Unedited news and product information from vendors.
RSA and VMware Partner to Deliver DLP Technology for VMware vShield™ 5
Jul 12, 2011 (04:07 PM EDT)
Built-in Technology from EMC's Security Division to Enable Data Discovery and Classification in Virtual Environments
BEDFORD, Mass., July 12, 2011 /PRNewswire/ -- RSA, The Security Division of EMC (NYSE: EMC) announced that it is enabling VMware to embed RSA® Data Loss Prevention (DLP) classification technology and policies into the VMware vShield™ 5 product family, further helping customers accelerate their journey to the cloud. As part of the new VMware cloud infrastructure suite announced today, VMware vShield App with Data Security will include RSA's DLP content analysis engine and expert policies to enable customers to accurately discover and classify sensitive data such as PCI, PII and PHI residing within virtual environments.
The RSA Data Loss Prevention Suite is engineered to both help to uncover business risk associated with the loss of sensitive data and dynamically lower that risk through policy-based remediation and enforcement of controls, whether the data is at rest in a datacenter, in motion over the network or in use at endpoints. Embedding RSA DLP classification technology and policies into the virtualization layer will help enable enterprise customers to gain greater visibility to sensitive information, which can then be managed using vShield zoning and protected via other security controls.
"The emerging cloud computing paradigm requires IT to rethink how to secure the infrastructure -- moving away from applying security policies and technology tied to a physical topology in favor of building in security and compliance into a single policy framework," said Hatem Naguib, Vice President, Alliances, VMware. "Working with RSA and its DLP technology, we can enable enterprises to discover and classify sensitive data residing within virtual machines, further accelerating the customer's journey to a cloud-ready infrastructure and delivering on the vision that security and compliance in a virtual infrastructure can exceed what's possible in the physical infrastructure."
The 80 pre-defined policies that facilitate compliance with regulations from across the world in VMware vShield App with Data Security are based on industry and regional regulations and were developed by RSA's DLP Knowledge Engineering Team. With strong expertise in information science, linguistics, and certified in numerous regulations, this dedicated team of engineers and scientists employs a proven methodology designed to develop out-of-the-box policies that offer best-in-class accuracy. The content analysis engine is engineered to provide deep inspection of data by looking for specific keywords, patterns, and strings, as well analyzing contextual information such as metadata and proximity of keywords and strings.
"There is a strong market demand for security and compliance controls to be built into the virtual infrastructure," said Manoj Nair, Vice President, Security Management Products, RSA, The Security Division of EMC. "We're excited to move into the next phase of our relationship with VMware and expect that by building our DLP classification technology into the industry leading virtual and cloud infrastructure platform, customers will now be able to gain better visibility into their virtual infrastructure and better manage risk and security."
Customers will be able to extend the DLP functionality in VMware vShield App with Data Security from data-at-rest in virtual zones to data-at-rest in physical datacenters, data-in-use at physical endpoints and data-in-motion over email and web through the RSA Data Loss Prevention Suite, which can be purchased separately. By using the same policy and classification engine customers can consistently protect data across the enterprise and streamline security operations for both physical and virtual environments.
"Enterprises cite data security and regulatory compliance as their main inhibitors to using computing services," says Phil Hochmuth, an analyst in IDC's Security Products research group. "Tools that can find and classify sensitive enterprise data, especially in virtual environments, will be critical for organizations transitioning their datacenter workloads onto new cloud services and architectures."
This technology partnership is an expansion of RSA's ecosystem of infrastructure vendors embedding DLP technology into their products, including Cisco and Microsoft. RSA's built-in approach to security helps enable organizations to leverage their existing infrastructure to protect against the risks associated with unprotected sensitive data, instead of the need to bolt-on additional security products.
VMware vShield App with Data Security is expected to be available as part of the VMware vShield 5 platform in Q3 2011. For more information, visit www.vmware.com.
RSA, The Security Division of EMC, is the premier provider of security, risk and compliance management solutions for business acceleration. RSA helps the world's leading organizations succeed by solving their most complex and sensitive security challenges. These challenges include managing organizational risk, safeguarding mobile access and collaboration, proving compliance, and securing virtual and cloud environments.
Combining business-critical controls in identity assurance, encryption & key management, SIEM, Data Loss Prevention and Fraud Protection with industry leading eGRC capabilities and robust consulting services, RSA brings visibility and trust to millions of user identities, the transactions that they perform and the data that is generated. For more information, please visit www.RSA.com and www.EMC.com.
RSA is either a registered trademark or trademark of EMC Corporation in the United States and/or countries. VMware and VMware vShield registered trademarks and/or trademarks of VMware, Inc. in the United States and/or other jurisdictions. The use of the word "partner" or "partnership" does not imply a legal partnership relationship between VMware and any other company. All other products or services are trademarks of their respective companies.
SOURCE EMC Corporation