1

Copyright @ Bitdefender 2013Copyright @ Bitdefender 2013

Virtualization Security

Understanding The Impact

2

Copyright @ Bitdefender 2013

Virtualization market drivers and adoption

XTraditional Antimalware

3

Copyright @ Bitdefender 2013

Creating The Perfect Storm

Each with its own

I/O Stream

Physical Server Can Support

50-70 Virtual Desktops

8-12 Virtual Servers

1

4

Copyright @ Bitdefender 2013

Antivirus Impact:

200 MBof memory per VM

200+ MBof disk per VM

The antimalware agent adds : Scan Engines – Signatures -Cache databases… to each VM

5

Copyright @ Bitdefender 2013

Creating The Perfect Storm

Scan

Scan

Scan

ScanScan

Scan

Simultaneous Update

Simultaneous Update Simultaneous Update

Simultaneous Update

AV STORM

6

Copyright @ Bitdefender 2013

Antivirus Impact:

VSSecurity Capacity

7

Copyright @ Bitdefender 2013

Security Gaps:

Boot latency & Boot time gaps

System are vulnerable to attacks during AV loading, updates and during backup recovery

8

Copyright @ Bitdefender 2013

Lack of intelligent co-ordination

o Integrate with virtualization managemento Nonexistent VMs remain o Serialize full system scanso Policy applied to groups

9

Copyright @ Bitdefender 2013

Secure Virtual Appliancethe Impact:

Security & Capacity

Remote Scanning

10

Copyright @ Bitdefender 2013

Secure Virtual Appliance

Deduplicate and Centralize

+30% saving on CPU impact

+10% saving on Memory impact

12

Copyright @ Bitdefender 2013

VSI Login results for SVE – Multi-platform

Baseline (ms) VsiMax Dynamic (ms)0

1000

2000

3000

4000

5000

6000

7000

1543

4929

1684

5105

1988

5485

2149

5686

2235

5794

2313

5892

No AV Bitdefender SVE - Multi-platform Bitdefender SVE - VMwareTrend Micro Deep Security Kasperky Security for Virtualization McAfee Move

13

Copyright @ Bitdefender 2013

VSI Login results for SVE – VMware with vShield

VsiMax # VDI0

50

100

150

200

250

194

165

145 143

120 118

No AV Bitdefender SVE - Multi-platform Bitdefender SVE - VMwareTrend Micro Deep Security Kasperky Security for Virtualization McAfee Move

14

Copyright @ Bitdefender 2013

Approach: VMware integration

VMware vShield Endpoint

VMware vCenter integration

BD Tools

Windows on ESXiif licensed for vShield

“Agentless”?

15

Copyright @ Bitdefender 2013

An Alternative Approach

o Any hypervisor

o SVA redundancy

o Performance and simplicity

17

Copyright @ Bitdefender 2013

Security

reinvented

o Hypervisor agnostic; supports VMware, Citrix, Microsoft, AWS, Oracle, and Red Hat virtualization

o OS agnostic; Windows and Linux servers and VDI machines

o Integrated management; VMware, Citrix, Amazon Web Services

o 30% more VMs up to per physical host; Increased server consolidation with centralized antimalware

o Tiny footprint on the VMs: 60 MB of disk and 30 MB of memory in non-VMware environments

18

Copyright @ Bitdefender 2013

Built with Virtualization

Built for Virtualization

19

Copyright @ Bitdefender 2013

20

Copyright @ Bitdefender 2013

Virtualization is disruption take advantage of your chance to improve security!

o Virtualization needs purpose-built securityo Two approaches today; VMware vShield and Bitdefender o Management must be integrated (vCenter, XenServer, AD) o Avoid YAPS (Yet Another Point Solution)o Future-proof (OS & hypervisor, private & public, mobile)o Traditional endpoint and management architectures will fail

21

Copyright @ Bitdefender 2013

Copyright @ Bitdefender 2013www.bitdefender.com/enterprise

Action Plan:

email me at frivera@bitdefender.com

- Arrange for a demonstration/webinar

- Plan a proof of concept trial

- Receive the LOGIN VSI performance paper

22

Copyright @ Bitdefender 2013

Copyright @ Bitdefender 2013www.bitdefender.com/enterprise

Questions and Thank-you

23

Copyright @ Bitdefender 2013

Back up slides

24

Copyright @ Bitdefender 2013

The #1 Anti-Malware Security Technology in the world First security software vendor to receive top recommendations simultaneously from the

most important three key independent organizations in the US, UK, and Germany!

Only security company to receive 14 VB Antispam awards in a row

BitDefender protects more than 500 million people worldwide (including technology partnerships)

Nine international sales offices with ~ 475 employees worldwide

260+ technical people and engineers in R&D team

Products localized in more than 20 languages.

120 OEM Partners and Growing

Trusted by top security companies globally: F-Secure, G-Data, Trustport, e-Scan, Qihoo, Bullguard, Acronis IBM, etc

Bitdefender at-a-glance

25

Copyright @ Bitdefender 2013

Advanced protection through proactive detection

• Active Virus Control leverages advanced heuristic methods to detect new potential threats in real time

• It monitors all application activity throughout the lifecycle of the application processes

• B-HAVE analyzes the behavior of potentially malicious codes inside a secure virtual computer environment

• It eliminates false positives and significantly increasing detection rates for new and unknown malware

26

Copyright @ Bitdefender 2013

Bitdefender named Product of the Year 2012 by AV-Comparatives

http://www.av-comparatives.org/images/docs/avc_sum_201212_en.pdf

27

Copyright @ Bitdefender 2013

Bitdefender wins 6 rounds in a row of AV-TEST evaluations