LINUX SECURITY SOLUTIONS FOR NATIONAL SECURITY
Commercial Linux systems lack the security and performance requirements for US Federal applications. Thus, the US Federal government needs a Linux security solution that is purpose-built, easy to deploy, and adaptable.
Defense-in-depth
ZeroLock® takes a multilayered approach to defense, providing Linux environments with a comprehensive security solution.
With ZeroLock®, our government partners can protect their:
- Public, Private, or Hybrid Cloud (Bare Metal/VMs, Containers, Kubernetes)
- On-prem / Private Data Center
- Embedded Systems and Controllers
- Air-gapped Environments
- Hypervisors
Prevent attacks with
real-time virtual patching.
ZeroLock® goes beyond traditional mandatory access control capabilities. In contrast to SELinux and AppArmor, ZeroLock® offers easily configured and universally applied rules and policies that can be deployed across all your Linux and cloud environments from a single console.
ZeroLock’s prevention capabilities include:
- SSH Multifactor Authentication (MFA)
- Real-time Virtual Patching
- Application Filtering
- Process Behavior Controls
- Network Access Controls
- File Access Controls
- Canary Files
- Tamper Protection
ZeroLock’s® response capabilites include:
- Ransomware Protection
- Cryptojacking Protection
- Wiperware Protection
- Real-time Threat Remediation
- Automated File Rollback
- Attacker Persistence Removal
- Fully Automated Process Tree Creation
Ensure uptime with AI detection and automated remediation.
ZeroLock’s® patented AI/ML-based behavioral capability detects malware by the actions it performs, not scanning for easily defeated file hashes. Our proprietary algorithms detect and stop traditional and fileless attacks in real-time with >98% efficacy and offer the ability to automatically remediate file damage with no user intervention required—helping you to ensure zero downtime.
Deploy and manage flexibly.
ZeroLock® leverages a containerized set-up, which works across all Linux distros and with no need for kernel modules, without compromising system stability, as it requires only 50MB of RAM. The single ZeroLock® Server can be self-hosted in your environment, including your public/private cloud, air-gapped and embedded environments, and IoT and edge devices. Alternatively, you can take advantage of our ZeroLock® SaaS backend and be up and running in minutes with one-line deployment.
ZeroLock’s® management capabilities include:
- API-based architecture
- Quick SIEM/SOAR integration using ZeroLock’s® syslog provider
- Single agent
- One-line deployment
- Minimal overhead (50MB RAM)
Adaptable
Deployment
Framework
24-7 support every step of the way.
Operationalization is no small lift. Vali Cyber’s® support team is there for you every step of the way through deployment and continues to be available to answer questions any time of day as you manage ZeroLock® in your environment. We also schedule periodic check-ins to make sure you are getting the most out of your ZeroLock® purchase.
Learn more about Linux security.
TECH SPECS
ZeroLock® Endpoint Agent Requirements for Hypervisors
OS
- VMware Cloud Foundation 9.X
- VMware ESXi, 6.7+ (Older versions supported upon request.)
- Nutanix-managed ESXi, 6.7+
- Nutanix AHV 2017+*
- XenServer, 6.5+
- Citrix Hypervisor, 8.0+
- Proxmox, 3.0+
- Red Hat Enterprise Virtualization, 3.6+
- HPE Morpheus, 8.0+
- Dell VxRail, 4.8+
- KVM, Kernel 3.5+
* Note, Nutanix does not currently support third-party products running on AHV.
Processor
Memory
50MB
Disk Space
100MB
Kernel Mods.
No kernel modification or modules required
Installation Methods
- One-line, web-based deployment (Wget)
- File-based deployment (Tar.gz or Bash)
- VCF & ESXi: Signed VIB and deployable via vCenter
RAM
16GB
Disk Space
128GB (dependent on number of endpoints and data retention duration)
CPU Cores
6 or more recommended
Installation Reqs.
- Self-deployment: Latest version of Docker installed
- OVA-deployment: ESXi 7.0 or later
Documentation
Existing integrations
• SIEM: Splunk, Sumo Logic, Elastic
• SOAR: Swimlane
• Incident API: Veeam