|
How VirtualShield Works
VirtualShield is a software-based vulnerability shield that provides instant protection for virtual servers on the VMware® Infrastructure 3 platform.
VirtualShield protects by performing a discovery of virtual servers, including the applications, ports and protocols. Based on the discovery, VirtualShield determines and provisions the relevant, application-specific protection for unpatched applications.
As traffic flows through VirtualShield inside the hypervisor, individual sessions are decoded and monitored for vulnerable conditions. When necessary, VirtualShield can replicate the function of a software security patch by applying a corrective action directly within the network stream, protecting the downstream virtual server.
As new security patches are released by software application vendors, VirtualShield automatically downloads the appropriate inline patches from Blue Lane. Updates may be applied dynamically without requiring any reboots or reconfigurations of the virtual servers, the hypervisor, or VirtualShield.
Server Discovery (click to watch movie)
The first step after deploying PatchPoint is to define the specific servers and applications that must be protected. A network scan identifies the applications to be protected.
Validation (click to watch movie)
Within the web-based interface of the PatchPoint Manager, an administrator can easily validate that the appropriate inline patch and inline policy protection has been activated for each individual server application.
Event Detection (click to watch movie)
Once servers have been discovered, the protection has been validated and activated, any event that triggers an inline patch or inline policy correction is logged and reported as a security event.
|
|
