Automotive Digital Response Management

ResponseLogix Journal

Subscribe to ResponseLogix Journal: eMailAlertsEmail Alerts newslettersWeekly Newsletters
Get ResponseLogix Journal: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn


ResponseLogix Authors: Catherine Edwards, Maureen O'Gara, Todd Ignasiak, Jeremy Geelan, Nati Shalom

Related Topics: Virtualization Magazine, VMware Journal, ResponseLogix Journal, IT Strategy

Article

Altor’s Firewall Moves to the Hypervisor

Reportedly the first security product to land inside the hypervisor

Altor Networks' virtual firewall is finally working inside the VMware hypervisor kernel, solving a problem created by virtual switches.

It's reportedly the first security product to land inside the hypervisor complements of the VMsafe APIs network APIs in fast-path mode used to develop it.

Security inspections processed in the hypervisor kernel are supposed to improve not only security but performance and scaling, overcoming the throughput choke point created by virtual firewalls running in a virtual machine (bridge mode) and increasing the number of secure VMs that can run on a physical server by 10x-20x.

Altor CEO Amir Ben-Efraim says customers can realize higher virtualization ROI by maximizing the number of secure VMs on each physical host while meeting their security compliance requirements.

An ESX server can run, say, 40 unsecured VMs. Slap on a typical firewall and the number drops to four or five. In the hypervisor the firewall also sees and stops every packet to every VM; before it couldn't inspect the traffic between two VMs on the same switch, now, Ben-Efraim says, it's securing all the network traffic in and out of the VM.

The company quotes Gartner Fellow Neil MacDonald as saying "Hypervisor-level security interfaces are not a panacea, but they do offer the potential for significant gains in defense-in-depth and performance when used to secure the virtual infrastructure."

Altor's new VF 3.0 virtual firewall with integrated intrusion detection, just announced this week, has been certified by VMware under a new certification category. It will run $2,000 per ESX server.

The way it works security policy is applied at an individual-VM level and enforcement of this policy happens in the kernel. The company says VMs are protected without requiring security agents on the guest, complicated network reconfigurations or performance-degrading remapping of network flows.

Altor's defenses include virtual-aware intrusion detection of emerging threats using a security-signature update service and enable secure usage of unique virtualization features such as vMotion as well as tight integration with vCenter.

Altor was started in March of 2007 by a bunch of ex-Check Point Software guys specifically to secure the virtual environment and is funded by Accel Partners and Foundation Capital to the tune of $7.5 million.

More Stories By Maureen O'Gara

Maureen O'Gara the most read technology reporter for the past 20 years, is the Cloud Computing and Virtualization News Desk editor of SYS-CON Media. She is the publisher of famous "Billygrams" and the editor-in-chief of "Client/Server News" for more than a decade. One of the most respected technology reporters in the business, Maureen can be reached by email at maureen(at)sys-con.com or paperboy(at)g2news.com, and by phone at 516 759-7025. Twitter: @MaureenOGara

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.