Award-Winning Production-Ready Security for VMware Infrastructure 3
Blue Lane VirtualShield: Unprecedented Coverage, Power and Performance
VM state changes and movement enabled by virtualization can quickly overpower traditional network security solutions and policies. Once patched operating systems and applications can be rendered vulnerable in seconds by snapshots, reverts, VMotion and offline/online shifts. This rate of rapid change means that security teams can quickly become unaware of security vulnerabilities. Vulnerability scans, for example, can become obsolete in seconds and fully patched VMs can revert to earlier unpatched versions at the speed of mouse clicks.
The award-winning Blue Lane VirtualShield plugs into the VMware Infrastructure 3 hypervisor and protects guest VMs from any attacks against known vulnerabilities regardless of state, VMotion or its online/offline status. VirtualShield corrects all malicious and offending traffic as it passes through the hypervisor by applying the same corrective conditions as software vendor patches. It offers the most comprehensive vulnerability protection available, including Windows, Unix/Linux and a host of leading data center applications and operating systems, without code changes on guest VMs and with usually less than a 5% hypervisor footprint.
Other security products drop packets and reset sessions, which causes application disruption in their attempt to stop “suspicious” traffic. VirtualShield’s corrective capability, combined with its ability to process and decode traffic, similar to how servers process and decode traffic, insures that there are no application disruptions, no false positives and very fast traffic flow.
Blue Lane maintains an exhaustive library of inline security patch equivalents across every significant data center application and operating system, that can be deployed en masse or selectively at the push of a button. New inline fixes are typically delivered to customers within hours of a new vulnerability patch announcement, and in select high profile cases even ahead of the software vendor.
Because VirtualShield doesn’t use signatures or tuning and makes no code changes on guest VMs, high availability with extremely low latency is maintained while security policies can be applied as a zone defense by VM, cluster or across an entire virtualized infrastructure from a single management console.
The VirtualShield Solution
- Protects VMs regardless of physical location, state, VMotion or patch level
- Eliminates remote threats without blocking legitimate application requests or requiring server reboots
- Delivers comprehensive, up-to-date protection without signatures, tuning, configuration changes or agent installation on the host operating system or guest VM
- Delivers unprecedented visibility into hypervisor traffic flows by application, protocol, VM, cluster or even across the data center
|
