• TREND MICRO
  • ABOUT
Search:
  • Latest Posts
  • Categories
    • Android
    • AWS
    • Azure
    • Cloud
    • Compliance
    • Critical Infrastructure
    • Cybercrime
    • Encryption
    • Financial Services
    • Government
    • Hacks
    • Healthcare
    • Internet of Everything
    • Malware
    • Microsoft
    • Mobile Security
    • Network
    • Privacy
    • Ransomware
    • Security
    • Social Media
    • Small Business
    • Targeted Attacks
    • Trend Spotlight
    • Virtualization
    • Vulnerabilities
    • Web Security
    • Zero Day Initiative
    • Industry News
  • Our Experts
    • Ed Cabrera
    • Rik Ferguson
    • Greg Young
    • Mark Nunnikhoven
    • Jon Clay
    • William “Bill” Malik
  • Research
Home   »   Security   »   Securing the Data Center of the Future with VMware NSX and Deep Security

Securing the Data Center of the Future with VMware NSX and Deep Security

  • Posted on:August 25, 2014
  • Posted in:Security
  • Posted by:
    Mike Smith
0

Modern Data Center

 

 

 

 

 

 

 

 

In the decades to come, 2014 could well be seen as a pivotal moment in the evolution of the modern data center. Vendors like VMware are quite literally making history, redefining the parameters of what can be achieved as they push towards the vision of the Software Defined Data Cener (SDDC). By virtualizing computer, network and storage, the SDDC automates provisioning and massively reduces time-to-market for applications and services.

But perhaps less well-known are the enormous security improvements that can come from VMware’s newly-released software-defined networking platform NSX. At Trend Micro, we believe this new technology can help customers finally realize the goal of effective, affordable network micro-segmentation. Add Deep Security on top of that platform, and you’ll get levels of data center security that were simply not possible before. Here’s how:

Danger in the Data Center

We all know that cybercriminals are an agile, resilient and increasingly well-resourced bunch. What this means is that they’ve been able to take advantage of the gaps that exist in many poorly-secured virtual environments to attack VMs and steal the organizational crown jewels.  In this context, traditional perimeter approaches to security are woefully outdated. For one thing, they allow inter-VM attacks. This tactic is favoured by targeted attackers who typically infiltrate one virtual machine and then move laterally inside a data center to others until they find what they’re looking for, often barely stopped by any internal security controls.

To combat such attacks, data center managers need security options which can enable self-defending VMs. But they would also benefit from micro-segmentation at a network level to limit this lateral malicious movement inside virtual data centers. With both, they can ensure VMs of different sensitivities can sit happily side-by-side in a “zero trust” model.

The Problem with Micro-Segmentation

Up until now, micro-segmentation just hasn’t been possible from an operational or cost point of view. Placing expensive traditional/physical firewalls into a virtual environment to create segmentation creates a huge number of “choke points” on the network which can strangle throughput capacity interminably. The operational hit on IT resources of forcing admins to modify the rules on each firewall as each new VM is provisioned or de-provisioned would also soon swamp the department.

Enter the Software Defined Data Center and the NSX platform, which automates the provisioning of firewall policies and delivers an impressive 20Gbps of firewall throughput – supporting over 80,000 connections per second, per host.

Securing the Data Center of the Future

NSX has quite literally enabled the micro-segmentation of virtual networks on a scale and at operational efficiency levels never before possible – and all at a manageable cost. It means enterprises can create “shrink-wrapped” security for any workload or VM, allowing the creation of customized policies and modules right down to the individual VM level.

So what does Trend Micro bring to the table?

  • Our flagship data center security solution, Deep Security, now supports NSX, effectively extending micro-segmentation by having its security policies and capabilities follow each VM automatically wherever it goes.
  • This enables sensitive workloads (e.g., PCI-compliant content) to sit next to VMs of little sensitivity with complete independence and maximum security.
  • We offer the most complete suite of capabilities of any VMware partner, including: file-integrity monitoring and log inspection for improved compliance; IDS/IPS for virtual patching; bi-directional firewall; web reputation; and anti-malware.
  • All managed from one console for ease-of-use.
  • Trend Micro is the only vendor to deliver agentless security across network and file-based security controls for NSX, giving customers even more choice and flexibility over deployment.
  • Trend Micro is also using NSX to combine detection capabilities (agentless anti-malware, file integrity monitoring , IDS/IPS, etc.) with NSX tagging. This enables Deep Security to trigger specific remediations when a threat is detected, such as automatically quarantining a compromised VM from the virtual network.

The era of the SDDC is coming. So find out today how VMware and Trend Micro can help you accelerate and secure that journey to the data center of the future.

Check out our announcement today from VMworld that includes our new features for VMware, and learn more about how we partner with VMware from the recent posts in my blog series: Optimize Your Modern Data Center with Next Generation Technologies; Extend Your Virtualized Data Center to the Cloud with Ease; Operational Efficiency: the Key to Data Center Success.

If you’re at VMware, don’t forget to drop by our booth, #1505, to try out our demo stations!

Related posts:

  1. Protect Your Net: One Security for the Software-Defined Data Center
  2. Optimize Your Modern Data Center with Next Generation Technologies
  3. Your Journey to the Cloud: Securing the Modern Data Center
  4. 3 Reasons to Use VMware NSX with Trend Micro Deep Security

Security Intelligence Blog

  • Our New Blog
  • How Unsecure gRPC Implementations Can Compromise APIs, Applications
  • XCSSET Mac Malware: Infects Xcode Projects, Performs UXSS Attack on Safari, Other Browsers, Leverages Zero-day Exploits

Featured Authors

Ed Cabrera (Chief Cybersecurity Officer)
Ed Cabrera (Chief Cybersecurity Officer)
  • Ransomware is Still a Blight on Business
Greg Young (Vice President for Cybersecurity)
Greg Young (Vice President for Cybersecurity)
  • Not Just Good Security Products, But a Good Partner
Jon Clay (Global Threat Communications)
Jon Clay (Global Threat Communications)
  • This Week in Security News: Ransomware Gang is Raking in Tens of Millions of Dollars and Microsoft Patch Tuesday Update Fixes 17 Critical Bugs
Mark Nunnikhoven (Vice President, Cloud Research)
Mark Nunnikhoven (Vice President, Cloud Research)
  • Twitter Hacked in Bitcoin Scam
Rik Ferguson (VP, Security Research)
Rik Ferguson (VP, Security Research)
  • The Sky Has Already Fallen (you just haven’t seen the alert yet)
William
William "Bill" Malik (CISA VP Infrastructure Strategies)
  • Black Hat Trip Report – Trend Micro

Follow Us

Trend Micro In The News

  • Trend Micro Goes Global to Find Entrepreneurs Set to Unlock the Smart Connected World
  • Winners of Trend Micro Global Capture the Flag Demonstrate Excellence in Cybersecurity
  • Companies Leveraging AWS Well-Architected Reviews Now Benefit from Security Innovations from Trend Micro
  • Trend Micro Announces World's First Cloud-Native File Storage Security
  • Digital Transformation is Growing but May Be Insecure for Many
  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, MĂŠxico
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, EspaĂąa, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © 2017 Trend Micro Incorporated. All rights reserved.