. Menlo Security had raised a $10.5 million in Series A funding in November 2014, bringing total funding to date for the company to $35.5 million.

      Amir Ben-Efraim, co-founder and CEO of Menlo Security, said that trying to determine good versus bad Web traffic is a failing proposition, which is what led to the creation of his company’s Isolation Platform.

      “When a user visits a Website, we take the traffic and run it through our Isolation Platform,” Ben-Efraim told eWEEK. “Inside the Isolation Platform we launch an isolated container, and that container goes to visit a Website on the user’s behalf.”

      Ben-Efraim explained that inside the container is a full-fledged browser that will load all of the content from a given Website, running it in full isolation on Menlo Security’s platform. To preserve the full user experience, Menlo Security has invented a technology it calls adaptive client-less rendering.

      The adaptive client-less rendering technology takes just the presentation layer of the browser that runs in Menlo Security’s Isolation Platform and enables what Ben-Efraim refers to as the browser rendering tree.

      “We take the browser rendering tree and synchronize it to the user’s native browser without any client software,” he explained. “So basically, the native browser—be it Safari, IE, Chrome or Mozilla, doesn’t matter—and the user gets a mirror image of what the Isolation Platform sees, effectively delivering a high-fidelity session while all the content is isolated on the Isolation Platform.”

      The container technology used by Menlo Security is open-source LXC (Linux Containers), which the company is using in a highly secured manner with locked-down configuration, Ben-Efraim said. Menlo Security is also using the open-source AppArmor mandatory access control technology to lock down processes. The whole system runs Ubuntu Linux, he added.

      “The only thing that’s allowed to run in our containers are the files and processes associated with the Web browser that we’re running and nothing else,” Ben-Efraim said.

      The idea of providing an isolation experience for browsers and other applications as a way of reducing risk is not a new one. Security vendor Quarri provides its user with secure, isolated browsers. Security vendor Bromium takes its isolation approach to the client device, providing isolation on an existing desktop.

      Ben-Efraim explained that his company’s Isolation Platform acts as a proxy through which Web traffic is routed. The Isolation Platform is available in a hosted software-as-a-service (SaaS) offering as well as an on-premises edition. One particular type of use case that Menlo Security is aiming to enable is that of SaaS Web applications like Salesforce.com.

      “We have a management platform that enables administrators to decide what they want to isolate and what they don’t want to isolate,” Ben-Efraim said. “We can and do support access to Salesforce.com where you can print your screen and open documents.”

      Menlo Security has an additional layer of protection for Web-delivered documents, whether they come from Salesforce.com or another source.

      “So if there is a PDF document that a user downloads from the Web, it can be routed through the Isolation Platform and opened there first,” Ben-Efraiam said. “If there is some form of malware in the document, the malware stays on the Isolation Platform and doesn’t reach the user endpoint.”

      The actual content of a Web document is converted by Menlo Security into HTML5, which is then downloaded to the user’s native browser, enabling the user can see online document content without being exposed to potential risks of malware execution.

      From a security perspective, Ben-Efraim explained that Menlo Security is relying on isolation as the primary defense, rather than some form of threat intelligence to protect users. That said, information about malware that is executed on the Isolation Platform can be made available as a forensic feed to Menlo Security’s customers.

      Looking forward, the big challenge for Ben-Efraim will be figuring out what to do first when there are so many security issues that enterprises face.

      “As we architect a new approach with our Isolation Platform, we can be pulled in a lot of different ways,” Ben-Efraim said. “We’re working with our customers and making sure we’re building things that solve the biggest problems for most people first.”

      Sean Michael Kerner is a senior editor at eWEEK and InternetNews.com. Follow him on Twitter @TechJournalist.

      Sean Michael Kerner
      Sean Michael Kerner is an Internet consultant, strategist, and contributor to several leading IT business web sites.
      Get the Free Newsletter!
      Subscribe to Daily Tech Insider for top news, trends & analysis
      This email address is invalid.
      Get the Free Newsletter!
      Subscribe to Daily Tech Insider for top news, trends & analysis
      This email address is invalid.

      MOST POPULAR ARTICLES

      Latest News

      Zeus Kerravala on Networking: Multicloud, 5G, and...

      James Maguire - December 16, 2022 0
      I spoke with Zeus Kerravala, industry analyst at ZK Research, about the rapid changes in enterprise networking, as tech advances and digital transformation prompt...
      Read more
      Applications

      Datadog President Amit Agarwal on Trends in...

      James Maguire - November 11, 2022 0
      I spoke with Amit Agarwal, President of Datadog, about infrastructure observability, from current trends to key challenges to the future of this rapidly growing...
      Read more
      IT Management

      Intuit’s Nhung Ho on AI for the...

      James Maguire - May 13, 2022 0
      I spoke with Nhung Ho, Vice President of AI at Intuit, about adoption of AI in the small and medium-sized business market, and how...
      Read more
      Applications

      Kyndryl’s Nicolas Sekkaki on Handling AI and...

      James Maguire - November 9, 2022 0
      I spoke with Nicolas Sekkaki, Group Practice Leader for Applications, Data and AI at Kyndryl, about how companies can boost both their AI and...
      Read more
      Cloud

      IGEL CEO Jed Ayres on Edge and...

      James Maguire - June 14, 2022 0
      I spoke with Jed Ayres, CEO of IGEL, about the endpoint sector, and an open source OS for the cloud; we also spoke about...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2022 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×