Subscribe / Unsubscribe Enewsletters | Login | Register

Pencil Banner

Virtual security for information superiority: Sourcefire Malaysia

AvantiKumar | Sept. 6, 2012
New FireAMP Virtual and Virtual Next-Generation IPS deliver virtualised security to enterprise, according to Sourcefire Malaysia.

Ivan Wen Country Manager of Sourcefire (CWM) modified

PHOTO - Ivan Wen, country manager, Sourcefire Malaysia.


Cyber security solutions provider Sourcefire Malaysia has announced new security solutions to deliver virtualised real-time visibility and control to enterprises.

Sourcefire Malaysia country manager Ivan Wen said FireAMP Virtual and Virtual Next-Generation IPS (Intrusion Prevention System), or NGIPS, are designed for the virtual enterprise.

"These virtual solutions are just the latest example of the company's commitment to protecting organisations from the most sophisticated attacks - whether on physical, mobile or virtual systems," said Wen.

According analyst firm Gartner's research director Eric Ahlm (and author of 'Market Trends: Virtual Data Centre Security, Worldwide, June 2012'), who said that data traffic monitoring across virtual switches required a control that resides in or can see data traffic in the virtual network.

"The challenge is that not all network security controls have visibility into the virtual network that resides in the hypervisor," said Ahlm. "This can create blind spots in security controls that are monitoring only the physical network. Attacks that happen on the virtual switch will go undetected until they happen on a physical network with security controls."

Sourcefire's Wen said the Sourcefire solution included Cloud Recall, designed for VMware environments, which provided continuous analysis of historical file activity, to help discover and remediate threats that were previously missed.

"On the other hand, the Virtual NGIPS overcomes the lack of visibility that traditional physical intrusion prevention products have over virtualised environments, he said. "The Sourcefire Virtual NGIPS can inspect virtual machine (VM)-to-VM communications, providing full NGIPS capabilities to protect VMware-based virtual networks. It also provides optional URL filtering to reduce the surface area of attack."

"As with physical assets, security in a virtualised setting should be about more than just stopping attacks; organisations also need to continually drive visibility, control and management," he said.


Sign up for MIS Asia eNewsletters.