Skip to main content

Altor Networks Launches; Unleashes industry's first Virtual Network and Firewall Analyzer

We spoke to and interviewed Amir (http://www.altornetworks.com/company/mgmt.html), Altor's CEO during VMworld and he had asked us to wait till this release so here we are. We will soon be releasing the video with Ben at Virtualization.com.




Redwood City, Calif. – March 17, 2008 – Altor Networks, pioneering a new class of virtual network security solutions, today announced the launch of the industry’s first virtual switch traffic analyzer and Virtual Network Firewall.™ Each system supports multi-vendor virtual platforms and is purpose-built to make virtualized data centers more secure than their physical counterparts.
Altor’s Virtual Network Security Analyzer™ (VNSA) and Virtual Network Firewall (VNF) provide unprecedented visibility into virtual switch traffic and control over virtual machines (VMs) being deployed by enterprises, government agencies and organizations in regulated industries. Altor’s VNSA and VNF solutions enable network administrators and security professionals to apply security best practices for virtual networks and help companies meet increasingly stringent HIPAA, PCI and SOX regulatory compliance requirements—at a fraction of the cost of legacy security products.
“One of the key drivers for virtualizing our data center is operational agility,” said Nicholas Portolese, senior manager, data center operations, with Nielsen Mobile, the world’s largest provider of syndicated consumer research to the telecom and mobile media markets. “Altor Networks’ Virtual Network Security Analyzer provides us, for the first time, with crucial insight into our virtual switch traffic with real-time and historical monitoring and analysis capabilities. This enables us to weed out, analyze and report on network bottlenecks caused by a number of sources including unwanted protocols, multicast and broadcast service announcements.”
“Most people don’t realize security virtualization has lagged far behind virtualization of storage, networking, and servers,” said Andreas M. Antonopoulos, senior vice president and founding partner at Nemertes Research. “The lack of suitable security is actually thwarting more widespread adoption of virtualization in some cases. Ironically, traditional static security solutions are subverting some of the operational return-on-investment offered by virtualization such as live migration.”
This “security gap” can be traced to the shortcomings of traditional security solutions that include legacy firewalls, intrusion detection/prevention systems, operating system firewalls and VLANs. Aging firewalls and IDS/IPSs that were designed to defend static, perimeter-based physical networks have no visibility into VM traffic and control over virtual networks—nor do they integrate easily with virtual network management systems. VLANs lack virtual switch traffic inspection capabilities, are complex to manage, and restrict usage of VM migration tools like VMotion. And OS firewalls suffer from lack of central management, inconsistency across differing operating systems and poor support for legacy OSes.
“Virtualization, as with any emerging technology, will be the target of new security threats,” according to Neil MacDonald, security & privacy vice president and Gartner Fellow, in a March 6, 2007, Gartner research note titled, “Security Considerations and Best Practices for Securing Virtual Machines.” Added MacDonald: “Many organizations mistakenly assume that their approach for securing VMs will be the same as securing any operating system (OS) and thus plan to apply their existing configuration guidelines and standards. While this is a start, simply applying the technologies and best practices for securing physical servers won't provide sufficient protection for VMs. Several areas are often overlooked completely … Because of the rush to adopt virtualization for server consolidation efforts, many of the[se] issues are overlooked, [and] best practices aren't applied, or in some cases, the tools and technologies for addressing some of the security issues with virtualization are immature or nonexistent.”
Altor’s Virtual Network Security Analyzer
Given the increasing adoption rates of virtualization, data center administrators must be capable of discovering inter-VM traffic for auditing, security and regulatory compliance. Altor’s VNSA delivers on these requirements by providing real-time visibility and historical views of virtual switch traffic though a centrally managed, comprehensive dashboard that integrates with existing virtualization management systems to import network, host and event information. The VNSA can also analyze virtual network traffic to track and organize VMs by network usage and create user-defined groups.
Unlike network security and monitoring solutions that are completely “blind” to inter-VM communications, Altor’s VNSA can alert data center administrators to security vulnerabilities and operational problems through the discovery of:

Port scans, tunneling, insecure and unwanted protocols

Configuration anomalies due to external DNS and NTP access and DHCP auto-configuration errors

Multicast and broadcast service announcements that can erode network performance

Optimize VMotion/DRS by grouping VMs based on network usage

User defined and automated groups to monitor access to business-critical resources

Report generation for regulatory compliance
Altor’s Virtual Network Firewall
Specifically built to secure inter-VM communications in highly dynamic virtual network environments, Altor’s first-of-its-kind Virtual Network Firewall uniquely enforces granular security policies that remain “attached” to individual VMs, even as they move about the data center. Centrally managed, the VNF supports and enforces roles-based security policies per-VM.

Altor’s VNF is built from the ground up for multi-vendor platform support which will include virtualization servers from VMware, Citrix, Microsoft, Oracle, Sun and others.
“As more servers are virtualized on multi-core systems capable of hosting dozens of VMs, CIOs and CSOs are beginning to recognize that securing the new access layer—the virtual switch— is a strategic imperative,” said Amir Ben-Efraim, CEO and founder of Altor Networks. “In view of the soaring adoption rates of virtualization in production data centers, we have a unique and considerable market opportunity to cost-effectively improve the security posture of organizations across a broad spectrum of industries.”
Pricing and Availability
Enterprise licenses for the Virtual Network Security Analyzer, (VNSA) start at $500 US per physical server, supporting an unlimited number of virtual machines. A single Altor Center management system supporting unlimited VNSA agents is available for $1,500 US. Annual maintenance and support licenses are also available. Release 1.0 of the Virtual Network Security Analyzer is generally available now. Free demo versions of the Altor agent and Altor Center can be downloaded at www.altornetworks.com.

Comments

Popular posts from this blog

DeepLearningTrucker Part 1

Avastu Blog is migrating to IdeationCloud.com; 1st Jan 2009 live

YOU DON'T HAVE TO DO ANYTHING. WITHIN 2 SECONDS YOU WILL BE REDIRECTED TO THE NEW HOME OF AVASTU BLOG. PLEASE DO UPDATE AVASTU BLOG'S URL to : http://www.ideationcloud.com on your website.

I will send out emails personally to those who are using my link(s) on their sites.

Thanks much for your co-operation and hope you enjoy the new site and its cool new features :-)




Not like the site is unlive or something..on the contrary, its beginning to get a lot of attention already. Well most of the work is done, you don't have to worry about anything though:

What won't change

Links/Referrals: I will be redirecting the links (all links which you may have cross-posted) to IdeationCloud.com - so you don't have to do anything in all your posts and links. Although, I would urge however that you do change the permalinks, especially on your blogs etc yourselfThis blog is not going away anywhere but within a few months, I will consider discontinuing its usage. I won't obviously do …

Cloud Security: Eliminate humans from the "Information Supply Chain on the Web"

My upcoming article, part - 3 data center predictions for 2009, has a slideshot talking about the transition from the current age to the cloud computing age to eventually the ideation age- the age where you will have clouds that will emote but they will have no internal employees.

Biggest management disasters occur because internal folks are making a mess of the playground.

Om's blog is carrying an article about Cloud security and it is rather direct but also makes a lot of sense:

I don’t believe that clouds themselves will cause the security breaches and data theft they anticipate; in many ways, clouds will result in better security. Here’s why: Fewer humans –Most computer breaches are the result of human error; only 20-40 percent stem from technical malfunctions. Cloud operators that want to be profitable take humans out of the loop whenever possible.Better tools – Clouds can afford high-end data protection and security monitoring tools, as well as the experts to run them. I trust…