Droplet vs. Microsoft (ESU)

Your still running Windows Server 2012 and the software that runs your business isn’t compatible with the latest Windows Server edition. On top of that the costs associated with upgrading isn’t feasible, and you’ve ruled out moving to Azure as an option, due to costs and complexity and can’t afford Microsoft Extended Support Updates (ESU).

For these reasons, you decide not to change anything, even though its risky, you continue running vulnerable, unsupported software on servers that are no longer in receipt of the latest security patches and updates, hoping that you don’t get breached or are impacted by any downtime and fingers crossed, avoid any bad publicity as a result of an attack.

By opting to take no action, you’re now deprived of receiving any security patches and updates. Consequently, your already weak security posture has further deteriorated, making you a more vulnerable target for potential threat actors. Moreover, this will hinder your ability to obtain any type of cyber certification, such as cyber essentials v3.1.

Adopt a Droplet NeverTrust^TM (beyond Zero Trust) approach to delivering any x86 applications to a choice of supported operating systems and cloud platforms (see below) by locking down every single app and any required dependency, such as Java or Internet Explorer, whether its legacy or modern, supported on unsupported, inside a NeverTrust^TM (beyond Zero Trust) container.

Once installed, Droplet creates a true isolation layer between the container and the host device we’re installed on and using our built-in firewall, we block all inbound traffic by default, and when installed together on both a client and a server, we encrypt all traffic between both.

This approach helps lockdown and migrate any x86 app to any cloud or Linux server, whilst behaving and running exactly as they did, before they where migrated. Based on regular pen-tests carried by our partners and customers, anything that’s installed inside a Droplet NeverTrust^TM (beyond Zero Trust) container, cant be seen or penetrated when pen-tested.

Many clients who’ve adopted our Droplet NeverTrust^TM (beyond Zero Trust) model, have not only substantially improved their security posture to Cyber Essentials Plus and NIST levels of cyber certification, they’ve also avoided the high out of support costs and security concerns of relying on out of support software and operating systems or extended support.