Virtualization Technology News and Information
Article
Search:
RSS
Follow VMblog.com:
Improve end user experience in VDI, DaaS and physical endpoint environments
Kaspersky Lab Announces New Light Agent Virtualization Security, Bringing In-Depth Protection to More Virtual Platforms

Kaspersky Lab has announced its latest virtualization security solution, which delivers advanced protection to the VMware, Citrix and Microsoft virtualization platforms. Kaspersky Security for Virtualization | Light Agent is available upon request for evaluation to customers and partners in the United States, and will be publicly available for purchase on April 22 in the United States, Russia, United Kingdom, Germany, Australia and the Middle East. Full commercial availability for all global regions will occur during the next several weeks. This new offering will compliment Kaspersky Lab's industry-leading agentless virtualization security solution for VMware vSphere users, which will continue to be offered as Kaspersky Security for Virtualization | Agentless. 

The new light agent technology is Kaspersky Lab's first ever security solution optimized specifically for Microsoft Hyper-V and Citrix XenServer customers, and will provide VMware customers with a choice of agentless or light-agent protection. The protection and performance benefits of Kaspersky Lab's light agent solution offer the "best of both worlds" over existing agentless and agent-based virtualization security models.

Quick Facts
  • Kaspersky Security for Virtualization | Light Agent is Kaspersky Lab's first solution specifically designed for Citrix and Microsoft virtualization platforms
  • Both the new Light Agent and existing Agentless solutions will be offered to customers through a single purchased license of the Kaspersky Security for Virtualization product
  • Kaspersky Lab's new Light Agent solution brings extra security features, including application controls and web usage policy enforcement, to virtualization environments
  • The Kaspersky Security for Virtualization product will be offered in flexible license packages, making it easier for growing businesses to secure future deployments

The Light Agent Performance Advantage

Building and maintaining a virtual network requires specialized software and expertise which differ greatly from the tools and training needed to manage a physical network of endpoints and servers. But too often, businesses apply security software built for physical machines to their virtual network, and suffer a multitude of negative consequences.  At best, this "agent-based" protection leads to a wasteful use of computing resources - which is what virtualization seeks to improve in the first place - and can reduce the consolidation ratio of virtual machines and overall ROI of a virtualization project. 

While users complain about slow performance on their virtual desktops each morning, a real threat to virtual machines across the network is occurring behind the scenes in the form of an "Instant On Gap." This refers to the window of time after a virtual machine is created, and before the latest security updates are downloaded by the security agent on each virtual machine. Until these updates are processed, the virtual machine is vulnerable. In addition, depending on how many users are simultaneously downloading these updates to their individual VMs, and how many days worth of security updates there are to process, this window of vulnerability can drag on for minutes, or even hours. While this process of updating the security databases on virtual desktops drags on, the resources of the virtual servers will be heavily strained, resulting in poor network performance and a lower return on a company's virtualization investment.

Kaspersky Security for Virtualization | Light Agent delivers benefits that offer clear advantages to the traditional agent-based approach. In the light agent model, almost all resource-intensive security processing is performed by a dedicated virtual appliance at the hypervisor level. By channeling virtualized network traffic and files through this up-to-date appliance, VMs are fully protected by the latest security updates the instant they are created, and the need to push redundant copies of anti-malware databases across the network to each VM is eliminated. Kaspersky Lab's intelligent scanning also ensures the same file is not scanned multiple times, freeing up additional system resources.

The Light Agent Protection Advantage

Just as the light agent approach offers better performance than "agent-based" security, a light agent approach will also offer improved protection over "agentless" security. Agentless security models offer performance advantages by having 100% of security tasks performed away from the virtual machine by a dedicated virtual appliance, but this limits the software's ability to perform advanced security management and network protection tasks on virtual endpoints. An agentless security system effectively protects file-based activity, but cannot protect against web-born malware, such as worms or other advanced threats, which can penetrate the system processes of virtual endpoints and spread across a network. This is where a light agent approach strikes the ideal balance of performance and protection.

Kaspersky Security for Virtualization | Light Agent includes a small software agent on each virtual machine, far different from the resource-hogging software found in the traditional agent-based model. This small agent enables big security capabilities, allowing Kaspersky Security for Virtualization | Light Agent to put the full power of Kaspersky Lab's security expertise to work guarding a virtual network, and can be deployed without rebooting. Some of the advanced protection technologies enabled by a light agent solution include:
  • Application Controls
  • Device Controls
  • Web Usage Policies
  • Host-based Intrusion Prevention Systems (HIPS) and Firewall

Kaspersky Security for Virtualization | Light Agent also includes all of the security capabilities found in Kaspersky Lab's agentless solution, including heuristic file analysis and cloud-assisted intelligence via the Kaspersky Security Network for real-time information on emerging threats and malicious applications. Kaspersky Lab will continue to offer Kaspersky Security for Virtualization | Agentless - currently available only for VMware environments - as an effective solution for data centers or server environments that don't access the Internet, and situations where steadily-high consolidation ratios and automatic protection of every new VM are paramount.

"Driven by the research of our security experts, we're on a mission to educate businesses about virtualization security risks, and provide them with options for protecting their network," said Nikolay Grebennikov, Chief Technology Officer, Kaspersky Lab. "There is no ‘one-size-fits-all' solution for any network, so by offering a combination of virtualization security options for the three largest virtual platforms in the world, Kaspersky Lab is ensuring our customers stay protected while getting the most from their virtualization investment."
Published Tuesday, April 15, 2014 6:35 PM by David Marshall
Filed under:
Get This Featured White Paper: Mind the Gap: Understanding the threats to your Microsoft 365 data
You may also be interested in this white paper: GigaOm Radar for Cloud Observability 2024
Comments
There are no comments for this post.
To post a comment, you must be a registered user. Registration is free and easy! Sign up now!
Datacenter
Global Digital
haf
DTX
DTW-NA
innovatrix
Economist Impact
GISEC
IPS MP
global-digital-cx
vExpert
Calendar
<April 2014>
SuMoTuWeThFrSa
303112345
6789101112
13141516171819
20212223242526
27282930123
45678910