rsa security solutions for virtualization
DESCRIPTION
RSA Security Solutions for Virtualization. Martin de Jongh , Presales team lead EMEA North. RSA Market Opportunity RSA capabilities for Virtualization RSA VCE’s Vblock security Words of Wisdom. 2. RSA, The Security Division of EMC. - PowerPoint PPT PresentationTRANSCRIPT
RSA Security Solutions for Virtualization
Martin de Jongh, Presales team lead EMEA North
22
RSA
Market Opportunity
RSA capabilities for Virtualization
RSA VCE’s Vblock security
Words of Wisdom
3
RSA, The Security Division of EMC
EMC² is the world leading information infrastructure company enabling organizations to bring the
power of their information to life
RSA is the world leader in securing information infrastructure ensuring that information is always an
asset and never a liability
AddIntelligence
Virtualize& Automate
StoreProtect
InformationVMWare is the world leading
Virtualization company Virtualize, Optimize & Energize
4
RSA Security Leadership
Inventors of RSA algorithm
1st
yearlegacy
25+
organizationsprotected
35K +
phishing attacks shut down
175K+
250M +
online identities protected
1B +
productsshipped with RSA
BSAFE® encryption
World’s Largest
information security industry
event
yearlegacy
25+
5
RSA Security Leadership
Source: Gartner Magic Quadrant Reports
Authentication1st
Data Loss Prevention
LeaderWeb Fraud Detection
LeaderSIEM
Leader
Source: Frost & Sullivan
66
RSA
Market Opportunity
RSA capabilities for Virtualization
RSA VCE’s Vblock security
Words of Wisdom
IT Budget wishlist for 2010
survey of 1,189 CIOs in the US and Canada.
Market Opportunity
In 2009 only 18% of enterprise datacenter workloads that could be virtualized have been virtualized.
Biggest increases in spending for 2010: Security (20%), Virtualization (12%) & Cloud Computing……….
Through 2012, 60% of virtualized servers will be less secure than the physical servers they replace .
In 2009 40% of virtualization deployment projects undertaken were without involving the information security team in the initial architecture and planning stages.
99
RSA
Market Opportunity
Cloud Computing
RSA capabilities for Virtualization
Summary
Words of Wisdom
The Business View of Clouds
The Security View of Clouds
New Cloud Security challenges
1. Information Sensitivity – What information will be going to the cloud?– Are there privacy or confidentiality issues?
2. Information Mobility– Where physically will the information be? Are there legal/sovereignty issues? – Can I be sure I get it all back – and all copies are permanently deleted– if I stop using the cloud vendor or
infrastructure?– Will the cloud vendor outsource any of its functions? Can I control that?
3. Transparency, Accountability, Trust– Can I get clarity into whether security controls, and other best practices, are being deployed?– Can I meet audit and compliance requirements for the information or business process?– Can I trust the cloud service provider?
4. Who Are My Neighbors?– Are there controls in terms of who else is using this cloud infrastructure?– Is there good discipline over separation of data, processes and infrastructure?– Is there strong identity management both for customers and for employees?
5. The Human Dimension– Can I get insight into hiring practices and training practices regarding privacy and
security?
RSA/EMC/VMWare
’Private’ Cloud strategy
1414
RSA
Market Opportunity
Cloud Computing
RSA capabilities for Virtualization
Summary
Words of Wisdom
RSA capabilities for VirtualizationInfo Centric vs. Perimiter defense
RSA’s approach - Transforming Security within the Virtualized infrastructures
RSA’s VisionSurpass the levels of security possible in today’s physical infrastructures by pushing information security enforcement down the virtual stack.
TodayMost security is enforced by the Network, OS and application stack.
Sec
urity
Man
agem
ent &
Rep
ortin
g(S
IEM
)
vApp and VM layer
Virtual Infrastructure(including hypervisor)
VDC Services Layer
APP
OS
APP
OS
APP
OS
StorageCompute Network
16
Clo
ud C
ompu
ting
RSA capabilities for Virtualization
RSA portfolio Multi-product solutions
- Encryption, Identity/Access controls, SIEM & DataLossPrevention
RSA SecurBook for VMWare View• Solution Architecture • Solution deployment and configuration guides• Operational guidance for effective using the solution• Troubleshooting guidance • Solution guides for planning, deploying, and
administering RSA solutions in an Virtual infra.
