Embed Size (px)
Citation preview
Copyright © 2008 Stonesoft Corporation All rights reserved.Slide 1Slide 1
Virtualization and
security
Marco Rottigni
Solutions Architect – Product Management
Stonesoft
Copyright © 2008 Stonesoft Corporation All rights reserved.Slide 2Slide 2
Application
OS
Hardware
Traditional x86 Architecture
One operating system per server
Software and hardware strictly tied
One application per server
Average load per server 5 -15%
Virtualized Architecture
Multiple operating systems per server
Hardware and Sotfware decoupled
Multiple applications per server
Average usage per server 50-70%
Dynamic resources usage
What is ”virtualization”?
Hardware
Application
OS
Virtual
Appliance
Application
OS
Application
OS
Virtual
Appliance
Virtual
Appliance
Virtualization Level
Copyright © 2008 Stonesoft Corporation All rights reserved.Slide 3Slide 3
Virtualization phases
. . .
1
Distributed Hypervisor
2
Copyright © 2008 Stonesoft Corporation All rights reserved.Slide 4Slide 4
3: Virtualized Datacenters
Distributed Hypervisor
Copyright © 2008 Stonesoft Corporation All rights reserved.Slide 5Slide 5
Benefits
• Green IT
• Manageability
• Savings
• Business
Continuity
• What about security?
Copyright © 2008 Stonesoft Corporation All rights reserved.Slide 6Slide 6
Security perception in Virtualization
• VMWorld 2008: biggest event in Europe about
Virtualization!
• Over 4500 attendees...
• Over 120 breakout sessions...
• ...only TWO presentations about security!!!(and one of them was a HowTo for a Honeypot)
Copyright © 2008 Stonesoft Corporation All rights reserved.Slide 7Slide 7
Example of a physical net…
Internet DMZ Office Network
Copyright © 2008 Stonesoft Corporation All rights reserved.Slide 8Slide 8
Security and Virtualization
• Same issues of physical environments
• Need for defense in depth
• Virtual Appliance protection(missing patches, exploit)
• Unified management
• Migration assistance
• Virtual appliance -> StoneGate
Copyright © 2008 Stonesoft Corporation All rights reserved.Slide 9Slide 9
Protected virtualized environment
Internet DMZ Office Network Virtual Environment
Virtual
Appliance
Virtual
Appliance
Virtual
Appliance
Copyright © 2008 Stonesoft Corporation All rights reserved.Slide 10Slide 10
Highly virtualized environment… protected
Internet Office NetworkDMZ
Virtual Environment
Virtual
Appliance
Virtual
Appliance
Virtual
Appliance
Virtual
Appliance
Copyright © 2008 Stonesoft Corporation All rights reserved.Slide 11Slide 11
Momentum is now!!!
Because…
• Customers have virtualized server, but not (yet)
networks
• StoneGate is Virtual since 2001!
• Hardware Appliance vendors are just... Hardware
appliance vendors!
• We offer “Secure (Virtual) Information Flow!
Copyright © 2008 Stonesoft Corporation All rights reserved.Slide 12Slide 12
Best of both worlds
Copyright © 2008 Stonesoft Corporation All rights reserved.Slide 13Slide 13
Take Home Messages
• We add Security to Virtualizzation
• We support migration from physical to virtualized
• Centralized Management, with low TCA, of both “worlds”
with SMC
Copyright © 2008 Stonesoft Corporation All rights reserved.Slide 14Slide 14
www.stonesoft.com
http://www.secureinformationflow.com
Your virtual
