Kaspersky Lab Security for Virtualisation
July 01, 2015
Kaspersky has built itself up from a purveyor of anti-virus software to a full-blown security management company and has now moved into the virtual environment with this offering. Right from the first, we were impressed.
Kaspersky Security for Virtualisation (KSV) is one of those tool sets that goes out of its way to make administrators feel comfortable. The architecture, look and feel and functionality are typical Kaspersky, and the product suite behaves exactly as one would expect. A big piece of that is the seamless stitching together of the Security Centre, the centralised management platform. The system can use both agentless and light agent technology.
In the agentless deployment - on VMware - the system takes advantage of vShield. Connecting through vCentre, the Kaspersky Security Centre communicates with the Virtual Appliance File Anti-Virus Component. This connects to the vShield endpoint ESX module and back to vCentre. The VM Tools and the vShield API do their duties on the virtual machines.
Deployment in this mode is very quick: the AV engine updates automatically and new virtual machines are protected immediately. The down side, of course, is that there is no access to VM internals, such as RAM. This is a limitation of VMware, however. This also allows the use of the network security appliance in conjunction with the VMware virtual distributed switch to act as an attack blocker.
One can see the real power of this system, however, when using the light agent. The agent is placed on each virtual machine and, in this case, it makes no difference which hypervisor is in use. In addition to having access to VM internals, such as RAM, this deployment enables several other security services. In this deployment the KSV is a powerful generalised security platform.
SC Webcasts UK
Information Security Manager
Infosec People - Hammersmith, West London
Junior Penetration Tester, Hertfordshire, to £35k + benefits
Infosec People - England, Hertfordshire
Cyber Security Architect
CYBER EXECS - London (Greater)
SOC Analyst, Aldershot, £47-56k + package
Infosec People - Hampshire, England, Aldershot
Senior Security Engineer
Loveworklife Recruitment - United Kingdom
Sign up to our newsletters
SC Magazine UK Articles
- Tesco Bank allegedly ignored warnings of hack from Visa
- Investigatory Powers and Digital Economy Bills could threaten economy
- Updated: A million German routers knocked offline by failed Mirai botnet attack
- Gooligan ad fraud malware infects 1.3M Android users, installs over 2M unwanted apps
- Microsoft update left Azure Linux virtual machines open to hacking
- SC Awards Europe 2016 winners announcements!
- ISIS radicalises 'lone wolves' through strong social media presence
- Updated: How will Brexit affect the cyber-security industry in UK and Europe?
- ICYMI: CEO Sacked; MS Zero-day; Passwords dropped; Ransomware wild, charging hack
- 9.2 million medical records for sale on darkweb
- ICYMI: Tesco warned; IP Bill threatens economy; German routers offline; Azure trojan; Gooligan fraud
- Data centres are on the move - where will they end up?
- 90% of ITDMs believe IAM is crucial to digital transformation success
- Research: Hacked companies could see customer exodus if breached
- Misconfigured drive exposes locations of explosives used by oil industry