It is only very recently that AV vendors are starting to use the abilities in VMware vSphere that (potentially) allow for more effective AV (for VDI). This article reviews Trend Micro Deep Security 7.5.
With the growing adoption of VMware View, as well as vCloud, the vShield line of products is gaining in popularity. In particular, the bundling of vShield Endpoint licenses with View Premier has given many customers who would otherwise install a full (and typically bloated) anti-virus package into their virtual desktops a viable alternative. In this article, I will focus on Trend Micro’s implementation of vShield Endpoint technology in securing both virtual desktop and server workloads on vSphere. Please note that this is not meant to be a complete review of the product. I’m not going to walk you through the complete installation process, nor am I going to cover operations extensively. I prefer to simply share my experiences, thoughts, and conclusions from my dealings with the product.
Trend Micro was the only launch partner for vShield Endpoint back at VMworld 2010, and unless something has been announced recently that I haven’t seen, Trend Micro has the only functional, production-ready vShield Endpoint solution. This is great for me, since the agency for which I work already uses Trend Micro Office Scan in their production environment.
I acquired the bits from Trend Micro and immediately went to push it out to my lab environment where both VMware View and Citrix XenDesktop were being evaluated. I went about following steps I read in both Trend Micro’s supplied materials, as well as some excellent blog posts at GeekSilver’s Blog.
VMware vSphere vShield 4.1 Understanding Part 1
VMware vShield Endpoint and Trend Micro Deep Security 7.5 understanding Part 2
VMware vShield Endpoint and Trend Micro Deep Security 7.5 understanding Part 3
Overall, I really like the idea of offloading ancillary tasks or duties that were traditionally in guest, be it backup with vStorage APIs for Data Protection or anti-virus with vShield Endpoint. I think Trend Micro and VMware have a really good set of complementary products in Deep Security and vShield Endpoint, and I hope both vendors continue to innovate in this arena. I would like to see some competing products from Symantec or the like to keep driving the industry in this area, but that we shall see.