Ivanti, a global enterprise IT and security software company, is releasing Ivanti Connect Secure (ICS) version 25.X, aiming to redefine VPN security.
According to the company, the new ICS release includes a modernized enterprise-grade operating system (OS), platform hardening, and gateway enhancements designed to minimize the impact of vulnerabilities, reduce attack surfaces, and improve operational resilience.
Ivanti has invested heavily in hardening the ICS appliance, modernizing its operating system and embedding security into every layer of development. These innovations position Ivanti’s VPN solutions at the forefront of secure access infrastructure modernization, the company said.
These enhancements include a modern, secure web server and Web Application Firewall (WAF), Secure Boot protection, disk encryption, key management, and secure factory reset, and more. These features help to secure key aspects of the system, significantly deterring external threats, the company said.
Connect Secure 25.X utilizes an enterprise-grade Oracle Linux (OL) operating system along with an updated kernel and refreshed tech stack that lays a robust foundation to securely deliver exceptional scalability and enterprise-grade performance in cloud, virtual and hardware form factors.
One of the most impactful security advancements is the hardening of the system using strong Security-Enhanced Linux (SELinux) enforcement, which can limit a threat actor’s abilities within the system. Together, these features deliver comprehensive, layered security designed to meet the evolving needs of today’s enterprise environments, according to the company.
“In the past year, we’ve significantly advanced our Secure by Design strategy—translating our commitment into real action through substantial investments and an expanded security team dedicated to accelerating our initiatives and upholding industry-leading best practices,” said Mike Riemer, Ivanti’s SVP of network security group (NSG) and field CISO. “This release stands as tangible evidence of our commitment. We listened to our customers, invested in both technology and talent, and modernized the security of Ivanti Connect Secure to provide the resilience and peace of mind our customers expect and deserve.”
At the core of Ivanti’s development philosophy is its Secure Software Development Life Cycle (SSDLC), enabling the seven key elements of Secure Software Design: Security as Code (SaC), Secure by Default, Least Privilege, Separation of Duties (SoD), Minimize Attack Surface Area (ASA), Complete Mediation, and Failing Securely. Additionally, Ivanti also follows their own strict Secure Application Development Standard, which mandates compliance with the OWASP Application Security Verification Standards (ASVS).
As per ITogether, these rigorous frameworks ensure that every product feature is designed and implemented with security as a primary consideration, providing customers with solutions that meet the highest industry benchmarks.
For more information about this news, visit www.ivanti.com.