TechNavio's analysts forecast the Global Virtualization Security Management Solutions market to grow at a CAGR of 49.53 percent over the period 2011-2015. One of the key factors contributing to this market growth is the increasing deployment of applications in the virtualized product environment. The Global Virtualization Security Management Solutions market has also been witnessing the virtualization security solutions for multiple platforms. However, the low control on data could pose a challenge to the growth of this market.

Key vendors dominating this market space include Trend Micro Inc., Juniper Networks Inc., VMware Inc., and Symantec Corp.

Commenting on the report, an analyst from TechNavio's IT Security team said; Most companies use virtualization technology for deploying their application servers and databases. Also, virtualization security vendors are placing greater importance on security for server and database virtualization. Although security solutions for virtual environments are increasing and vendors are adding new features such as log management and web access management, the major market driver remains securing the virtual servers.

According to the report, one of the major drivers of the Global Virtualization Security Management Solutions market is the increasing severity of security threats on the virtual environment/infrastructure. Securing the virtual environment helps to monitor the entire system and report any threat to the administrator. In this way security threats affecting other systems in the same environment can be reduced, because each machine has multiple virtual instances housed in it. Therefore, increasing security threats to the virtual environment is driving the market.

Further, the report also discusses that data sprawl in the virtual environment could hinder the growth of the market.

For more information visit http://www.researchandmarkets.com/research/ks2zb2/global_virtualizat

Related posts:

1. Virtual Security Appliance Market up 57% in 2011, Driven by Cloud and Data Center Buildouts
2. Global Cloud Services Market Revenues are Expected to Hit $82 Billion by 2016
3. IT Networking Equipment/Products Market to Reach $214.2 Billion by 2015

With this new certification, the KVM hypervisor on Red Hat Enterprise Linux and IBM x86 servers now meets government security standards allowing open virtualization to be used in homeland security projects, command-and-control operations, and throughout government agencies that previously were limited to proprietary virtualization technologies. This security certification paves the way for governments, financial institutions and other security-conscious agencies to create secure, open virtualized IT environments and private clouds.

Open virtualization offers organizations, including government agencies and financial businesses, the opportunity to reduce costs and increase choice with the enterprise-grade KVM hypervisor.

“This certification highlights the combined power of SELinux and KVM and we expect it to pave the way for broader adoption of private cloud computing infrastructure in government agencies,” said Paul Smith, general manager and vice president, public sector operations, Red Hat. “SELinux addresses common government agency concerns about implementing virtualization because it provides for virtual resources to run in separate containers and protect each one individually in case of intrusion.”

“Security is critically important to all our clients as they share workloads and data through virtualization and in the cloud – and especially so to our government and financial customers around the world”, said Jean Staten Healy, director of Linux, IBM. “Today's announcement confirms that open virtualization and KVM are ready for business and are able to offer high levels of security certification on Red Hat Enterprise Linux and IBM Systems.”

Red Hat Enterprise Linux 5 features Security-Enhanced Linux (SELinux), a joint project developed by the National Security Agency (NSA) and Red Hat. This Common Criteria certification allows producers to use Red Hat Enterprise Linux 5 with the KVM hypervisor with confidence as they host many tenants on the same machine, knowing that their virtual guests will be separated from each other using Mandatory Access Control technology developed by the NSA.

Red Hat Enterprise Linux with the KVM hypervisor on IBM Systems was certified by BSI, Germany's Federal Office for Information Security. To facilitate this certification, Red Hat and IBM worked with atsec information security, a U.S. government and BSI accredited laboratory, which tested and validated the security, performance and reliability of the solution against the Common Criteria Standard for Information Security Evaluation (ISO/IEC 15408) at EAL4+.

The certification of KVM and Red Hat Enterprise Linux 5 applies to IBM System x, BladeCenter and iDataPlex servers.

Red Hat Enterprise Linux 6 with the KVM hypervisor is officially “In Evaluation” for Common Criteria certification at EAL4+.

