Many of the traditional, agent-based anti-malware products are not well suited to virtualised environments. Virtualisation is all about maximising the utilisation rates for the IT infrastructure – in order to maximise return on investment. However, many agent-based anti-malware products require the antivirus software and signature database to be installed on every virtual machine… which partly defeats the object of virtualisation.
- Duplication of antivirus software and signature database – for every virtual machine – reduces virtualisation density and reduces return on investment (ROI)
- Duplication of file scanning of the base-line image – reduces overall system performance
- When a dormant virtual machine is activated, it may have an out-of-date signature database or un-patched vulnerabilities
- ‘Scanning Storms’ – whereby multiple virtual machines are simultaneously running scans – can adversely affect the performance of the host machine… or even cause a crash
- ‘Update Storms’ – whereby multiple virtual machines simultaneously download antivirus updates – can adversely affect the performance of the host machine… or cause it to crash
Kaspersky’s agentless solution:
Because Kaspersky Security for Virtualization is an agentless anti-malware solution, it only has to be installed once on a physical server… in order to protect all virtual machines on that server.
- Higher density virtualisation – as there is no duplication of antivirus software and signature database
- Improved performance – from higher efficiency scanning
- Automatic protection for newly configured virtual machines and dormant virtual machines that are activated
- All updates of the anti-malware engine and signature database only need to be performed once per physical server – not once per virtual machine… so ‘Update Storms’ are eliminated
- Intelligent, load-balancing mechanisms help to guard against overload and limit the number of concurrent scans… so ‘Scanning Storms’ are prevented