BEIJING – August 28, 2025 – In the recently released IDC MarketScape: China CNAPP 2025 Vendor Assessment (#CHC52999825), Asiainfo Security—the parent company of the AIStorm brand—has been positioned in the “Leaders” category. This recognition validates the group’s strong technical heritage and execution in the cloud security domain.

IDC indicates that in the face of security complexities within multi-cloud and hybrid cloud environments, integrated CNAPP solutions have become a critical lever for enterprises to enhance their security posture. AIStorm CloudGuard (CNAPP) is built on the core philosophy of “Full-stack Integration, AI-driven, and Deep Defense”. By utilizing self-developed large-scale models and agentless technology, it provides comprehensive coverage across the entire security lifecycle—from IaC, CIEM, CWPP, and CSPM to DevSecOps.

CloudGuard: A Unified Architecture for Full-Lifecycle Protection

CloudGuard integrates both agent-based and agentless deployment modes through a unified architecture, building a robust defense system for cloud infrastructure, hosts, containers, and business applications.

- Cloud Workload Protection (CWPP): Utilizing an “N-in-1” Single-Agent architecture, CloudGuard covers full-stack requirements including host security, container security, and network micro-segmentation. It supports a flexible hybrid of agent-based and agentless technical routes to ensure comprehensive runtime protection.

- Cloud Security Posture Management (CSPM): By connecting to multi-cloud platforms via APIs, it continuously detects and remediates misconfigurations, supporting compliance with industry-leading security standards.

- Infrastructure as Code (IaC) Security: CloudGuard identifies risks in mainstream IaC files (e.g., YAML, Dockerfile), providing risk visualization and hardening recommendations that integrate seamlessly into CI/CD pipelines.

- Cloud Infrastructure Entitlement Management (CIEM): It achieves unified permission collection for Kubernetes clusters across multi-cloud environments, supporting granular access control and compliance analysis.

In key technical dimensions, CloudGuard demonstrates several industry-leading advantages that redefine cloud security efficiency:

- Patented Agentless Innovation: As the first vendor to cover the full CWPP capability spectrum via agentless technology in China market, CloudGuard supports 90% of cloud platform versions out-of-the-box. It can protect over 1,000 virtual machines (VMs) within 10 minutes while reducing resource consumption by 60% with minimal impact on business systems.

- Real-time Active Defense for Containers: Beyond traditional "detect-and-respond" models, CloudGuard provides real-time proactive defense, including Cloud-Native WAF, image virtual patching, and container web tamper-proofing. Its pioneering “Asset Profiling” concept elevates security from simple ledger management to risk-based decision-making.

- Kernel-Level Deep Protection: Achieving millisecond-level response via kernel-based defense, the platform ensures the integrity of sensitive files and effectively counters advanced threats like ransomware.

- AI-Driven SecOps with AICube: The self-developed “AICube” security- specific large language model significantly enhances alert triage and response. By performing contextual analysis on attack paths, it drastically reduces false positives and shrinks the average response time from hours to minutes.