In August 2013, the Tolly Group, a global leader in third-party IT validation services, published a report commissioned by Kaspersky Lab on the performance results of four leading virtualization security solutions in VMware vSphere 5.1 environments. After conducting rigorous testing and head-to-head evaluations, the engineers at the Tolly Group concluded: “Kaspersky Security for Virtualization 2.0 blends efficient hypervisor resource usage with solid protection abilities by delivering lower average response times and disk usage than the other products tested,” and that Kaspersky Lab’s solution “defended against threats better than the other agentless offerings under test.”
- Products included in the test were Kaspersky Security for Virtualization 2.0; McAfee MOVE Agentless 2.6; Trend Micro Deep Security 8, and the agent-based Symantec Endpoint Protection 12.
- Kaspersky Security for Virtualization 2.0 demonstrated the lowest amount of disk usage among all products tested, and a higher malware detection rate than the other agentless solutions tested.
- The lower disk consumption offered by Kaspersky Security for Virtualization 2.0 produced a better quality of service as reported by VMware View Planner. This would enable superior consolidation ratios with Kaspersky Lab’s agentless solutions, especially when compared to the results of the agent-based solution included in this evaluation Amongst agentless solutions, Kaspersky Lab posted a significantly faster on-demand scan time during subsequent runs than solutions from McAfee and Trend Micro, along with low consumption of processor bandwidth.
In addition to a malware detection rate of over 98%, Kaspersky Lab posted impressive performance numbers, particularly when measuring the speed and system impact of on-demand scans. For example, Kaspersky Security for Virtualization 2.0’s first full-network scan during the test took 101 minutes to complete…but when scanned a second time, the full scan of the network was completed in only 7 minutes, almost 93% faster than the first scan. This second-scan time of 7 minutes far outshines the 54 minute and 223 minute second-scans from the other agentless security platforms tested by the Tolly Group.
This dramatic increase in the efficiency of system scans after the initial scan can be attributed to Kaspersky Security for Virtualization 2.0’s new Shared Cache feature that reduces resource consumption and speeds up full-scan times for virtual machines. If a file has been deemed safe on one computer within a Virtual Desktop Infrastructure, Kaspersky Security for Virtualization 2.0 won’t waste resources scanning identical files on identical virtual systems. This intelligent scanning method contributes to across-the-board system performance benefits, as demonstrated in the Tolly Group’s report which showed Kaspersky Lab post major improvements in test categories like Processor Usage and Physical Disk Usage when comparing the first scan test results to subsequent scan results.
Nikolay Grebennikov, Chief Technology Officer, Kaspersky Lab comments: “It’s fantastic to see our latest virtualization security technologies not only passing independent tests, but also exceling in ways that measure up to our high expectations. When comparing the dramatic differences in test scores Kaspersky Security for Virtualization 2.0 posted after the first two rounds of testing, it was obvious that Kaspersky Lab’s new Shared Cache technology was working perfectly. This is a clear example of how a new innovation, developed in-house by Kaspersky Lab’s team of experts, is clearly going to improve the day-to-day operations of secure virtual networks around the world.”
Released in April 2013, Kaspersky Security for Virtualization 2.0 was the first product on the market fully integrated with the VMware vCloud Ecosystem Framework component of VMware vCloud Networking and Security. Kaspersky Lab’s new solution includes several key security milestones, including Intrusion Detection and Intrusion Prevention technologies for virtual networks, and the connection to real-time cloud information shared through the Kaspersky Security Network. These new technologies, just like all other features, are managed through the Kaspersky Security Center administration console, which enables an IT administrator to manage virtual environments, physical endpoints, and mobile devices, all from “a single pane of glass.”