In the past, OpenNMS Meridian (and other monitoring systems) relied on the built-in security provided by restricted-access private networks. However, private networks create a false "hard perimeter" sense of security, making them easy targets for insider threats, malware, and ransomware. Accessing Internet, cloud-based services, and distributed data centers from private networks punches holes in that hard perimeter.
Zero-trust architectures help adapt traditional IT infrastructure to today's highly connected services- and cloud-reliant world. This approach:
- Requires encryption, even within private networks, to protect data confidentiality and integrity. This helps prevent eavesdropping and tampering.
- Uses strong authentication to ensure that parties only communicate with authorized partners—within or outside of private networks.
The OpenNMS Appliance comes preconfigured with encrypted communications, encrypted hard disks, secure boot via encrypted TPM modules, and digitally signed software that has been vetted by certified security penetration testers. And it gives you an inside-out view of your network or network segments.
We also offer OpenNMS Meridian configurations that adhere to these principles. Contact our technical support team for assistance about hardening your monitoring installation.