LAS VEGAS — Within the first 24 hours after the announcement of Osama Bin Laden’s death, 100 million spam e-mails were sent out around the world. Attackers are trying to get into corporate networks and they’ll try any number of techniques to do so, and one way is by taking advantage of these types of events.
But do these threats change in a virtual environment? In many ways the threats are the same, and companies need to do the same things to protect their data. “But adding virtualization adds a whole different layer,” said Francis deSouza, senior vice-president of Symantec’s enterprise security group, during the company’s Symantec Vision conference.
Virtualization, combined with increasing amounts of data, has created unique demands on the data centre, and companies have to backup and secure higher density virtual environments.
Companies initially try to treat virtual deployments like physical environments, said Stephen Herrod, VMware’s chief technology officer. The problem is, many customers have 50 to 100 workloads on the same server, so they can’t run backups in the same old way or they’ll have efficiency and productivity issues. So VMware is working with Symantec to hash out some of these issues.
At the conference, Symantec outlined its plan to “modernize” the way organizations backup, recover and discover their data. Now available, its V-Ray technology is being embedded into Symantec NetBackup and Backup Exec to give IT administrators visibility into their virtual environments.
Symantec says the technology provides transparency of backup images across physical and virtual environments with a single view, making it easier to protect systems and applications. The idea is to minimize labour-intensive file and application recovery efforts and drive down backup storage costs through de-duplication across physical and virtual systems.
“Security is an afterthought in a virtualized environment,” said Lauren Whitehouse, senior analyst with ESG, a Milford, Mass.-based analyst firm. “Virtualization breaks what you have in place. It introduces new risks. [Companies] should be thinking about protecting their environment from day one.”
If they run a virus scan on a virtual machine, for example, it can wreak havoc with the system. Or if four virtual machines all start backing up at the same time, it can kill any performance improvements associated with that virtual environment.
According to ESG, the hypervisor is a common gateway for attackers. In a virtualized environment you want everything sharing common resources, said Whitehouse, but from a security point of view this is not necessarily a good thing. Also, virtual sprawl could create a large target attack, and virtual assets are often more difficult to monitor.
The cost of some of these new security solutions is an issue, said Whitehouse, since vendors have traditionally licensed software on a per user basis. “Security vendors have to respond and figure out pricing strategies,” she said.
Most virtualization projects start as server consolidation, but when customers try to virtualize apps, it’s a whole different story, said Deepak Mohan, senior vice-president of Symantec’s information management group.
But companies are not able to eliminate physical infrastructure, so for the foreseeable future, IT will have to manage these apps in both physical and virtual environments — so they need solutions that allow them to manage both.
Backup also gets complicated in virtual environments, said Mohan. Often virtual machines are not backed up, not secured, and can end up posing a huge security risk for an organization.
At Symantec Vision, the security vendor also announced veritas operations manager 4.0, a centralized management platform for Veritas Storage Foundation and Veritas Cluster server that it says will provide increased visibility and control over critical business services across virtual, physical and cloud environments.