Phone: 650-681-8100 / email: [email protected] 1975 W. El Camino Real, Suite 203, Mountain View, CA 94040 HyTrust & Vmware – Providing a Secure Virtual Infrastructure Eric Chiu – Founder & President (HyTrust) Rob Babb – Security & Compliance Specialist (VMware) © 2011, HyTrust, Inc. www.hytrust.com MARCH 2012 29
HyTrust and VMware-Providing a Secure Virtual Infrastructure
Jan 22, 2015
Welcome message from author
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
1 Phone: 650-681-8100 / email: [email protected] 1975 W. El Camino Real, Suite 203, Mountain View, CA 94040
HyTrust & Vmware – Providing a Secure Virtual Infrastructure
Eric Chiu – Founder & President (HyTrust) Rob Babb – Security & Compliance Specialist (VMware)
© 2011, HyTrust, Inc. www.hytrust.com
MARCH 2012
29
2
Security and Compliance Will Be Key to Virtualizing the Next 50% of the Data Center
Discussion
Growth depends on virtualizing mission critical workloads
Virtualization platform provides basic security: OK for non-critical workloads
Tier 1/2 workloads have higher security, compliance needs
Purpose-built solutions needed
© 2012, HyTrust, Inc. www.hytrust.com
3
Abstraction and Consolidation
Capital and Operational Cost Savings
New infrastructure layer to be secured and subject to compliance
Greater impact of attack or misconfiguration
Collapse of Switches and Servers into One Device
Flexibility
Cost-savings
Lack of visibility and control for virtual network and storage
No separation of church and state (network, security, storage administration)
Faster Deployment in Shared Environment
IT responsiveness
Inconsistencies in configuration
Physical change processes ineffective
Inadequate tenant segmentation
Virtualization Platform Effects On Security
© 2012, HyTrust, Inc. www.hytrust.com
4
Fuzzy Time Boundaries
Great availability / recovery mechanism
Security and audit events can be lost
Changes in time are not visible from inside the virtual server
VM Mobility
Improved Service Levels
Identity divorced from physical location
Policies may not follow virtual machine
VM Encapsulation
Ease DR
Hardware Independence
Outdated offline systems
Unauthorized copy
Reconfiguring virtual hardware and console access are over the network operations
Virtualization Containers Effects On Security
© 2012, HyTrust, Inc. www.hytrust.com
5
4 “Must Haves” For a Secure Cloud Environment
© 2012, HyTrust, Inc. www.hytrust.com
6
VMware vShield – Foundation for Trusted Cloud
Virtual Datacenter 2 Virtual Datacenter 1
PCI HIPAA Web DMZ
VMware vShield Manager
Securing the Cloud From Edge to Endpoint
vShield App
Protect applications from threats with trust zones
vShield Edge
Secure the edge of the virtual datacenter
vShield Endpoint
Streamline and accelerate anti-virus solutions
Protect against data leaks
vShield Data Security
7
Secures the administration of the hypervisor & virtual infrastructure: Enforces consistent access and
authorization policies covering all access methods
Provides granular, user-specific, audit-quality logs
Enables strong, multi-factor authentication
Verifies platform integrity, ensuring the hypervisor is hardened and the virtual infrastructure is trusted
HyTrust Appliance Provides Necessary Controls to Confidently Virtualize Mission-Critical Applications
7 © 2012, HyTrust, Inc. www.hytrust.com
Provides complete visibility into and control over who accesses the infrastructure, the integrity of the infrastructure, and the validity of the changes requested.
8
HyTrust (Virtual) Appliance In-Line Deployment
8 © 2012, HyTrust, Inc. www.hytrust.com
9
Major Partners Trust HyTrust
© 2012, HyTrust, Inc. www.hytrust.com
HyTrust is key "go to" partner for vSphere security and compliance
HyTrust is part of CA Access Control for Virtual Environments
HyTrust is the platform security solution - access control and auditing - for vBlock
HyTrust reporting and controls being integrated with Symantec CCS
HyTrust is part of Intel's trusted cloud architecture based on TXT
HyTrust event reporting and TXT integration being integrated with McAfee ePO
HyTrust provides native integration with SecurID and enVision
HyTrust provides combined reporting with Trend's Deep Security product
10
VMware – All Things Virtual Security http://portal.sliderocket.com/ATOHL/VMware-Security-Links_v2
VMware Security Blog http://blogs.vmware.com/security
HyTrust Community Edition and Video Demos http://www.hytrust.com/resources/product
HyTrust Case Studies http://www.hytrust.com/resources/case-studies
HyTrust Analyst Reports http://www.hytrust.com/resources/analyst-reports
VMware and HyTrust Links
11
Q&A
© 2012, HyTrust, Inc. www.hytrust.com
Related Documents
