Today Reflex Systems announced the availability of vTrust™, leveraging the much-awaited VMware’s VMsafe technology which in turn is coming soon in the more-awaited vSphere4. I’ve been a big fan of the Reflex products, and I must say, been so lazy as well to demonstrate their great, VMC, on my blog although it’s been running in my lab for quite some time. I love their Virtual Security Appliance (VSA) that has quite unique features we are missing in our virtual environments today. But the new vTrust comes pretty wild with all the “dynamic policy enforcement” concept and being cloud ready as well.
Quick Highlights from Reflex’s technology section around vTrust:
- Dynamic Policy Enforcement and Management– the ability to specify government regulation, corporate compliance, data center policy, best practice or security rules that adapt and move with the virtual assets (virtual machines, virtual network, group of VMs, hosts, clusters, vLAN, etc.), thus policy is enforced regardless of location, type of network connection, or type of virtual switch
- Policy Extends into the Cloud – vTrust can facilitate and automate the use of cloud and SaaS services by providing a cloud security API that enables enterprises and hosting/cloud solution providers to secure individual virtualization resources in the cloud
- Virtual Segmentation – create virtual trust zones on shared resources by dynamically partitioning the virtual infrastructure into separate virtual resources with different network communication policies (firewall rules)
- Virtual Quarantine – enforce data center policy when VMs are provisioned (VMs must meet certain criteria to be allowed on the network). Easily detect rogue or unauthorized guests or virtual machines which do not meet regulatory or compliance requirements
- Virtual Networking Policies – create and enforce a DMZ, block specific kinds of network traffic between virtual machines (P2P, IM, FTP, etc.), ensure only specific protocols are used on specific ports or networks, etc.