Nutanix5.0最新功能介紹-安全Security

1、Security-First DesignName, TitleThe Cloud Era Is Well Underway“I deployed my applicationin five minutes.”Rapid Time to Market“No more time spent on low-level infrastructure management.”O(jiān)ne-Click Simplicity“I use and pay for just what I need only when I need it.”Fractional IT Consumption“New capabili

2、ties are available on a regular basis.”Continuous InnovationBringing The Cloud To The Enterprise DatacenterFractional ConsumptionInvisible OperationsInstant DeliveryFrictionlessTailored SLAs for Every AppBalance Owning and RentingData Access and GovernanceChoice and Freedom from Lock-inControlContin

3、uous InnovationBuilding an Enterprise CloudFull-stack Infrastructure and Platform ServicesTurnkey hybrid infrastructure to run any app at any scale anywhereZero-click OperationsMake infrastructure invisible through automationInstant Elastic ConsumptionNo more overprovisioning and prediction riskInte

4、grated Security and ControlEfficient end-to-end security with automation and self-healingApplication MobilityEliminate infrastructure lock-inSecurity-First DesignFull-Stack Security Development LifecycleMicro-SegmentationEncryptionAnti-VirusAnti-MalwareFirewallKeyManagementEcosystemSecurity Certific

5、ationsAutomated Validation and Self-healingRepeatUpdateAssessTestMeasureReportFull-Stack Security Development LifecycleDefense in depth approachZero-day threat mitigationAlways-on protectionSecurity integral to product developmentRegulatory compliance (HIPAA, PCI-DSS, SOX)Offloaded encryptionProtect

6、ion from drive or node theftMultiple key management partnersSelf-Encrypting Drives (SED)KMIP Compliant KMS ProvidersTwo-Factor Authentication and Cluster LockdownClient AuthenticationCluster LockdownEnable two-factor authentication for administratorsCombination of a client certificate and/or usernam

7、e/passwordCommon Access Card (CAC)Restrict access to a Nutanix cluster in security conscious environments by disabling username/password shell logins and leveraging non-repudiated SSH keysTwo-Factor Authentication and Cluster ShieldInstallationNon-NutanixHardening GuidesDocument BaselineAccreditatio

8、nAccreditationInstallationMachine/Human Readable Security DocumentsContinuous Compliance ChecksBuilt-in Hardening GuidesMonthsDaysAutomated Validation and Self-HardeningAutomated Validation and Self-HardeningSecurity Technical Implementation Guides (STIGs)Machine readable (XCCDF) and human-readable

9、formatsCovers full infrastructure stackCustom security checklists based on DISA standardsSecurity Ecosystem PartnersSimplified SupportMicro-SegmentationEncryptionEnd-PointSecurity Anti-Virus,Anti-Malware Built-in Host Security Hardening, SecDL, TPM/TXTDataSecurity Encryption & Key ManagementNetworkS

10、ecurity Micro-Segmentation,FirewallSecurity at Every LayerAnti-VirusValidated IntegrationAnti-MalwareFirewallKey ManagementAcropolis HypervisorLinuxWindowsESXi HypervisorLinuxWindowsHyper-V HypervisorLinuxWindowsAcropolis App Mobility FabricPublic CloudPrivate CloudPCEEcosystem: Network SecurityHighly portableApp level visibilityZero touch securityEast-West Traffic Visibility and Micro-SegmentationEcosystem: Network SecuritySimplified securityFully distributed firewallAgentless protectionEast-West Traffic Visibility and Micro-SegmentationEc