ARBITRARY SOCKET CONNECTION
In computer security, Microsegmentation is a way to create secure zones in datacenters and cloud deployments. It's a way to implement a more fine-grained segmentation than traditional segmentation tools.
Traditional segmentation tools control client-sever traffic (also called North-South traffic), but don't control server-server traffic (also called East-West traffic), that is problematic in cloud environments. It's main benefits are:
- Reduce the network suface attack
- Improved breach containment
How to solve it
Hdiv protects againts Microsegmentation by detecting incoming and outgoing socket connections and creating assisted whitelists. With this model the security team can complete avoid non-authorized server-server connections, by providing a "positive" security model based purely on whitelists