The rearchitecture of Ivanti Connect Secure will help customers elevate security posture, enhance control and performance, and modernize network security infrastructure.
Ivanti, a global enterprise IT and security software company, released Ivanti Connect Secure (ICS) version 25.X, marking a pivotal moment in the company’s journey to redefine VPN security. The new ICS release includes a modernized enterprise-grade operating system (OS), platform hardening and gateway enhancements—designed to minimize the impact of vulnerabilities, reduce attack surfaces and improve operational resilience.
Following Ivanti’s pledge in 2024, it has responded with a bold architectural overhaul of ICS—transforming it into a modern, resilient solution built on Secure by Design principles. Ivanti has invested heavily in hardening the ICS appliance, modernizing its operating system and embedding security into every layer of development. These innovations position Ivanti’s VPN solutions at the forefront of secure access infrastructure modernization.
Cyber Technology Insights : NowSecure Unveils Industry-First Privacy Solution
Enterprise security is central to Connect Secure 25.X: many legacy software components have been completely rearchitected with security in mind. These enhancements include a modern, secure web server and Web Application Firewall (WAF), Secure Boot protection, disk encryption, key management, and secure factory reset, to name a few. These features help to secure key aspects of the system, significantly deterring external threats.
Connect Secure 25.X utilizes an enterprise-grade Oracle Linux (OL) operating system along with an updated kernel and refreshed tech stack that lays a robust foundation to securely deliver exceptional scalability and enterprise-grade performance in cloud, virtual and hardware form factors. One of the most impactful security advancements is the hardening of the system using strong Security-Enhanced Linux (SELinux) enforcement, which can limit a threat actor’s abilities within the system. Together, these features deliver comprehensive, layered security designed to meet the evolving needs of today’s enterprise environments.
“In the past year, we’ve significantly advanced our Secure by Design strategy—translating our commitment into real action through substantial investments and an expanded security team dedicated to accelerating our initiatives and upholding industry-leading best practices,” said Mike Riemer, Ivanti’s SVP of Network Security Group (NSG) and Field CISO. “This release stands as tangible evidence of our commitment. We listened to our customers, invested in both technology and talent, and modernized the security of Ivanti Connect Secure to provide the resilience and peace of mind our customers expect and deserve.”
Cyber Technology Insights : NopalCyber Introduces Threat Hunting and Advisory Hub to Strengthen Cybersecurity Defenses
Ivanti Connect Secure Product Enhancements:
- Enable a Modernized Experience with a New Operating System
- Stability and Scalability: The new operating system and its tech stack offer unparalleled stability and scalability across large deployments, ideal for demanding enterprise environments.
- Future-Ready: Ongoing compatibility with the latest operating systems and third-party features and updates means customers’ systems stay modern and supported.
 
- Elevate Customers Security Posture with Strong Hardening Enhancements
- Strong Enforcement: Connect Secure runs SELinux in “enforcing mode” by default, ensuring that critical system processes are continuously monitored and protected.
- Attack Surface Reduction: Connect Secure’s hardening enhancements ensure that the system remains locked down in the face of an active attack, thereby limiting the “blast radius” of such threats.
- Data Protection: Built-in encryption safeguards help prevent data leaks and keep sensitive information secure.
 
- Ensure Uncompromised Performance with Gateway Enhancements
- Faster, Safer, Smarter: The enhanced gateway provides robust protection against vulnerabilities while maintaining superior speed and high performance, ensuring that advanced security features do not come at the expense of system performance.
 
At the core of Ivanti’s development philosophy is its Secure Software Development Lifecycle (SSDLC), enabling the seven key elements of Secure Software Design: Security as Code (SaC), Secure by Default, Least Privilege, Separation of Duties (SoD), Minimize Attack Surface Area (ASA), Complete Mediation, and Failing Securely. Additionally, Ivanti also follows their own strict Secure Application Development Standard, which mandates compliance with the OWASP Application Security Verification Standards (ASVS). Together, these rigorous frameworks ensure that every product feature is designed and implemented with security as a primary consideration, providing customers with solutions that meet the highest industry benchmarks.
Cyber Technology Insights : Adva Network Security Achieves Industry First with BSI Approval
Source: prnewswire
To participate in our interviews, please write to our CyberTech Media Room at sudipto@intentamplify.com
 
				 
															 
				



