HPE adds ‘digital circuit breaker’ to protect GreenLake customers

Posted on by

HPE has introduced new security features for its Aruba Networking and GreenLake platforms to enhance cloud and network security in hybrid IT environments.

The updates, announced at the RSA 2025 conference, include an AI-driven policy engine for network access control, tighter integration between Aruba Central and HPE OpsRamp for unified visibility, and real-time threat response across SD-WAN and Security Service Edge (SSE).

HPE said GreenLake Private Cloud Enterprise will receive a “digital circuit breaker” to isolate critical systems from the public internet during detected threats.

“With the rise in adoption of data-fueled AI applications, organizations are facing more sophisticated threats to anywhere data is stored, captured, or transmitted,” said Phil Mottram, EVP and general manager of HPE Aruba Networking, highlighting the need for precise security measures.

This security push follows HPE’s $14 billion acquisition bid for Juniper Networks, which is currently under review by the Department of Justice. In the Q1 FY25 earnings call, HPE CEO Antonio Neri stated that the company has a “compelling case” and expects to close the transaction before the end of fiscal 2025.

Zero trust gets an AI upgrade

HPE announced enhanced Network Access Control (NAC) capabilities in Aruba Central, built on the ClearPass legacy, offering a cloud-native, AI-driven system that automates access policies.

The enhanced NAC would apply rules based on application, role, and subnet directly to new devices, integrating into network workflows to enforce zero trust from edge to cloud. This automation is designed to reduce setup time and errors, and enable security teams to manage dynamic environments efficiently.

Through the integration with HPE OpsRamp, the platform would offer unified visibility across Cisco, Arista, and Juniper environments, enabling application risk scoring that adjusts access controls in real time.

Sakshi Grover, senior research manager at IDC Asia/Pacific, said HPE’s AI-driven NAC stands out in the zero-trust and SASE market. “HPE is focusing on data sovereignty, operational resilience, and regulatory alignment, priorities that are mission-critical for enterprises globally.”

Aruba’s EdgeConnect SD-WAN would now include Adaptive DDoS Defense, which uses machine learning to detect and mitigate attacks at the edge, reducing dependency on upstream protection services.

A free Private Edge license for ZTNA customers would align local policies with cloud settings, ensuring consistent security. Aruba’s Security Service Edge (SSE) would employ global mesh connectivity to route traffic dynamically, maintaining uptime without manual intervention, which supports operational continuity during network disruptions.

Private cloud isolation

HPE announced that its GreenLake Private Cloud Enterprise will now have a “digital circuit breaker” that disconnects from the public internet when threats are detected, isolating critical systems and reconnecting after verification. This feature will support compliance with the Digital Operations Resilience Act (DORA), critical for financial institutions.

“HPE’s threat-adaptive security offers a proactive and automated containment mechanism,” Grover said. “Rather than relying on manual intervention during a breach, it enables real-time mitigation that helps safeguard sensitive data and minimize business disruption.”

The air-gapped cloud management, operated by HPE’s security-cleared personnel, will run without external network connectivity, serving regulated sectors like government, with Kubernetes support planned.

The new cybersecurity services focus on AI workloads and sovereign clouds, offering governance to address AI-driven threats and compliance frameworks for data-sensitive industries. The OpsRamp-CrowdStrike integration is designed to provide real-time threat detection across hybrid environments, enhancing response capabilities. Grover said that HPE’s focus on regulated markets aligns with the “growing need for trust, control, and uptime — particularly in Asia/Pacific,” where cybersecurity laws are tightening.