Users fail to understand virtual security says Kaspersky
Kaspersky Lab says using security solutions intended for physical devices in virtual environments causes problems
Kaspersky Lab is warning that a lack of awareness of security approaches for virtual machines may be causing performance issues for companies.
The security company said that a survey it conducted of IT specialists in the GCC showed that only 19% of GCC companies are using dedicated agent-less security solutions to protect their virtual infrastructure.
The survey also showed that 63% of respondents prefer to use the same security solution to protect virtual devices and physical infrastructure, and 60% have a single security policy for physical and virtual environments.
Kaspersky said that by using security solutions meant for physical machines in virtual environments, which usually requires installing copies of signature databases and AV engines to be installed on each individual virtual machine, users may experience performance issues, such as scanning storms and I/O storms that can slow down or even crash the host server.
"The main reason for this is a lack of awareness in the business community about the different facets of securing a virtual environment. Despite the growing popularity of virtualization technologies, many companies appear somewhat careless in regard to IT security. Risks tend to be underestimated; many IT specialists share the misconception that virtual infrastructure is by nature more secure than it actually is. Last but not least, companies don't know enough about dedicated security solutions," said Vladimir Udalov, senior corporate product marketing manager at Kaspersky Lab.