Related posts:

1. Oracle updates free, open source VirtualBox hypervisor
2. CompTIA Storage+ Powered by SNIA Certification Launches Worldwide
3. Project Kensho to Allow Hypervisor-Independent Application Workloads

“McAfee MOVE AV provides McKesson with comprehensive and consistent malicious code protection for our virtual environment,” said Patrick Enyart, senior director, McKesson Information Security, Security Operations. “As we continue to adopt emerging technologies, particularly cloud computing solutions, implementing McAfee MOVE AV provides us with additional security in our virtual environment. The solution makes sizing and deployment simpler and ensures that every system is deployed with the same level of protection.”

The McAfee MOVE AV agentless deployment option addresses the challenges of protecting the virtual environment and keeping it free of malware without the bulk of an agent, resulting in easy deployment and set-up. Both deployment options (multi-platform and agentless) provide powerful, comprehensive, and consistent protection, and are managed and reported by the McAfee ePolicy Orchestrator platform.

The integration with VMware vShield Endpoint enables users to optimize performance in Virtual Desktop Infrastructure (VDI) and virtual server environments based on VMware technology, while knowing that they are completely secure. Virtualization is all about flexibility, efficiency and scalability. McAfee provides adaptive, agentless security protection for the virtual environment without jeopardizing performance, allowing users to utilize the full benefits and power of virtualization.

“The combination of McAfee MOVE AV with VMware vShield Endpoint offers customers protection with top-rated security and high performance in their virtual desktop and server environments,” said Parag Patel, vice president, Global Strategic Alliances, VMware. “This enables users to further embrace virtualization and benefit from the cost savings it provides.”

As a part of the McAfee security connected framework, McAfee MOVE AV delivers real-time visibility and predictive capability that is enabled by McAfee Global Threat Intelligence, allowing customers to balance the business need to embrace all forms of virtualization while protecting their critical assets and sensitive data, all seamlessly integrated into one console.

“Business is a virtual entity -- the IT landscape CIOs work in is rapidly changing,” said Candace Worley, senior vice president and general manager of endpoint security at McAfee. “Virtualization is providing the foundation for this agility. With our latest release of McAfee MOVE AV designed to integrate with VMware vShield Endpoint, security can be enabled without an agent making it easier to deploy and manage. Together, McAfee and VMware equip customers with the security and manageability they need.”

Security in the data center environment needs to be designed from the ground up and adopt the fundamentals of virtualization, which include shared resources, optimized performance and low cost of ownership. As part of the McAfee security connected framework, which includes Network IPS, SIEM and server security technologies, McAfee is bringing new products to market optimized for virtual infrastructure using the McAfee MOVE platform.

Availability
McAfee MOVE AV agentless deployment option is available now.

Related posts:

1. McAfee and Citrix to Make Virtual Desktop Security Simpler and More Scalable
2. McAfee Highlights Discrepancy Between Data Center Security Perceptions and Reality
3. Intel completes McAfee acquisition

Enterprises and MSPs alike increasingly rely on hosted, multi-tenant environments to deliver business services. In such cases, virtual firewalls are deployed to assure security and privacy for end users and customers without overwhelming IT with unnecessary hardware. Virtual firewalls provide the same level of mutual exclusivity and security as their physical counterparts, yet multiple virtual firewalls can be hosted by one physical device. Now, organizations taking advantage of virtual firewall efficiencies can oversee their physical and virtual firewalls from Firewall Analyzer.

“Our customers are facing an increasing need for managing vendor-agnostic virtualized environments,” said Pravin Kumar, product manager, ManageEngine Firewall Analyzer. “To best support those requirements, we have extended the capability of Firewall Analyzer to monitor, analyze and report not only on physical firewalls but also for firewalls in virtualized environments.”

Fortifying Firewall Analyzer

ManageEngine Firewall Analyzer is enterprise-class, web-based, agent-less software for change management, traffic analysis, security and bandwidth monitoring, and compliance audit and reporting for firewall, VPN, IDS/IPS and proxy servers. It is compatible with almost all commercial and open source firewalls.

Firewall Analyzer now supports logs from the virtual firewalls (context/vdom) present in the Cisco, FortiGate, and Check Point devices. There is no special configuration required. Firewall Analyzer automatically recognizes the logs originating from the virtual firewalls. Each virtual firewall is treated as a separate device, and as a result, the reports and alerts are generated separately.

