The Virtualization Room

Feb 21 2011   6:37PM GMT

Antivirus for virtualization: Coming out of the Dark Ages?

KeithKessinger Keith Kessinger Profile: KeithKessinger

Even though server virtualization continues to evolve, it seems like antivirus software for virtual infrastructures is stuck in the past.

Traditionally, to protect against malware and viruses, antivirus agents must be placed in each virtual machine (VM). It’s no secret that this model is plagued with problems. Antivirus scans are resource-intensive, and they can cripple host performance if multiple VMs perform scans at the same time. But don’t blame antivirus vendors for this archaic protection method.

“It’s primarily the fault of VMware,” said Eric Siebert, senior systems administrator for Boston Market and regular TechTarget contributor. “It took awhile for VMware to develop a framework that looks inside the VM.”

With the release of vShield Endpoint, VMware tries to combat the resource-utilization problems associated with antivirus software. Endpoint uses a virtual appliance on the host, connected to each VM through a small driver. The driver offloads the scanning and updating processes from the individual VMs to the virtual appliance.

In theory, this arrangement should reduce host-resource utilization problems. Instead of several antivirus agents running full bore, the virtual appliance — acting as a centralized hub — eases the load on the host. (For a closer look at vShield Endpoint, stay tuned for our upcoming series on vShield.)

According to Seibert, Endpoint is great for virtual desktop infrastructure, which already has extra overhead inside each VM. By reducing host-resource demands, Endpoint can also increase VM-to-host ratios, he said.

So far, Trend Micro’s Deep Security is the only antivirus product that taps vShield Endpoint’s capabilities. In a recent study commissioned by the security vendor, Deep Security consistently drew lower CPU, memory and disk I/O, compared to traditional antivirus offerings from McAfee and Symantec. (Granted, it’s a vendor-sponsored survey.)

If anything, these antivirus developments show a promising future for a critically important, but stagnant technology. Perhaps antivirus software for virtualization is coming out of the Dark Ages.

 Comment on this Post

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: