VMware vShield Endpoint - Enterprise Anti-Malware for Virtual Datacenters

If you have been managing anti-virus and anti-malware the traditional way (i.e. agents deployed at the OS level) in your virtual environment, VMware has a new tool that will help you increase security and ease management. By deploying security hardened virtual appliances from trusted security vendors such as Symantec and TrendMicro, VMware vShield Endpoint seeks to streamline and accelerate the deployment of anti-virus and anti-malware software. This deployment model offers increased performance over agent based AV agents as well as lowers the attack surface of agent based deployments. Remediation is also made easier. This centralized approach also makes compliance and auditing easier with detailed logs of anti-virus and anti-malware activity.

VMware vShield Endpoint optimizes antivirus and other host and endpoint security for use in VMware vSphere 4.1 and VMware View 4.5 environments.

Offload key antivirus and anti-malware functions to a hardened, tamperproof security virtual machine, eliminating agent footprint. The robust and secure hypervisor introspection capabilities in vSphere prevent compromise of the antivirus and anti-malware service. vShield Endpoint plugs directly into vSphere and consists of hardened security virtual machine (delivered by VMware partners), a driver for virtual machines to offload file events, and the VMware Endpoint security (EPSEC) loadable kernel module (LKM) to link the first two components at the hypervisor layer.

  • Streamline antivirus and anti-malware deployment: Deploy enterprise antivirus engine and signature file to a single security virtual machine instead of each and every individual virtual machine on a vSphere host

  • Improve virtual machine performance: Securely achieve higher consolidation ratios by the same offload mechanism as described above

  • Prevent antivirus storms and bottlenecks: Prevent antivirus storms and bottlenecks associated with multiple simultaneous antivirus and anti-malware scans and updates

  • Protect antivirus security software from attack: Deploy and run the antivirus and anti-malware client software in a hardened security virtual machine to prevent targeted attacks

1 comment:

  1. [...] LOADALL, which rendered it use­less. In my opin­ion, pro­gress will be more in the vein of cur­rent vir­tu­al­iz­a­tion offer­ings, seek­ing to improve per­form­ance with mul­tiple vir­tual machines within [...]