Virtual security switch (original) (raw)
A virtual security switch is a software Ethernet switch with embedded security controls within it that runs within virtual environments such as VMware vSphere, Citrix XenDesktop, Microsoft Hyper-V and Virtual Iron. The primary purpose of a virtual security switch is to provide security measures such as isolation, control and content inspection between virtual machines.
| Property | Value |
|---|---|
| dbo:abstract | A virtual security switch is a software Ethernet switch with embedded security controls within it that runs within virtual environments such as VMware vSphere, Citrix XenDesktop, Microsoft Hyper-V and Virtual Iron. The primary purpose of a virtual security switch is to provide security measures such as isolation, control and content inspection between virtual machines. Virtual machines within enterprise server environments began to gain popularity in 2005 and quickly started to become a standard in the way companies deploy servers and applications. In order to deploy these servers within a virtual environment, a virtual network needed to be formed. As a result, companies such as VMware created a resource called a virtual switch. The purpose of the virtual switch was to provide network connectivity within the virtual environment so that virtual machines and applications could communicate within the virtual network as well as with the physical network. This concept of a virtual network introduced a number of problems, as it related to security within virtual environment, due to only having virtual switching technology within the environment and not security technologies. Unlike physical networks that have switches with access control lists (ACLs), firewalls, antivirus gateways, or intrusion prevention devices, the virtual network was wide open. The virtual security switch concept is one where switching and security have joined forces, so that security controls could be placed within the virtual switch and provide per-port inspection and isolation within the virtual environment. This concept allowed security to get as close as possible to the end points that it intends to protect, without having to reside on the end points (host-based on virtual machines) themselves. By eliminating the need to deploy host-based security solutions on virtual machines, a significant performance improvement can be achieved when deploying security within the virtual environment. This is because virtual machines share computing resources (e.g. CPU time, memory or disk space) while physical servers that have dedicated resources. One way of understanding this, is to picture 20 virtual machines running on a dual-CPU server and each virtual server having its own host-based firewall running on them. This would make up 20 firewalls using the same resources that the 20 virtual machines are using. This defeats the purpose of virtualization, which is to apply those resources to virtual servers not security applications. Deploying security centrally within the virtual environment is in a sense one firewall versus 20 firewalls. (en) |
| dbo:thumbnail | wiki-commons:Special:FilePath/VirtualSecuritySwitch.jpg?width=300 |
| dbo:wikiPageExternalLink | http://www.networkworld.com/article/2282076/lan-wan/options-seen-lacking-in-firewall-virtual-server-protection.html%7Ctitle=Options http://sdtimes.com/virtualization-not-just-for-machines-anymore/%7Ctitle=Virtualization: http://www.vmware.com/security%7Ctitle=Making |
| dbo:wikiPageID | 15221812 (xsd:integer) |
| dbo:wikiPageLength | 6852 (xsd:nonNegativeInteger) |
| dbo:wikiPageRevisionID | 1079507402 (xsd:integer) |
| dbo:wikiPageWikiLink | dbr:Router_(computing) dbr:Network_operating_system dbc:Virtualization dbr:VMware dbr:VMware_vSphere dbr:System_administrator dbc:Ethernet dbr:Network_address_translation dbr:Open_source dbr:Cisco dbr:Antivirus_software dbr:Linux dbr:MP3 dbr:Virtual_appliance dbr:Business dbr:Vyatta dbr:Juniper dbr:File:VirtualSecuritySwitch.jpg dbr:Access_control_list dbr:Dynamic_Host_Configuration_Protocol dbr:Ethernet_switch dbr:Fedora_(operating_system) dbr:Layer_3 dbr:Trojan_horse_(computing) dbr:Virtual_network dbr:VMWare dbr:Disk_image dbr:Hypervisors dbr:IDG dbr:Microsoft_Hyper-V dbr:Operating_system dbr:Random-access_memory dbr:CPU dbr:Virtual_machine dbr:Server_(computing) dbr:Software dbr:Virtual_private_network dbr:Virtualization dbr:Virtual_firewall dbr:Firewall_(computing) dbr:Virtual_Iron dbr:Network_World dbr:Disk_space dbr:Intrusion_prevention dbr:Citrix_XenDesktop dbr:Peer-to-peer_networks dbr:Virtual_switch dbr:Layer_2 |
| dbp:wikiPageUsesTemplate | dbt:Cite_web dbt:More_citations_needed dbt:Reflist dbt:Short_description dbt:Which dbt:Virtualization_software |
| dct:subject | dbc:Virtualization dbc:Ethernet |
| gold:hypernym | dbr:Ethernet |
| rdfs:comment | A virtual security switch is a software Ethernet switch with embedded security controls within it that runs within virtual environments such as VMware vSphere, Citrix XenDesktop, Microsoft Hyper-V and Virtual Iron. The primary purpose of a virtual security switch is to provide security measures such as isolation, control and content inspection between virtual machines. (en) |
| rdfs:label | Virtual security switch (en) |
| owl:sameAs | freebase:Virtual security switch wikidata:Virtual security switch https://global.dbpedia.org/id/4xae5 |
| prov:wasDerivedFrom | wikipedia-en:Virtual_security_switch?oldid=1079507402&ns=0 |
| foaf:depiction | wiki-commons:Special:FilePath/VirtualSecuritySwitch.jpg |
| foaf:homepage | http://vmware.com |
| foaf:isPrimaryTopicOf | wikipedia-en:Virtual_security_switch |
| is dbo:wikiPageWikiLink of | dbr:VNS3 dbr:Defense_strategy_(computing) dbr:Security_switch |
| is foaf:primaryTopic of | wikipedia-en:Virtual_security_switch |