The new virtual firewall support in Firewall Analyzer is best suited for enterprises and MSPs/ MSSPs that run multi-vendor, multi-tenant environments and need to offer virtual firewall service for each of the vendors exclusively. To assure privacy requirements in a multi-tenant environment, Firewall Analyzer supports user-based client views which empower MSPs/MSSPs with mutually exclusive, client-specific firewall reports and alerts.

Scott Fenna, senior consultant, all networks, Computacenter, said, “As an IT infrastructure service provider for global corporations, we needed a centralized firewall monitoring solution for our multi-vendor, multi-tenant, virtualized environment. Firewall Analyzer proved to be a more-than-capable solution for monitoring and managing multiple, customer-specific, virtual firewalls. Firewall Analyzer provides us with customer-specific client views, with mutually exclusive, individual firewall reports and alerts for each of our customers.”

Pricing and Availability
ManageEngine Firewall Analyzer is now available. A 30-day, fully functional, free trial edition can be downloaded from the ManageEngine website at http://ow.ly/9I6XR. Pricing starts at $395/year for the Professional Edition for one device.

Related posts:

1. AlgoSec Introduces Firewall Management Solution for Virtualized Environments
2. ManageEngine Applications Manager Deepens VMware Monitoring
3. ManageEngine Taps Zoho Cloud-Based Reporting for MSP Center Plus

Considering the rise of VSaaS with the overall trend of increasing surveillance, voluntary citizen spying, the announcement that internet service providers will begin monitoring on all internet activity, and the ever-expanding behemoth Department of Homeland Security, it appears that our society is continuing to go deeper down the rabbit hole of the paranoid surveillance state.

In 2011 alone, the market was in the neighborhood of $500 million, which represents an increase of 25 percent over 2010.

“Growth in the VSaaS market is a result of increasing demand from consumer, small-to-medium businesses, and government end users,” Sam Grinter, a market analyst with IMS Research, said.

Read Full Story

Related posts:

1. Cloud Infrastructure Testing and Cloud-based Application Monitoring – Forecasts to 2017
2. Dell Sees Continued Growth in Cloud-Based Medical Archive
3. Intel earnings soar with rise of cloud computing

“Netronome’s new software application kits provide an extensive set of building blocks for security applications,” said Joe Byrne, senior analyst at The Linley Group. “That enables OEMs to focus on development of their applications, while significantly increasing performance with Netronome’s flow processors.”

Netronome’s IDS/IPS application kit accelerates x86-based IDS/IPS applications through hardware-based packet classification, stateful management of flows, and an integrated, dynamic load balancer. The NGFW application kit augments the IDS/IPS use case with capabilities which allow policy enforcement and packet forwarding between multiple network segments using integrated L2 and L3 forwarding with network address and port translation (NAPT), IPsec VPN support and SSL inspection. Netronome is also making the IPsec and SSL inspection application kits available as standalone application kits for integration within other applications and use cases.

“Networking OEMs are designing 100 Gbps applications that require full visibility into all layers of network traffic, including encrypted communications,” said Jarrod Siket, senior vice president of marketing at Netronome. “With Netronome’s innovative, workload-specific processing architecture vendors can combine Netronome’s flow processors and software application kits with standard x86 processors to bring high-performance security products to market quickly.”

Netronome will be demonstrating these cyber security application kits during RSA 2012 at booth 2333.

Product Availability
The NGFW, IPsec, IDS/IPS and SSL application kits, and NFP flow processors are available now. Netronome production-ready hardware reference platforms are available directly and through its ecosystem.

About Netronome Flow Processors
Powered by 40 multi‐threaded networking cores operating at up to 1.4 GHz, the Netronome Network Flow Processor (NFP‐3240) brings breakthrough performance to a broad range of demanding network, security and content processing applications used in 40 Gbps and 100 Gbps networks. The NFP‐3240 delivers 40 Gbps of packet processing with deep packet inspection, network and security processing, and I/O virtualization for millions of simultaneous flows. The NFP‐3240 is the industry’s only processor specifically designed for tight coupling with x86 processors.

