Bromium vSentry provides protection at the endpoint against all advanced malware. vSentry automatically creates hardware-isolated micro-VMs that secure every user task - such as visiting a web page, downloading a document, or opening an email attachment. Each task runs in its own micro-VM, and all micro-VMs are separated from each other, and from the trusted enterprise network. If malware targets the end user, the threat is contained in the hardware-isolated micro-VM. Consequently, it is never able to steal or damage the user or enterprise’s information, and is destroyed when the task is completed. vSentry is transparent to the end user, and has no discernable impact on user experience or system performance.

Bromium LAVA (Live Attack Visualization and Analysis) is a complementary product to vSentry that adds enormous value for Security Operation Centers (SOCs). LAVA converts each micro-VM in the enterprise into a honeypot and automates the time-consuming post-attack malware analysis process. For example, if a vSentry endpoint is attacked within an isolated micro-VM, the entire attack is automatically and instantly recorded, then forwarded to the LAVA console in the SOC. This provides security teams with the results of an automatic in-depth analysis of the advanced malware.

Bromium offers a complete solution, including the Bromium Enterprise Controller™ (BEC), which enables centralized policy management and control of broad vSentry deployments across the enterprise. BEC provides a centralized web service for collection and correlation of LAVA security events from all desktops in the enterprise, both on and off network. BEC and LAVA provide real-time, automated analysis for the security operations team and serve as an integration point between Bromium products and the rest of the enterprise security infrastructure.