With the Introduction of vSphere 5.1, all the editions (essential plus or higher) of vSphere have the vShield Endpoint component bundled along with them. This basically means that you would no longer have to shell out dollars to use the functionality of Endpoint. This enables you to offload the Anti-Virus tasks to a service virtual machine, which runs on each ESXi server to ensure that all the malicious activities and data can be scanned on this service VM. This protects your virtual machines against virus attacks and other malicious activities. This will also avoid any Storage, CPU or RAM bottlenecks which might be seen in the environment due to traditional Anti-Virus Scans using an anti-virus agent inside each virtual machine.
As mentioned before, with the release of vSphere 5.1, Endpoint functionality is available at no extra
cost to customers with valid SnS contract for Essentials Plus or higher.
vSphere 5.1.x, 5.0.x and 4.0 U3 customers can download Endpoint from the
respective vSphere download pages. No Endpoint license is needed.
Once you have the EndPoint service VM, you can use vShield Manager to configure this for all the ESXi servers in you data-center Now, you would need to go to your anti-virus vendor and get to the version of antivirus which supports the Endpoint appliance. This will allow you to migrate from the primitive methodology of anti-virus scans and make your virtual infrastructure more robust, secured and efficient.
The diagram below gives you a visualization of how this works using Trend Micro Deep Security:-
Courtesy: Trend's Website
Below is the list of the popular Antivirus vendors who have already developed a solution around vShield Endpoint:-
On the Roadmap (Source: Google Search)
> Symantec Endpoint
> F-Secure
> Sophos
> Lumension
and many more to come......
VMware KB - Downloading and enabling vShield Endpoint on supported vSphere platforms
VMware KB - Downloading and enabling vShield Endpoint on supported vSphere platforms
I can see that most of the existing and new security vendors would develop around Virtualization as they all understand that their products need to adopt the Virtualization and Cloud agility as well. Looking at the benefits this is a more futuristic approach of providing endpoint security in a data-center. I can see this change taking us towards the era of, Anti-Virus as a Service (AVaaS) where-in Security vendors would provide customized endpoint products to data-centers and end users as a commodity service.
Another contribution to the Cloud from VMware. Kudos!!
***********************************************
Update to Article Monday, December 3rd, 2012
***********************************************
***********************************************
Update to Article Monday, December 3rd, 2012
***********************************************
As per the latest market update, Symantec today announced availability of its first anti-malware software protection that supports VMware's security architecture known as vShield, becoming the latest anti-malware vendor to do so following similar moves by Trend Micro, Kaspersky Lab and McAfee, among others.
Symantec Endpoint Protection (SEP) 12.1.2 can be used to scan, detect, block and remediate against anti-malware....
More can be read here -
http://www.networkworld.com/news/2012/120312-symantec-vshield-264655.html
Symantec Endpoint Protection (SEP) 12.1.2 can be used to scan, detect, block and remediate against anti-malware....
More can be read here -
http://www.networkworld.com/news/2012/120312-symantec-vshield-264655.html
Thank you for sharing this valuable information. At least this is the first I'm hearing this after 5.1 is released.
ReplyDeleteI have in the past blogged on vShield Product hope your readers also benefit from it.
Thanks Preetam..
Deletethanks
ReplyDelete