1 copyright @ bitdefender 2013 virtualization security understanding the impact
TRANSCRIPT
1
Copyright @ Bitdefender 2013Copyright @ Bitdefender 2013
Virtualization Security
Understanding The Impact
2
Copyright @ Bitdefender 2013
Virtualization market drivers and adoption
XTraditional Antimalware
3
Copyright @ Bitdefender 2013
Creating The Perfect Storm
Each with its own
I/O Stream
Physical Server Can Support
50-70 Virtual Desktops
8-12 Virtual Servers
1
4
Copyright @ Bitdefender 2013
Antivirus Impact:
200 MBof memory per VM
200+ MBof disk per VM
The antimalware agent adds : Scan Engines – Signatures -Cache databases… to each VM
5
Copyright @ Bitdefender 2013
Creating The Perfect Storm
Scan
Scan
Scan
ScanScan
Scan
Simultaneous Update
Simultaneous Update Simultaneous Update
Simultaneous Update
AV STORM
6
Copyright @ Bitdefender 2013
Antivirus Impact:
VSSecurity Capacity
7
Copyright @ Bitdefender 2013
Security Gaps:
Boot latency & Boot time gaps
System are vulnerable to attacks during AV loading, updates and during backup recovery
8
Copyright @ Bitdefender 2013
Lack of intelligent co-ordination
o Integrate with virtualization managemento Nonexistent VMs remain o Serialize full system scanso Policy applied to groups
9
Copyright @ Bitdefender 2013
Secure Virtual Appliancethe Impact:
Security & Capacity
Remote Scanning
10
Copyright @ Bitdefender 2013
Secure Virtual Appliance
Deduplicate and Centralize
+30% saving on CPU impact
+10% saving on Memory impact
12
Copyright @ Bitdefender 2013
VSI Login results for SVE – Multi-platform
Baseline (ms) VsiMax Dynamic (ms)0
1000
2000
3000
4000
5000
6000
7000
1543
4929
1684
5105
1988
5485
2149
5686
2235
5794
2313
5892
No AV Bitdefender SVE - Multi-platform Bitdefender SVE - VMwareTrend Micro Deep Security Kasperky Security for Virtualization McAfee Move
13
Copyright @ Bitdefender 2013
VSI Login results for SVE – VMware with vShield
VsiMax # VDI0
50
100
150
200
250
194
165
145 143
120 118
No AV Bitdefender SVE - Multi-platform Bitdefender SVE - VMwareTrend Micro Deep Security Kasperky Security for Virtualization McAfee Move
14
Copyright @ Bitdefender 2013
Approach: VMware integration
VMware vShield Endpoint
VMware vCenter integration
BD Tools
Windows on ESXiif licensed for vShield
“Agentless”?
15
Copyright @ Bitdefender 2013
An Alternative Approach
o Any hypervisor
o SVA redundancy
o Performance and simplicity
17
Copyright @ Bitdefender 2013
Security
reinvented
o Hypervisor agnostic; supports VMware, Citrix, Microsoft, AWS, Oracle, and Red Hat virtualization
o OS agnostic; Windows and Linux servers and VDI machines
o Integrated management; VMware, Citrix, Amazon Web Services
o 30% more VMs up to per physical host; Increased server consolidation with centralized antimalware
o Tiny footprint on the VMs: 60 MB of disk and 30 MB of memory in non-VMware environments
18
Copyright @ Bitdefender 2013
Built with Virtualization
Built for Virtualization
19
Copyright @ Bitdefender 2013
20
Copyright @ Bitdefender 2013
Virtualization is disruption take advantage of your chance to improve security!
o Virtualization needs purpose-built securityo Two approaches today; VMware vShield and Bitdefender o Management must be integrated (vCenter, XenServer, AD) o Avoid YAPS (Yet Another Point Solution)o Future-proof (OS & hypervisor, private & public, mobile)o Traditional endpoint and management architectures will fail
21
Copyright @ Bitdefender 2013
Copyright @ Bitdefender 2013www.bitdefender.com/enterprise
Action Plan:
email me at [email protected]
- Arrange for a demonstration/webinar
- Plan a proof of concept trial
- Receive the LOGIN VSI performance paper
22
Copyright @ Bitdefender 2013
Copyright @ Bitdefender 2013www.bitdefender.com/enterprise
Questions and Thank-you
23
Copyright @ Bitdefender 2013
Back up slides
24
Copyright @ Bitdefender 2013
The #1 Anti-Malware Security Technology in the world First security software vendor to receive top recommendations simultaneously from the
most important three key independent organizations in the US, UK, and Germany!
Only security company to receive 14 VB Antispam awards in a row
BitDefender protects more than 500 million people worldwide (including technology partnerships)
Nine international sales offices with ~ 475 employees worldwide
260+ technical people and engineers in R&D team
Products localized in more than 20 languages.
120 OEM Partners and Growing
Trusted by top security companies globally: F-Secure, G-Data, Trustport, e-Scan, Qihoo, Bullguard, Acronis IBM, etc
Bitdefender at-a-glance
25
Copyright @ Bitdefender 2013
Advanced protection through proactive detection
• Active Virus Control leverages advanced heuristic methods to detect new potential threats in real time
• It monitors all application activity throughout the lifecycle of the application processes
• B-HAVE analyzes the behavior of potentially malicious codes inside a secure virtual computer environment
• It eliminates false positives and significantly increasing detection rates for new and unknown malware
26
Copyright @ Bitdefender 2013
Bitdefender named Product of the Year 2012 by AV-Comparatives
http://www.av-comparatives.org/images/docs/avc_sum_201212_en.pdf
27
Copyright @ Bitdefender 2013
Bitdefender wins 6 rounds in a row of AV-TEST evaluations