vSecurity Technical Controls
Network-based for comprehensive security and compliance
TrustZones, Policy and vCompliance depend on the technical controls for monitoring and enforcement. The technical controls reside within each VMA and consist of the following:
vSecurity integrates with VMware® vCloud Networking and Security App firewall (vCNS™) giving the security architect the power of the native VMware firewall in an easy to use and automated configuration methodology.
Visualizing network topology is a powerful tool used by security architects to configure network based security controls. With an innovative network flow visualization display, vSecurity provides the best possible view into network activity giving the security architect the capacity to easily configure access controls, manage vulnerabilities,or respond to security incidents.
Catbird vSecurity not only provides a superior combination of network based security controls on the virtual switch fabric, but helps to protect physical infrastructure as well. The virtual switches in the hypervisor can be connected to physical switches that interconnect physical devices that may be on the same layer 2 network as the virtualized asset. With Catbird’s Network Access Control (NAC), the security architect knows at all times what is directly connected at layer 2 on the physical switches, optionally giving them the power to implement logical zoning inclusive of these directly connected assets.
vSecurity includes a network based vulnerability scanner for vulnerability management. Understanding the network-accessible vulnerabilities in virtualized infrastructure is the first step to tightening security posture and implementing a vulnerability management program for compliance. vSecurity enables the security architect to view detected vulnerabilities from the same tool that configures the firewall and Intrusion Prevention System, for a holistic view of the enterprise security posture.
Positioned on the virtual switch fabric, vSecurity is in the optimal position to provide deep packet inspection for its Intrusion Prevention System. Monitoring all traffic traversing the virtual switch, vSecurity can detect hostile traffic entering the virtual data center, and more importantly, all hostile traffic between virtual machines themselves. By virtualizing the Intrusion Prevention System, vSecurity’s software defined security approach provides the most scalable solution for Intrusion Detection and Prevention available.
vSecurity is fully integrated with the virtual infrastructure. The Catbird Virtual Infrastructure Monitor is the security operator’s eye into the virtual infrastructure, providing a real time view of relevant network security virtual machine and vSwitch configurations. When a policy has been violated, the vSecurity Virtual Infrastructure Monitor can perform response actions, including disconnecting a virtual machine from the network or powering off the virtual machine. The Virtual Infrastructure Monitor restores the principle of separation of duties in virtual infrastructure by providing the security operator real-time monitoring of the virtual infrastructure administrator’s activities as they relate to network security.