Related posts:

1. NITROX Processor Unveiled with High Performance Security & Compression for Cloud Computing
2. The Communicators: Cyber Security & Cloud Computing
3. Cloud Security Drives Zeus’s Acquisition of Web Application Firewall Company

Privacy and security issues are a growing concern as more companies turn to cloud computing and virtualization. Trend Micro SecureCloud provides distinctive data protection for cloud and virtual environments using encryption with policy-based key management and unique server validation. This protection can safely and easily secure sensitive data stored with the Dell Cloud with VMware vCloud Datacenter Service, an enterprise-class Infrastructure-as-a-Service (IaaS) hosted in a secure Dell data center.

“Security is a primary concern among customers moving to the cloud. Delivering encryption and key management solutions from Trend Micro enables us to further alleviate our customers’ concerns while addressing important risks of data privacy, security and compliance with an efficient cloud data protection solution,” said Kevin Jones, vice president, Dell Services. “SecureCloud gives customers the tools and peace of mind to move sensitive workloads into Dell’s public cloud.”

The addition of the data encryption service lends oversight and accountability to the secure Dell data center, for either multi-tenant or single-tenant cloud development. The SecureCloud encryption solution is closely integrated with the Dell Cloud with VMware vCloud Datacenter Service, but the encryption keys are managed by Trend Micro and accessible only by Dell customers. This layered approach physically and logically separates the encryption keys from the service provider, thus providing additional security and an essential separation of duties.

“Security is one of the greatest challenges facing public cloud computing and we are pleased to work with companies like Dell that know what it takes to design, build and deploy highly efficient cloud solutions, and are committed to providing the unique needs of the hyperscale computing environment,” said Wael Mohamed, executive vice president of Corporate Strategy and Global Field Operations at Trend Micro. “We are also excited that Dell has selected Trend Micro to be one of its primary security vendors for Dell Cloud Services, further proof that when it comes to cloud security innovation and leadership, Trend Micro is ahead of the game.”

With the rollout of SecureCloud, Dell is ensuring that its cloud customers have access to a cutting-edge data encryption and key management service. By employing Dell SecureWorks’ comprehensive security services, Dell is also making sure that the infrastructure of the data center is protected around the clock from cyber threats.

Dell and Trend Micro hold a strategic relationship across several product lines and business units, from OEM to Cloud services. Dell is one of the largest Trend Micro resellers in the world and the companies’ combined products are used worldwide to help organizations drive efficiency while exchanging digital information safely.

Solution Availability
Dell is currently offering Dell Cloud with VMware vCloud Datacenter Service with Trend Micro SecureCloud services in U.S. data centers. Additional joint product offerings will be available in 2012 leveraging Trend Micro’s industry-leading innovation in virtualization and cloud security solutions built for VMware environments.

Related posts:

1. Trend Micro Broadens Virtualization Security Strategy
2. Trend Micro Launches Endpoint Protection With OfficeScan 10.5
3. Juniper Introduces Virtualized Security for Private and Public Clouds

Kaspersky Security for Virtualization is delivered as a virtual security appliance that integrates with VMware vShield™ Endpoint to provide agent-less, anti-malware security based upon Kaspersky Lab’s advanced anti-malware engine. Developed from the same code-base as Kaspersky Lab’s award-winning line of endpoint security products, Kaspersky Security for Virtualization avoids the needless complexity and resource-drain associated with security programs that typically “bolt-on” acquired technology for virtual environments leaving customers with a management nightmare. With Kaspersky Lab, customers have a single, unified management platform for their virtual, physical and mobile environments.

In addition to plug-and-play compatibility with Kaspersky Lab’s own endpoint security offerings, Kaspersky Security for Virtualization seamlessly integrates with VMware vShield™ Endpoint Security, providing straightforward protection for virtual data centers, virtualized servers and desktops. Using VMware vShield™ Endpoint, the centrally managed Kaspersky Security for Virtualization automatically detects every virtual machine on the network, delivering files to the Kaspersky Lab client for real-time anti-malware scans. This integration with VMware vCenter™ means straightforward deployment, automatic protection of new virtual machines, mapping of both logical and physical computing structures, and automatic security updates, all managed by “a single pane of glass,” the Kaspersky Security Center administration console, and delivering increased consolidation ratios for customers.

