Kaspersky Lab has announced its latest virtualization security solution, which delivers advanced protection to the VMware virtualization platforms. This new offering will compliment Kaspersky Lab’s industry-leading agentless virtualization security solution for VMware vSphere users, which will continue to be offered as Kaspersky Security for Virtualization | Agentless.
The new light agent technology is Kaspersky Lab’s first ever security solution optimized specifically for Microsoft Hyper-V and Citrix XenServer customers, and will provide VMware customers with a choice of agentless or light-agent protection. The protection and performance benefits of Kaspersky Lab’s light agent solution offer the “best of both worlds” over existing agentless and agent-based virtualization security models.
Building and maintaining a virtual network requires specialized software and expertise which differ greatly from the tools and training needed to manage a physical network of endpoints and servers. But too often, businesses apply security software built for physical machines to their virtual network, and suffer a multitude of negative consequences. At best, this “agent-based” protection leads to a wasteful use of computing resources – which is what virtualization seeks to improve in the first place – and can reduce the consolidation ratio of virtual machines and overall ROI of a virtualization project.
But while users complain about slow performance on their virtual desktops each morning, a real threat to virtual machines across the network is occurring behind the scenes in the form of an “Instant On Gap.” This refers to the window of time after a virtual machine is created, and before the latest security updates are downloaded by the security agent on each virtual machine. Until these updates are processed, the virtual machine is vulnerable…and depending on how many users are simultaneously downloading these updates to their individual VMs, and how many days worth of security updates there are to process, this window of vulnerability can drag on for minutes, or even hours. While this process of updating the security databases on virtual desktops drags on, the resources of the virtual servers will be heavily strained, resulting in poor network performance and a lower return on a company’s virtualization investment.
Kaspersky Security for Virtualization | Light Agent delivers benefits that offer clear advantages to the traditional agent-based approach. In the light agent model, almost all resource-intensive security processing is performed by a dedicated virtual appliance at the hypervisor level. By channeling virtualized network traffic and files through this up-to-date appliance, VMs are fully protected by the latest security updates the instant they are created, and the need to push redundant copies of anti-malware databases across the network to each VM is eliminated. Kaspersky Lab’s intelligent scanning also ensures the same file is not scanned multiple times, freeing up additional system resources.