- What does Cisco have against Quebec?
- Attrition.org nails another nitwit
- Diary of a deliberately spammed housewife
- Seven cloud-computing security risks
- 20 great Windows open source projects
News | Newsletters | Podcasts | Chats | Opinions | RSS Feeds | This Week In Print | IT Careers | Community | Reports | Downloads | Slideshows | New Data Center
Partner Sites:App Performance | On Demand Security | Networking Solution | SOA | Value of WDS
VMware plans to open its hypervisor to security vendors with a set of APIs that make it easier to protect virtual machines from threats including viruses, Trojans and keyloggers.
Without these APIs, security vendors building antivirus and firewall tools for virtual servers are removed from the hypervisor by several layers and therefore cannot see everything that happens within the virtual environment, according to Yankee Group Analyst Phil Hochmuth.
This potentially makes security products less robust than they could be, and creates annoyances for users. For example, a customer might have to install one instance of an antivirus program on each virtual server, rather than let one instance of the program protect all the virtual machines within a physical piece of hardware, Hochmuth says.
VMware intends to fix that problem with VMsafe, the set of APIs announced Wednesday.
"Instead of installing and running McAfee [antivirus software] on 20 different virtual servers, you just do it once," Hochmuth says. (Compare antivirus products.)
Twenty security vendors are already building products to protect virtual machines using the VMsafe APIs, according to VMware.
Christopher Bolin, CTO at McAfee, says VMsafe is intended to be part of the VMware virtual-machine hypervisor to allow third-party developers to "see network memory, CPU and traffic before the traffic reaches the guest operating systems."
By giving partners more visibility into traffic at the hypervisor level, they will be more likely to catch malware and other types of intrusions before they enter a virtual system, Hochmuth says.
Previously, security software really had no advantage over malware that's infiltrated a virtualized server, says Parag Patel, vice president of alliances at VMware. The visibility into the hypervisor afforded by the VMsafe APIs gives security software a higher degree of privilege than malware.
The APIs also improve security with more thorough isolation of virtual machines, Patel says.
The 20 vendors developing new security products for use with VMware include Check Point, F5 Networks, IBM, Imperva, McAfee, EMC's RSA division, Secure Computing, Symantec and Trend Micro. Security products built using VMsafe should be out later this year, Patel says.
Rss FeedRss Feed
and there is always a but... firebug doesnt work :(- Anonymous
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 |
Copyright © 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Explore the Ultrium Edge
The powerful tape technology can address data security with tape encryption as well as long term data protection.
Find out more
Disk and Tape Square Off
Discover what disk and tape really cost -- and which solution provides lower total cost of ownership and optimizes energy use for your organization
Download the White Paper
Don't Fall For The Myths
The Clipper Group explores the truth behind the myths of tape, digging into the misconceptions in the disk vs. tape debate.
Download the White Paper
Will You Add Tape Too?
Over two thirds of disk-only users look to add tape back into storage infrastructure according to recent survey.
Download Survey Information
Comment