Product Information

Kaspersky Lab Security for Virtualisation

by Peter Stephenson July 01, 2015

Kaspersky has built itself up from a purveyor of anti-virus software to a full-blown security management company and has now moved into the virtual environment with this offering. Right from the first, we were impressed.

Kaspersky Security for Virtualisation (KSV) is one of those tool sets that goes out of its way to make administrators feel comfortable. The architecture, look and feel and functionality are typical Kaspersky, and the product suite behaves exactly as one would expect. A big piece of that is the seamless stitching together of the Security Centre, the centralised management platform. The system can use both agentless and light agent technology.

In the agentless deployment - on VMware - the system takes advantage of vShield. Connecting through vCentre, the Kaspersky Security Centre communicates with the Virtual Appliance File Anti-Virus Component. This connects to the vShield endpoint ESX module and back to vCentre. The VM Tools and the vShield API do their duties on the virtual machines.

Deployment in this mode is very quick: the AV engine updates automatically and new virtual machines are protected immediately. The down side, of course, is that there is no access to VM internals, such as RAM. This is a limitation of VMware, however. This also allows the use of the network security appliance in conjunction with the VMware virtual distributed switch to act as an attack blocker.

One can see the real power of this system, however, when using the light agent. The agent is placed on each virtual machine and, in this case, it makes no difference which hypervisor is in use. In addition to having access to VM internals, such as RAM, this deployment enables several other security services. In this deployment the KSV is a powerful generalised security platform. 

Related Group Test

SC Webcasts UK

Sign up to our newsletters