HP-UX 11i security containment - secure virtualization

- Security containment is field-proven: it is a customer-requested major update of the HP Virtualvault technology. Virtualvault is employed in 125 of the world's largest financial institutions, in over 50 countries, hosting over 60% of global electronic banking transactions. Billions of dollars per second flow through Virtualvault. Its proven protection forms the basis for this next generation, HP-UX 11i security containment.

- Security containment is being installed at over 100 major IT centers and undergoing evaluation at over 50 others, in more than 40 countries. Customers include the heavily-fortified Swiss banking sector and other major banks, government treasuries, segments of the healthcare industry, government defense departments, government agencies, telecommunications, water and power infrastructure markets worldwide.

If HP-UX 11i v2 system security is your priority, there's no reason not to turn your systems on to security containment and three huge reasons you should:

1. You need the incremental protection HP-UX 11i security containment delivers: 

3. Security containment may save your company money.

That's improved HP-UX 11i TCO. Download security containment now for your partitioned HP-UX 11i systems! Let your HP rep know how he or she can help.

HP-UX 11i security containment

Related security links

Containment works with:

Related links

Protected Systems Web Server

The PS-Webserver is a secure Web services platform built on the HP-UX11iv2 operating system. The secure architecture and run-time environment isolate the Internet from backend servers and isolate the Web server from the intranet. If the Web server is compromised, the PS-Webserver mitigates damage to system and intranet resources by minimizing the system access and resource privileges an attacker can obtain.

The security required for consolidation and virtualization projects

For over 100% improvement in typical system utilization, customers are turning to virtualization with the HP-UX 11i v2 Virtual Server Environment (VSE).

• Security containment works within the HP-UX 11i v2 VSE to form secure resource partitions.

• Using secure resource partitions, you can now isolate entire applications or individual processes within partitions.

• Now you can secure your VSE partitions while reaping the benefits of improved utilization.

Flexible multi-purpose compartments

Security containment uses multiple airtight compartments to isolate your applications and data.

• When configured in a compartment, applications (processes, binaries, data files and communication channels used) have restricted access to those resources outside its compartment.

• This restriction is enforced by the HP-UX 11i v2 kernel and can not be overridden unless configured to do so. Because the application is isolated from other applications and system resources, if the application is compromised it will not be able to damage other parts of the system.

• Administrative tasks can now be broken up into logical role groupings and delegated to users without having to grant all users all administrative capabilities.

• Enhanced features of HP-UX 11i v2 make unauthorized system access even tougher than before by closing known points of attack as well as giving administrators the ability to tighten security policy enforcement. In the unlikely event of a security breach the audit trail provided by the HP-UX 11i v2 audit subsystem maintains excellent forensic data to track down the intruder.

Contain the software, contain the risk. It's just good business.

Deploy security containment without modifying existing applications.

By combining the new features of security containment with the enhanced features available in the standard operating system, HP-UX 11i v2 provides a highly secure, easy to maintain and backwards compatible environment to deploy business applications. Existing application software does not have to be modified to take advantage of these security feature: test your applications for any unusual requirements.

It works with existing operating environment security features.

HP-UX 11i is a highly secure commercial UNIX operating system that provides the fortification your business needs to prevail against hacking and cyber attacks. HP-UX 11i customers are rock-solid in the areas of policy, authorization and access control, identification and authentication, audit and alarms, and privacy and integrity.

Integrating security containment, HP takes security one step down - down to the level of granularity you need for today's partitioned workloads.

For more on the wide range of HP-UX 11i security capabilities click here.

A leading IT financial analyst concludes that for enterprise UNIX installations, HP-UX 11i delivers the highest business value and lowest cost of ownership available today. Click here for the backup.

On application and database servers processing high-value transactions, unplanned downtime reductions may save millions of dollars a minute.

The security containment feature of HP-UX 11i v2 can lower TCO unplanned downtime due to server compromise is largely eliminated.

At HP, our engineers innovate to increase the value HP-UX 11i contributes to your business everyday. We're pleased to bring you security containment at no incremental cost to you.