In today's operational market, IT budgets are being significantly reduced. CIOs are being asked to do more with less, and in today's economic climate, one of the only ways to increase agility and reduce the total cost of ownership is through cloud computing.
But have your solutions architect(s) - be it an internal or outsourced resource - considered cloud security? DRS believes this to be one of the most important questions to be addressed when considering virtualisation.
Up to this point, the virtual data centre has not been a major focus for IT security - security has conventionally resided at the host server and not within the cloud.
This was previously satisfactory, as malicious code was also not scripted to focus attacks through the virtual data centre. However, this is changing drastically as the number of virtual machines increase and surpasses the number of physical hosts. Security primarily at the host is no longer a satisfactory solution.
DRS has been in the IT security industry for years, providing products and services to major businesses in many industries. Through this it has gathered knowledge and foresight of vulnerable areas and the solutions to those vulnerabilities. VMware vShield is the answer to the problem of insufficient and/or inadequate security within the cloud.
VMware vShield solution from DRS will offer you the following:
Secure business-critical applications
The hypervisor-level firewall in vShield ensures that proper segmentation and trust zones are enforced for all application deployments, which make it easier for customers to support applications belonging to different trust levels on the same virtual data centre (eg, production and development, finance and sales, classified and non-classified applications). VMware vShield lets customers create business-based security groups and protects critical applications from network-based threats.
Secure virtual desktop deployments
vShield integrates with VMware View to provide more efficient anti-virus and anti-malware protection for virtual endpoints and applications by offloading anti-virus and anti-malware functions from individual virtual machines to a secure virtual machine that protects the host and all virtual machines on it. This approach streamlines security management and provides added protection against anti-virus storming, performance bottlenecks and botnet attacks. vShield also helps organisations create logical security perimeters around virtual desktop infrastructures through complete network isolation and an array of network gateway services such as firewalls, VPN and DHCP. DRS, through VMware vShield, optimises anti-virus and anti-malware security for virtualised environments through a security virtual machine.
Enterprise partner extranets
vShield lets enterprises extend their networks and application resources to branch offices, home offices and business partner sites through site-to-site VPN services that offer simplified provisioning, streamline administrative tasks and improve scalability. All traffic between sites is encrypted using IPsec to maintain the confidentiality and integrity of all site-to-site communications.
Secure multi-tenant environments
vShield integrates with VMware vCloud Director and creates logical security boundaries that provide complete network isolation for virtual data centres, which makes it easier for enterprises and cloud service providers to support multi-tenant IT environments and safely share network resources.
vShield also provides granular control and visibility over network gateway traffic, along with VPN services to protect the confidentiality and integrity of communications between virtual data centres.
vShield solutions
vShield App
VMware vShield App protects applications in the virtual data centre from network-based threats. vShield App gives organisations the ability to create and manage business-relevant policies that adapt to dynamic cloud environments. It also provides deep visibility into network communications between virtual machines and granular enforcement through security groups.
vShield Edge
vShield Edge is a network gateway solution that protects the edges of the virtual data centre with DCHP, network address translation, firewalling, load balancing, site-to-site VPN, port group isolation and other capabilities that help organisations maintain proper segmentation between different organisational units.
vShield Endpoint
vShield Endpoint provides on-host anti-virus and malware protection that reduces performance latency and eliminates the need to maintain individual security agents in each and every virtual machine, helping to simplify security administration while minimising the risk of malware infections.
vShield Manager
Included with all vShield products, vShield Manager provides a central point of control for managing, deploying, reporting, logging and integrating third-party security services. Working in conjunction with vCenter Server, vShield Manager also enables role-based access control and administrative delegation as part of a unified framework for managing virtualisation security.
vShield Zones
VMware vShield Zones, included with vSphere, provides basic protection from network-based threats in virtual data centres, with application firewalling and policy management based on administrator-defined zones, using basic traffic information such as the source IP address, the destination port, and other functions.
Dynamic Recovery Services believes that with VMware vShield, it can help its customers to leverage the benefits of having a virtual data centre without sacrificing security, business continuity and control compliance within the cloud.
Call DRS on 011 523-1600 for a free whiteboard consultation to demonstrate the effectiveness of VMware vShield.
Share