RSA, the Security Division of EMC, has announced that it is enabling VMware to embed RSA Data Loss Prevention (DLP) classification technology and policies into the VMware vShield 5 product family, further helping customers accelerate their journey to the cloud.
As part of the new VMware cloud infrastructure suite announced today, VMware vShield App with Data Security will include RSA’s DLP content analysis engine and expert policies to enable customers to accurately discover and classify sensitive data such as PCI, PII and PHI residing within virtual environments.
The RSA Data Loss Prevention Suite is engineered to both help uncover business risk associated with the loss of sensitive data and dynamically lower that risk through policy-based remediation and enforcement of controls, whether the data is at rest in a data centre, in motion over the network or in use at endpoints. Embedding RSA DLP classification technology and policies into the virtualisation layer will help enable enterprise customers to gain greater visibility to sensitive information, which can then be managed using vShield zoning and protected via other security controls.
“The emerging cloud computing paradigm requires IT to rethink how to secure the infrastructure – moving away from applying security policies and technology tied to a physical topology in favour of building security and compliance into a single policy framework,” says Hatem Naguib, Vice President of Alliances for VMware.
“Working with RSA and its DLP technology, we can enable enterprises to discover and classify sensitive data residing within virtual machines, further accelerating the customer’s journey to a cloud-ready infrastructure and delivering on the vision that security and compliance in a virtual infrastructure can exceed what’s possible in the physical infrastructure.”
The 80 pre-defined policies that facilitate compliance with regulations from across the world in VMware vShield App with Data Security are based on industry and regional regulations and were developed by RSA’s DLP Knowledge Engineering Team. With strong expertise in information science, linguistics, and certified in numerous regulations, this dedicated team of engineers and scientists employs a proven methodology designed to develop out-of-the-box policies that offer best-in-class accuracy.
The content analysis engine is engineered to provide deep inspection of data by looking for specific keywords, patterns, and strings, as well analysing contextual information such as metadata and proximity of keywords and strings.
“There is a strong market demand for security and compliance controls to be built into the virtual infrastructure,” says Karel Rode, Principal Consultant for RSA, the Security Division of EMC Southern Africa.
“We’re excited to move into the next phase of our relationship with VMware and expect that by building our DLP classification technology into the industry-leading virtual and cloud infrastructure platform, customers will now be able to gain better visibility into their virtual infrastructure and better manage risk and security.”
Customers will be able to extend the DLP functionality in VMware vShield App with Data Security from data-at-rest in virtual zones to data-at-rest in physical data centres, data-in-use at physical endpoints and data-in-motion over email and web through the RSA Data Loss Prevention Suite, which can be purchased separately. By using the same policy and classification engine, customers can consistently protect data across the enterprise and streamline security operations for both physical and virtual environments.
“Enterprises cite data security and regulatory compliance as their main inhibitors to using computing services,” says Phil Hochmuth, an analyst in IDC’s Security Products research group. “Tools that can find and classify sensitive enterprise data, especially in virtual environments, will be critical for organisations transitioning their data centre workloads onto new cloud services and architectures.”
This technology partnership is an expansion of RSA’s ecosystem of infrastructure vendors embedding DLP technology into their products, including Cisco and Microsoft. RSA’s built-in approach to security helps enable organisations to leverage their existing infrastructure to protect against the risks associated with unprotected sensitive data, instead of the need to bolt-on additional security products.