Kaspersky’s award-winning anti-malware engine provides automatic, real-time protection for every virtual machine (VM) – on-access and on-demand – for most popular virtualization platforms including VMware vSphere, Microsoft Hyper-V, Citrix XenServer and KVM.
A dedicated Security Virtual Appliance (SVA) installed onto a hypervisor allows the off-loading of file scanning tasks, minimizing any impact on VM operations and performance.
Peaks in resource consumption are also reduced via intelligent scan task orchestration, automating queues by grouping and prioritizing scan tasks on multiple VMs.
In large-scale environments, files are often duplicated across multiple VMs. Unlike legacy security products, which scan every instance of the file on each VM, Kaspersky Security for Virtualization includes Shared Cache technology. A single instance of multiple identical files is scanned and the verdict is stored in the shared cache, significantly reducing scanning activity and improving overall VM performance.
Kaspersky Security for Virtualization also provides network protection functionality. Depending on the configuration, this is delivered either via a dedicated SVA or through guest machine-based mechanisms. In the latter, a flexible Application Firewall allows network governance not only at protocol, but also at applications level. Network Attack Blocker is a compact yet powerful IDS/IPS system capable of recognizing and blocking both known and unknown network-based attacks, including those using specific exploits.
Outstanding multi-layered protection for VMware Horizon and Citrix XenDesktop, which impacts neither end-user experience nor VDI platform responsiveness. Our lightweight solution delivers superior security for VDI, providing protection against advanced threats (crypto malware, zero-day exploits, unpatched vulnerabilities, etc.). We achieve this by layering threat detection and blocking technologies (including heuristics, behavior analysis and Automatic Exploit Prevention (AEP)) over traditional file-level protection. Additional proactive security layers such as Web, Device and Application Controls further promote significantly increased resilience to attacks.
Kaspersky Security Center gives administrators a ‘single-pane-of-glass’ view of all endpoints being protected by Kaspersky technologies – including virtual, physical and mobile devices.
Integration with the cloud-based Kaspersky Security Network (KSN) proactively defends virtual servers and desktops against emerging global malware; new threats can be identified in as little as 0.02 seconds.
Kaspersky Security for Virtualization adds yet another layer of security to VMware NSX-enabled environments, providing file-level protection via native NSX Guest Introspection.
Please note that, VMware NSX, like any other software-defined network technology, is not a pre-requisite for Kaspersky Security for Virtualization deployment.
Because Kaspersky Security for Virtualization has been specifically developed to protect virtual machines (VMs), it helps businesses maintain a high machine density and high performance – protecting your virtualization ROI while eliminating update and scanning ‘storms’, as well as Windows of Vulnerability or ‘instant-on’ gaps.
For virtualized environments, maintaining security without affecting performance is critical. Kaspersky Security for Virtualization delivers a far lighter resource footprint than traditional solutions, optimizing file-level scanning tasks, fine-tuning protection technologies and orchestrating scanning tasks to preserve virtualization platform performance.
Instead of a traditional security agent installed on every virtual machine, Kaspersky Security for Virtualization offers a more efficient way to protect your virtualized environment –placing less load on processors, memory, storage and I/O:
Our solution architecture dramatically enhances end-user experience, promoting improved VDI (Virtual Desktop Infrastructure) security, without sacrificing performance or important parameters like log-on time and boot time.
Kaspersky Lab’s latest anti-malware engine combines signature-based, proactive and cloud-assisted technologies, to deliver superior detection rates – including protection against zero-day threats.
A single, unified administration console lets your IT team centrally manage the security of all your VMs plus other Kaspersky Lab security applications you’re running on physical infrastructure and mobile devices. By making it easier for your team to manage hybrid environments –combining virtual, physical and mobile platforms – Kaspersky Lab helps you to roll out virtualization projects at your own pace.
Because we offer you a choice of ‘per machine’ – including ‘per desktop’ and ‘per server’ – or ‘per core’ licensing options, you can choose the most cost-effective licensing model for your business needs. Choose our agentless security solution, move forward with our light agent solution, or use a combination of both – one license fits all.
For more information on each application – including system requirements – click on the item in the list above.
Solution Data Sheet
Light agent or agentless? A features guide to Kaspersky Security for Virtualization.
A white paper exploring why a specialized security solution for virtual environments is essential.