The Kaspersky Lab Benefit - Unified Management of Virtual, Physical and Mobile Security
One of the greatest advantages of virtualization – IT resource efficiency – can suffer from sub-par security deployments, which apply physical security rules to virtual machines. By integrating with VMware vShield™ Endpoint, Kaspersky Security for Virtualization operates its anti-malware functions on a centralized virtual appliance, eliminating the need for duplicated resources on each virtual machine. By freeing up virtual machine resources, Kaspersky Security for Virtualization can optimize performance, reduce hardware costs and energy consumption, and provide detailed logging of security tasks to satisfy compliance auditing requirements.

Additionally, businesses have a mix of virtual, mobile and physical endpoints, but IT administrators don’t want to manage multiple security programs from multiple consoles. Kaspersky Security for Virtualization doesn’t force customers to create silos responsible for securing each platform. Instead, it feeds data directly to the Kaspersky Security Center. Kaspersky Lab’s agent-based security applications are also “virtualization-aware,” letting customers decide for themselves what method for securing each virtual machine best meets their security needs. IT administrators can also provide customized security policies to selected virtual machine groups, just as easily as with physical machines. This unified management of all computing environments provides an unmatched mix of straightforward administration combined with next-generation protection.

When this streamlined virtualization manager is combined with Kaspersky Lab’s award-winning anti-malware engine, the difference is immediately apparent. Our industry-leading anti-malware engine provides superior detection rates and heuristic analysis to detect and block even the most sophisticated polymorphic malware. Moreover, by having Kaspersky Security for Virtualization deployed on a virtualized host appliance, virtual machines are all protected by the same centralized malware database which is constantly updated as new threats emerge. This model ensures all virtual machines receive the same level of protection, regardless of when the machines were created, or if they have been offline for extended periods of time. There are no “Instant-On” gaps for virtual machines that haven’t been used for extended periods of time and no “AV Storms” that hog network resources while updating virtual machines.

Related posts:

1. Trend Micro Broadens Virtualization Security Strategy
2. Kaspersky Lab Selects DataCore Storage Hypervisor, Accelerates Microsoft Hyper-V
3. Radiant Logic webinar series: Part 1 – Using Virtualization for Seamless Integration… w/ Forrester

Security and compliance are the principal objections affecting virtual and cloud rollouts. Legacy security monitoring and compliance tools cannot reliably protect increasingly complex and dynamic IT environments created by virtualization. Catbird has pioneered a new class of automated security that is context-aware and adaptive to the fluid and mobile nature of virtualized data centers. vSecurity 5.0 integrates directly with the hypervisor to provide comprehensive and automated control, visibility and efficiency. Its vCompliance® engine monitors and enforces virtualized data center compliance with PCI, FISMA, NIST, HIPAA and other standards for regulated industries looking to take advantage of virtualized infrastructure for their mission-critical computing.

"Virtualization has revolutionized all aspects of data center computing, including security. With Catbird's vSecurity 5.0, our customers benefit from the economic and technical advantages of virtualization," said Edmundo Costa, CEO of Catbird. "From the U.S. Department of Defense to some of the largest credit card processors in North America, vSecurity automates the security and compliance process, enabling broader and deeper use of virtualization and cloud computing. Catbird customers can virtualize more assets, virtualize more quickly and improve virtualization ROI."

"Catbird vSecurity 5.0 gives us control over our entire virtual infrastructure and network, which is crucial to the security management of the whole county," said Irvin Metaj, Network Engineer of Indiana's Madison County Government Center, Information Technology Systems. "We manage IT for all branches of government: law enforcement, the courts, the revenue divisions and more. With Catbird, we know which departments are trying to access which network and systems, can manage who can communicate with whom and now patrol unauthorized connections. Catbird really raised our game by exposing us to best practices for virtualization security."

Catbird's award-winning next-generation approach weaves together access control, intrusion detection, secure auditing and automated protection for virtual machines, virtual networks, hypervisor management and associated physical assets.

With the release of vSecurity 5.0, Catbird incorporates features such as:

Event Viewer -Orchestrates and displays data culled from a range of controls, including nprobe, firewall, NAC, IDS/IPS and other sources, to paint a detailed picture of what each control is detecting in real-time. A key tool of IT security and operations people alike, the event viewer provides detailed analysis of the security posture of each asset, as well as the inter-relationships between assets, to determine risks and vulnerabilities.

