Home / / Kaspersky Lab enhances virtual machine protection

Kaspersky Lab enhances virtual machine protection

Kaspersky Security for Virtualization 2.0 optimised for VMware environments

The new solution now offers additional functionality to detect and protect against network intrusions in a virtual environment.
The new solution now offers additional functionality to detect and protect against network intrusions in a virtual environment.

Kaspersky Lab this week announced the availability of Kaspersky Security for Virtualization 2.0, the latest version of its security solution for virtual machines using the VMware platform.

Integration with new features in VMware's vCloud Networking and Security means the new solution now offers additional functionality to detect and protect against network intrusions.

The product's anti-malware protection has also been upgraded using real-time threat information from the Kaspersky Security Network.

"Kaspersky Security for Virtualization 2.0 continues to deliver the best balance of malware protection and network performance using agent-less protection designed specifically for virtual machines," Kaspersky Lab said in an emailed statement.

"All network traffic scanning is off-loaded to a single virtual appliance, ensuring organisations reap the maximum resource efficiency from their virtual environment."

Virtualisation tools are currently in growing demand with small, medium-sized and large businesses. But Kaspersky Lab suggests companies often forget that virtual machines are vulnerable to cyber threats and need the same level of protection as standard workstations.

According to Kaspersky Lab, in some cases companies try to solve the problem using security software designed for physical servers and workstations.

"It is quite common for dozens of virtual machines to run simultaneously on the same physical server, and installing protection solutions on each of them individually can generate excessive strain on that server," explained Kaspersky Lab.

"This problem is especially acute when routine operations are involved, such as updating signature databases.

Instead of applying physical protection methods to virtual machines, Kaspersky Lab argues that an agent-less security solution eliminates the need for duplicated resources on each virtual machine, helping to optimise performance, reduce hardware costs and energy consumption, and provide detailed logging of security tasks to satisfy compliance auditing requirements.


"Businesses today are gradually coming to the understanding that virtual servers need to be reliably protected, just like physical servers," said Petr Merkulov, chief product officer, Kaspersky Lab.

"Kaspersky Lab, in turn, carefully follows market demand and develops solutions to meet those needs. We can say with confidence that the updated Kaspersky Security for Virtualization 2.0 fully complies with current demand to protect virtual machines from real threats. Offering single-console administration of physical and virtual systems makes it easy to work in conjunction with Kaspersky Lab's other corporate solutions, ensuring integral protection for the entire IT infrastructure."

Kaspersky Lab also highlighted that Kaspersky Security for Virtualization 2.0 is "the first solution that provides integration with the VMware vCloud Ecosystem Framework component of VMware vCloud Networking and Security, which is widely used in modern corporate IT infrastructure".

Kaspersky Security for Virtualization 2.0 has a number of features designed to make the protection of virtual machines more efficient.

For example, network protection is handled by a tool that scans incoming, outgoing and internal traffic to detect network intrusion attempts, which Kaspersky Lab insists is a necessity for both physical and virtual networks. The updated Kaspersky Security for Virtualization 2.0 includes an intrusion protection system (IDS/IPS) designed for virtual network security. This is possible due to integration with the VMware vCloud Ecosystem Framework - a part of VMware vCloud Networking and Security solution. Kaspersky Lab said it is the first vendor to integrate the technology.

Protection from malware using Kaspersky Security Network is another feature available in Security for Virtualization 2.0. Malware presents one of the most prevalent threats for both physical and virtual systems. Security for Virtualization 2.0 is designed to protect the file system of virtual machines against malware in real time through the Kaspersky Security Network, which delivers information about emerging threats.

The Shared Cache feature is aimed at improving the performance of protection. Workstations on virtual machines can contain a number of identical objects, such as system files. Scanning these files on each virtual machine creates additional server loads. The new Shared Cache feature helps to avoid this. As soon as Kaspersky Security for Virtualization 2.0 has scanned a file on one virtual machine and identified it as clean, this verdict will be saved in the application's cache. If, in the future, the Kaspersky Lab solution detects similar files on other virtual machines, it can save time on scanning and use the cached verdict.

Per core licensing model helps to define the right number of software licenses needed to protect the company virtual infrastructure. It is often difficult for owners of data centres and infrastructure services to estimate the number of active virtual servers and workstations. Therefore, problems can arise when calculating the number of protection software licenses needed for virtual machines. The new per-core licensing model seeks to solve this problem: companies can purchase a license for the processor core that controls virtual machines, allowing any number of machines to be covered.

The lack of centralised management tools can become a problem when it comes to managing multi-component corporate IT infrastructure. The Kaspersky Security Center feature provides a single administration console from where IT specialists can monitor the status of all protected workstations in the company, both physical and virtual. Kaspersky Lab argues that this can prove especially convenient when other network nodes are also protected by Kaspersky Lab products and technologies. Centralised management considerably facilitates the protection of virtual machines and helps ensure the company's established security policies are applied.

Kaspersky Security for Virtualization 2.0 is already available through Kaspersky Lab partners. It can be purchased as a standalone solution for VMware environments, or can be integrated within a full suite of endpoint protection technologies from Kaspersky Lab.