Virtualization Technology News and Information
Reflex Systems Announces VMware VMsafe Certification for Reflex VMC
Reflex Systems, the pioneer in virtualization management, compliance and security, today announced that Reflex Virtualization Management Center (VMC) is the first third-party solution to be certified by VMware for VMsafe™, VMware's hypervisor-embedded security solution for ISV partners.

Since VMsafe applications are embedded in the hypervisor, VMware's certification program ensures that third-party software does not adversely affect the functionality of the vSphere v4 platform. The certification also verifies that a VMsafe solution does not impact the performance of the hypervisor. Solutions that pass the certification are tested for their interaction and compatibility with all of vSphere v4's major features and functionality.

"With Reflex VMC's VMsafe certification, VMware has declared that our industry-leading virtualization management and security solution is fully compatible and integrated at the kernel-level with their hypervisor," said Hezi Moore, CTO of Reflex Systems. "Customers can now be assured that VMC is completely compatible with vSphere v4."

"As virtual environments and technologies continue to take an increasingly large role in data centers, certification with this level of integration between technologies becomes critical for improving performance and ensuring continuity of operations," said Andrew Braunberg, Research Director, Enterprise Networks and Security for Current Analysis. "By achieving this level of certification with the industry's leading server virtualization platform, companies like Reflex can extend their capabilities and provide customers real value-added services to manage and secure their virtual infrastructure."

Reflex VMC with vTrust utilizes VMware's VMsafe API to deliver a more granular level of visibility and control into communication within the VMware virtual environment. vTrust allows more sophisticated segmentation (virtual trust zones), policy enforcement as well as monitoring, filtering and control of VM-to-VM traffic. Additional features include asset classification, virtual trust zones, dynamic network control, and adaptive roaming policies that move with assets regardless of physical location, or network connection. Reflex's relationship with VMware enables the company to leverage VMware VMsafe technology to enforce network policies through a module embedded in the hypervisor in VMware vSphere 4.

vTrust features in Reflex VMC include the following:

  • Dynamic Policy Enforcement and Management -- VMsafe-certified, hypervisor embedded, enforcement of critical business, IT infrastructure and security policies. Rules governing zone to zone, VM to VM, and VM to the physical environment are generated dynamically on the fly based on high level policy definition. Policies adapt to the environment and move with the virtual assets (virtual machines, virtual network, group of VMs, hosts, clusters, vLAN, etc.) regardless of location, type of network connection, or type of virtual switch.
  • Policy Extends into the Cloud -- vTrust can facilitate and automate the use of cloud and IaaS services by providing a cloud API that enables enterprises and hosting/cloud solution providers to secure individual virtualization resources in the cloud. 
  • Virtual Segmentation -- create trust zones by partitioning shared resources with specific business and security policies for each zone. vTrust supports overlapping zones (VMs that belong to more than one zone), shared resources, and zones within zones. 
  • Virtual Datacenter Automation -- Automate data center operations by defining rules and setting policy across the virtual infrastructure.
  • Virtual Software Asset Management -- track and monitor installed software applications, without using an agent or network scan, to provide vital information about the software installed on VMs such as version, install date, patch level, etc.
  • Virtual Quarantine -- enforce data center policy when VMs are provisioned (VMs must meet certain criteria to be allowed on the network) providing isolation of assets that do not meet policy. Easily detect rogue or unauthorized guests or virtual machines which do not meet regulatory or compliance requirements.
  • Virtual Networking Policies -- create and enforce a DMZ, block specific kinds of network traffic between virtual machines (P2P, IM, FTP, etc.), ensure only specific protocols are used on specific ports or networks, etc.
  • (VQL) Virtualization Query Language -- natural and structured query language used to define policy and zones, allowing virtual infrastructure to dynamically adapt to changing needs without requiring a change to the policies. VQL enables virtualization administrators to quickly query the virtual infrastructure "on the fly" for any type of information in the past or present. VQL also serves as a third-party integration point.
  • Classification & vmTagging (Virtual Meta Tagging) -- VMC primarily recognizes classification of objects by inherent properties of the individual virtual assets. Virtual assets may also be classified or tagged by administrator-defined properties such as line-of-business, type of application, organization, geographic location, operating system, patch level, or any other taxonomy as required by business processes. Virtual classification and tagging is also genetic, enabling clones of virtual assets to automatically inherit policy from parents.
Published Wednesday, August 26, 2009 6:59 AM by David Marshall
Reflex Systems Announces VMware VMsafe Certification for Reflex … | Certification live today - (Author's Link) - August 26, 2009 11:35 AM
Twitter Trackbacks for Reflex Systems Announces VMware VMsafe Certification for Reflex VMC : - Virtualization Technology [] on - (Author's Link) - August 27, 2009 6:31 PM
To post a comment, you must be a registered user. Registration is free and easy! Sign up now!
<August 2009>