Compliance Radar Graph - A graphical gauge of a data center's current compliance status against a particular standard that is automatically updated in real time, the compliance radar graph automates the validation of compliance while instantly alerting organizations to noncompliance.

Automated Asset Inventory -Automatic, accurate inventories of the IT environment to populate a comprehensive, reliable asset catalog for security monitoring and enforcement.

Network Flow Mapping - Network flows illustrate the communication paths between objects and groups of objects, providing a comprehensive view of protocols, connections, access lists, and more. Because the netflow mapping is integrated with Catbird's automated inventory, organizations can more effectively regulate access controls and mitigate risks from suspicious communication.

Policy Automation - Organizations can set policies and automatically administer and enforce those policies via vSecurity TrustZones(TM), logical groupings of assets that share a pre-defined, common set of policy and compliance rules. In this way, IT teams can be assured of the compliance of their own virtualized data centers against 3rd party standards or their own corporate governance.

Support for syslog CEF, the Common Event Format, an open log management standard enabling Catbird vSecurity data to be collected and aggregated for analysis by the leading enterprise management systems, including ArcSight, Splunk, and RSA enVision.

Catbird's vSecurity 5.0 is built on industry standard, network-based, security technologies for the most comprehensive set of services protecting virtual, cloud and physical networks. Catbird's controls include IPS/IDS, Network Access Control, Vulnerability Monitoring, Compliance Enforcement, Policy Management, Configuration Management and Access Control in a single solution. vSecurity 5.0 includes vCompliance® for automated, real-time compliance monitoring and enforcement with integrated workflow and reporting; VMshield(TM) for monitoring and enforcing policies and rules on virtual machines to block malicious network activity directed at the specific asset from any source; TrustZones® for ensuring the enforcement and monitoring of security policies associated with a particular virtual machine or network; and Hypervisor Shield(TM) for monitoring and controlling access, detecting malicious network activity and validating configurations of the hypervisor management network.

Catbird vSecurity 5.0 is available immediately. To download a free evaluation version, go to http://www.catbird.com/demo .

Related posts:

1. Catbird Security Honored by SC Magazine as Virtualization Security Innovator of the Year
2. WatchGuard Enhances Security for Virtualized and Cloud Infrastructures
3. Cloud Guard Extends Unified Security to On-Premise Virtualized Networks

The improvements are included in version 2.4 of the FC320X operating software. The software can be used to create port groups of any number of ports and assign a specific user to manage and view traffic from that port group. This is particularly important in multi-tenant applications, where secure virtual networks must be built and managed independently.

For government applications that involve multiple security clearance levels, the port group management feature supports seven user classification levels, which allows port group management to be segregated by security clearance level.

“The FiberConnect 320X is the highest density photonic switch on the market and the expanded virtualization features provide the security needed to truly make the best use of that density in government applications,” said Daniel Tardent, director of product marketing at CALIENT.

The FiberConnect 320X platform offers the industry’s highest density photonic switch with 640 fiber terminations or 320 ports (transmit and receive). It is based on CALIENT’s 3D microelectromechanical systems (MEMS) technology that uses silicon micro mirrors to switch incoming fiber-optic signals from port to port. The product has an installed base of 80,000 fiber terminations, is Telcordia proven and has been shipping for eight years.

To ease installation, the new software brings an innovative pre-configuration mode that allows the switch to be set up using dark fiber. Previously, the FiberConnect 320X needed lit fiber to be configured. Version 2.4 of the software also features a new graphical user interface (GUI), including an improved snapshot of all the ports with color coordinated statuses and a simplified process of enabling cross-connections, now in as little as three clicks.

For telecom users, the new software expands the number of TL1 commands that can be used, providing better switch information in telecom networks that leverage the TL1 management protocol.

Version 2.4 of the software is now shipping with all FiberConnect 320X switches, and is available for field upgrades.

Related posts:

1. Invalid configuration for device 4 Error When Cloning or vMotion a Virtual Machine
2. CSC CloudCompute for Government Offers Federal Community Cloud That is Built Using NIST Guidelines
3. Wind River Unlocks Multi-core Scalability for Advanced Networking Applications