As organizations increase consolidation ratios, security products designed specifically to address the challenges encountered in virtual environments become critical. The architecture of Security for Virtualized Environments allows organizations to maximize the return on investment that is realized in their datacenter. The award-winning security of Bitdefender delivers critical protection to critical systems.
Security for Virtualized Environments (SVE) is the first comprehensive security offering that has been architected for the dynamic and heterogeneous datacenters of today. When installed in VMware environments, SVE takes advantage of vShield Endpoint. However, SVE is not dependent on the virtualization technology; it protects environments that are powered by any virtualization technology. Further, SVE protects not only Windows servers and end-user systems, but also Linux and Solaris systems. This unmatched coverage is the result of unique Bitdefender innovation.
Security for Virtualized Environments by Bitdefender leverages a unique architecture that allows many scanning functions to be centralized. By centralizing these functions on a hardened, Linux-based virtual appliance, the solution effectively deduplicates anti-malware load associated with updates, management, and scanning.
- Virtualized servers and desktops
- VMware, Citrix, Microsoft, Oracle or any other system virtualization technology
- Windows, Linux, and Solaris
- File system, process, and memory scanning
Security for Virtualized Environments eliminates resource contention, also known as AV storms, by deduplicating security operations. Traditional security solutions require a full client (scan engine, signatures, etc.) running on each guest that compete for the physical resources of the host during scan or maintenance processes. Security for Virtualized Environments centralizes all major security functions on a dedicated and hardened Linux virtual appliance.
Boot time security gaps are eliminated in virtual environments as a result of centralized scanning. With legacy security solutions, restarted virtual machines remain unprotected during the load time of the software engines. If a virtual machine has been dormant for an extended period of time, the security software and signatures must be updated, so the security gap grows. Bitdefender addresses these issues by delivering an always-on virtual appliance for centralized scanning.
Security Console by Bitdefender is a central web interface used for deploying, configuring, monitoring, and reporting on the security status of datacenters and end-user systems. Built on Bitdefender Gravity Architecture, the intuitive Security Console horizontally scales from the smallest to largest deployment with ease. Integrated with VMware vCenter and Citrix XenServer for enhanced portability and visibility, Security Console is the central point of management and monitoring, acting as a hub for all Bitdefender security components.
Security for Virtualized Environments extends VMware vShield functionality with process and memory scan capabilities, ensuring complete antimalware protection across all platforms. In virtual infrastructures, this scanning is even more important than in physical environments. Both running and dormant virtual machines can be the targets of stealth rootkit injections which may be replicated to other containers within the same host. File system scan is ineffective when an operating system has infected memory or process sections since malicious code will regenerate itself on the file system.
Security for Virtualized Environments leverages an innovative patent-pending caching technology which optimizes the performance of antimalware functions in virtual datacenters that do not benefit from vShield integration. The technology includes a sophisticated multi-level caching mechanism which deduplicates the scanning effort on any Windows, Linux or Solaris system virtualized using VMware, Microsoft, Citrix or Oracle solutions. Centralizing the scanning operations results in minimal impact on hosts, nearly no boot latency and lightweight footprint. Compared to traditional security solutions, this virtualization-aware technology delivers unprecedented performance and scalability while ensuring comprehensive protection adaptable to any virtualized environment.
Bitdefender received a Virus Bulletin's VB100 award with the highest final score in February 2011 for its detection capabilities. Additionally, the Bitdefender technology has been number-one-ranked in the last four AV-TEST Product Reviews making it #1 in protection* against e-threats in 2011. AV-Test reports are available here.
All Bitdefender solutions include B-HAVE, a patent-pending technology which analyzes the behavior of potentially malicious codes inside an isolated virtual computer, eliminating false positives and significantly increasing detection rates for new and unknown malware. Whenever attempting to use an untrusted application, B-HAVE temporarily delays its launching until the program’s behavior is analyzed in the virtual environment. Depending on results, the application is either launched normally or automatically blocked. The powerful heuristics engines execute this analysis in fractions of a second, ensuring no impact on either the computing performance or user experience.
Security for Virtualized Environments by Bitdefender is delivered within a Security Virtual Appliance running on a hardened Linux server and is managed by the web-based Bitdefender Security Console.
The following platforms are supported:
- VMware vSphere 5.0 P1 (474610-Patch#1) or 4.1 P3 (433742-Patch #3) incl. ESXi 4.1 and ESXi 5.0 with
- VMware vCenter Server 5.0 or 4.1
- VMware vShield Manager 5.0
- VMware vShield Endpoint installed by vShield Manager on the hosts
- VMware Tools 8.6.0 build 446312 installed in the protected guest machines in the complete mode or with the vShield driver selected under VMCI in custom mode.
- Citrix XenDesktop, XenServer 6.0, 5.6 or 5.5 (incl. Xen Hypervisor)
- Microsoft Hyper-V Server 2008 R2 or Windows 2008 R2 (incl. Hyper-V Hypervisor)
The solution can be extended to:
- Oracle VM 3.0
- Red Hat Enterprise Virtualization 3.0, 2.2 with KVM
On the guest machines, the following operating systems are supported (32/64 bit):
- Windows 7, Windows Vista, Windows XP (SP3)
- Windows Server 2008, Windows Server 2008 R2
- Windows Server 2003, Windows Server 2003 R2
- Oracle Solaris 11, 10
- Linux distributions:
- Red Had Enterprise Linux 6.2, 6.1, 5.7, 5.6
- CentOS 6.2, 6.1, 5.7, 5.6
- Ubuntu 11.04, 10.04
- SUSE Linux Enterprise Server 11
- OpenSUSE 12, 11
- Fedora 16, 15