“…we don't usually do this as part of our briefings, but I must say I looked at the RSA SecurBook and was very surprised with the level of detail and material
in there. Lots of screen shots and other materials I wasn't expecting. Very nicely done. Excellent resource.”
- Gartner Analyst, December 2009
RSA Identity & Access controls for the Virtual Infrastructure
VMware View(Desktop virtualization-VDI)• RSA SecurID &
Authentication Manager strong authentication secures access to the portal through which virtual desktops are accessed remotely
VMware vSphere (ESX)(Sever virtualization)• RSA SecurID &
Authentication manager strong authentication secures administrative access to ESX console and vSphere Management Assistant
AuthenticationManager
RSA Security Management & Reporting for the Virtual and physical infrastructure
OverviewEase of analysis, implementation, compliance and change control in VMware environment.
RSA enVision collects distinct logs from VMware environment thru 1 seamless, agentless connection
– vCenter logs – VMWare Servers logs
RSA enVision (SIEM)VMware Events and Activity
RSA Data Loss Prevention Suite
DISCOVERWhere is my sensitive data?
MONITORWhere is my sensitive data going?
ENFORCEHow do I prevent loss of my data?
DLP Datacenter
DLP Network
DLP Endpoint
Enterprise Manager
RemediationPolicies
Network
INTERNET
vShieldZone1
Zone2 Zone3
VMware VSphere
VMware VSphere
VMware VSphere
VMware VSphere
OverviewLeverages the capabilities of VMware vShield Zones to deploy RSA DLP internally as a OS imbedded virtual sensor monitoring data traversing among virtual networks.
Uses a centrally managed policies and enforcement controls to prevent data loss in the virtual datacenter
RSA Data Loss Preventionfor Virtual networks
RSA DLPSensor
RSA DLPsensor
RSA DLPSensor
RSA DLPSensor
RSA & VMware ‘vSafe program’
RSA Solution Suite for Virtual infrastructure
RSA SecurID for remote
authentication
RSA DLP for protection of data
in use
VMware Ionix SCM for security config and patch
management
RSA enVision for security monitoring
and reportingRSA SecurID
for ESX Service Console
RSA Secures the Core Vblock Platform (VCE)
RSA enVision
RSA SecurID
Strong authentication before access to ESX Service Console and vSphere Management Assistant
Comprehensive visibility into security events
Security incident management, compliance reporting
Security and compliance officer
vSphere Management
Assistant
Vmware Administrator
Validated with Vblock
vSphere
Storage
UCS
2525
RSA
Market Opportunity
Cloud Strategy
RSA capabilities for Virtualization
Summary
Words of Wisdom
SecureInformation
MonitorInfrastructure
ProtectIdentities
Summary: Leading the Way Toward 100% VirtualizationRSA: Security and Compliance for Virtual Environments
Identify targets for low risk virtualization
Prevent data leakage between vShield Zones
Data Loss Prevention which discovers and protects sensitive data in vShield Zones, VMware View, ESX and Vblock
Ensure compliance across virtual and physical with a single platform
Native Security Event and Incident Management support for VMware View, ESX, vCenter, vSphere and, Vblock
Benefits CapabilitiesAssure authorized access into every layer of the virtual environment
Strong authentication into VMware View, ESX and Vblock
Additional Information
• RSA Security Brief: Security Compliance in a Virtual World
• RSA SecurBook for VMWare View
• RSA White Paper: VMWare Virtual Desktop Infrastructure
• Website: RSA Solutions for Virtual Environments
• RSA White Paper: Desktop Virtualization Management and Security
2828
RSA
Market Opportunity
Cloud Strategy
RSA capabilities for Virtualization
Summary
Words of Wisdom
RSA Internal only
Words of Wisdom
29
There is no better way to fully understand a “security”
challenge…….. then to look at it from all divergent angles !!
Thank You!!
MerciGrazie
GraciasObrigado
Danke
Japanese
English
French
Russian
German
Italian
Spanish
Brazilian Portuguese
Arabic
Traditional Chinese
Simplified Chinese
Thai
Korean
Tack så mycketSwedish
Takk!Norwegian
Hartelijk dank!Dutch
Thank you!