Hewlett Packard Enterprise Enhances Security Protocols at RSA 2025
At the recent RSA 2025 conference, Hewlett Packard Enterprise (HPE) unveiled significant upgrades to its security features across the Aruba Networking and GreenLake platforms. These enhancements aim to bolster security measures in today’s hybrid IT environments, which increasingly demand robust protection against evolving threats.
The noteworthy updates include the introduction of an AI-driven policy engine tailored for network access control, as well as a more cohesive integration of Aruba Central with HPE OpsRamp. This integration promises to provide unified visibility across network environments, while also facilitating real-time threat responses that span both SD-WAN and Security Service Edge (SSE).
In an added layer of security, HPE’s GreenLake Private Cloud Enterprise will soon feature a "digital circuit breaker." This vital tool allows for the isolation of critical systems from the public internet whenever potential threats are identified, thereby enhancing overall security posture.
Phil Mottram, who serves as the Executive Vice President and General Manager of HPE Aruba Networking, emphasized the urgent need for effective security solutions amidst the rising use of data-driven AI applications. He stated, “With the rise in adoption of data-fueled AI applications, organizations are facing more sophisticated threats to anywhere data is stored, captured, or transmitted.” This comment underscores the necessity for precise and dynamic security measures in today’s tech landscape.
The timing of these security enhancements is particularly noteworthy, as they follow HPE’s $14 billion proposal to acquire Juniper Networks, which is currently under scrutiny by the Department of Justice. During the Q1 FY25 earnings call, HPE’s CEO, Antonio Neri, claimed the company possesses a “compelling case” and anticipates finalizing the acquisition by the end of the fiscal 2025 period.
AI-Driven Security Upgrades in Zero Trust Framework
One of the standout features introduced by HPE is the enhanced Network Access Control (NAC) capabilities integrated into Aruba Central. This cloud-native, AI-powered system is built upon the legacy of ClearPass and is designed to automate access policies efficiently. It applies specific rules based on a variety of factors, including application type, user role, and subnet, directly to newly connected devices. This integration not only simplifies network workflows but also enforces a zero-trust security model stretching from edge devices to the cloud.
The improvements in NAC are aimed at fewer errors during setup and accelerated configurations, allowing security teams to manage dynamic environments more effectively. Moreover, through its collaboration with HPE OpsRamp, the platform will provide a consolidated view of diverse environments including those powered by Cisco, Arista, and Juniper. This setup will include application risk scoring capabilities, which adapt access controls in real time, further reinforcing security protocols.
Sakshi Grover, a Senior Research Manager at IDC Asia/Pacific, observed that HPE’s AI-driven NAC solutions stand out in the burgeoning zero-trust and Secure Access Service Edge (SASE) market. She noted, “HPE is focusing on data sovereignty, operational resilience, and regulatory alignment—priorities that are mission-critical for enterprises globally.”
Among other enhancements, Aruba’s EdgeConnect SD-WAN now features Adaptive DDoS Defense, leveraging machine learning to identify and mitigate potential attacks at the network’s edge. This development reduces reliance on upstream protection services, creating a more resilient security framework.
Additionally, ZTNA customers will benefit from a complimentary Private Edge license, which aligns local security policies with cloud settings for enhanced consistency. Meanwhile, Aruba’s SSE will utilize global mesh connectivity for dynamic traffic routing, thereby ensuring high availability while minimizing the need for manual interventions during network outages.
Private Cloud Security Innovations
In a significant move to strengthen its cloud offerings, HPE announced the availability of a "digital circuit breaker" for its GreenLake Private Cloud Enterprise. This feature will automatically disconnect from the public internet upon the detection of threats, thus isolating sensitive systems and facilitating a secure reconnection after thorough verification. This function is particularly critical for compliance with the Digital Operations Resilience Act (DORA), which is of paramount importance to financial institutions.
Grover remarked on the advantages of this security mechanism, stating, “HPE’s threat-adaptive security offers a proactive and automated containment mechanism.” She explained that rather than relying on manual actions during a security breach, the system provides real-time mitigation solutions, helping to protect sensitive information and minimize disruptions in business operations.
Furthermore, the air-gapped cloud management—which will be operated by HPE personnel with security clearances—will function without external network connectivity. This is intended for regulated sectors, such as government institutions, with plans to incorporate Kubernetes support in the future.
The new cybersecurity services introduced by HPE focus on managing AI workloads and sovereign clouds, providing governance to combat AI-driven threats and ensuring compliance in data-sensitive industries. The integration between HPE OpsRamp and CrowdStrike is designed to enhance real-time threat detection capabilities across hybrid environments. Grover concluded by noting that HPE’s focus on regulated markets corresponds with the growing necessity for trust, control, and continuous operations—especially in regions like Asia/Pacific, where cybersecurity regulations are tightening.