Home > News > Press > FirstVMsafeCertification


Reflex Systems Announces VMware VMsafe Certification for Reflex VMC

Reflex first to complete certification for third-party solutions

Atlanta, Georgia, 8/26/2009 - Reflex Systems, the pioneer in virtualization management, compliance and security, today announced that Reflex Virtualization Management Center (VMC) is the first third-party solution to be certified by VMware for VMsafetm, VMware's hypervisor-embedded security solution for ISV partners.

Since VMsafe applications are embedded in the hypervisor, VMware's certification program ensures that third-party software does not adversely affect the functionality of the vSphere v4 platform. The certification also verifies that a VMsafe solution does not impact the performance of the hypervisor. Solutions that pass the certification are tested for their interaction and compatibility with all of vSphere v4’s major features and functionality.

"With Reflex VMC's VMsafe certification VMware has declared that our industry-leading virtualization management and security solution is fully compatible and integrated at the kernel-level with their hypervisor," said Hezi Moore, CTO of Reflex Systems. "Customers can now be assured that VMC is completely compatible with vSphere v4."

"As virtual environments and technologies continue to take an increasingly large role in data centers, certification with this level of integration between technologies becomes critical for improving performance and ensuring continuity of operations," said Andrew Braunberg, Research Director, Enterprise Networks and Security for Current Analysis. "By achieving this level of certification with the industry's leading server virtualization platform, companies like Reflex can extend their capabilities and provide customers real value-added services to manage and secure their virtual infrastructure."

Reflex VMC with vTrust utilizes VMware's VMsafe API to deliver a more granular level of visibility and control into communication within the VMware virtual environment. vTrust allows more sophisticated segmentation (virtual trust zones), policy enforcement as well as monitoring, filtering and control of VM-to-VM traffic. Additional features include asset classification, virtual trust zones, dynamic network control, and adaptive roaming policies that move with assets regardless of physical location, or network connection. Reflex's relationship with VMware enables the company to leverage VMware VMsafe technology to enforce network policies through a module embedded in the hypervisor in VMware vSphere 4.

vTrust features in Reflex VMC include the following:

  • Dynamic Policy Enforcement and Management – VMsafe-certified, hypervisor embedded, enforcement of critical business, IT infrastructure and security policies. Rules governing zone to zone, VM to VM, and VM to the physical environment are generated dynamically on the fly based on high level policy definition. Policies adapt to the environment and move with the virtual assets (virtual machines, virtual network, group of VMs, hosts, clusters, vLAN, etc.) regardless of location, type of network connection, or type of virtual switch.
  • Policy Extends into the Cloud – vTrust can facilitate and automate the use of cloud and IaaS services by providing a cloud API that enables enterprises and hosting/cloud solution providers to secure individual virtualization resources in the cloud.
  • Virtual Segmentation – create trust zones by partitioning shared resources with specific business and security policies for each zone. vTrust supports overlapping zones (VM’s that belong to more than one zone), shared resources, and zones within zones.
  • Virtual Datacenter Automation – Automate data center operations by defining rules and setting policy across the virtual infrastructure.
  • Virtual Software Asset Management – track and monitor installed software applications, without using an agent or network scan, to provide vital information about the software installed on VMs such as version, install date, patch level, etc.
  • Virtual Quarantine - enforce data center policy when VMs are provisioned (VMs must meet certain criteria to be allowed on the network) providing isolation of assets that do not meet policy. Easily detect rogue or unauthorized guests or virtual machines which do not meet regulatory or compliance requirements.
  • Virtual Networking Policies - create and enforce a DMZ, block specific kinds of network traffic between virtual machines (P2P, IM, FTP, etc.), ensure only specific protocols are used on specific ports or networks, etc.
  • (VQL)Virtualization Query Language – natural and structured query language used to define policy and zones, allowing virtual infrastructure to dynamically adapt to changing needs without requiring a change to the policies. VQL enables virtualization administrators to quickly query the virtual infrastructure “on the fly” for any type of information in the past or present. VQL also serves as a third-party integration point.
  • Classification & vmTagging (Virtual Meta Tagging) – VMC primarily recognizes classification of objects by inherent properties of the individual virtual assets. Virtual assets may also be classified or tagged by administrator-defined properties such as line-of-business, type of application, organization, geographic location, operating system, patch level, or any other taxonomy as required by business processes. Virtual classification and tagging is also genetic, enabling clones of virtual assets to automatically inherit policy from parents

About Reflex
Reflex Systems provides enterprise software solutions that vastly improve the ability for organizations to manage, scale, and automate virtualized data centers and private clouds. By integrating monitoring, performance, capacity, configuration management and security in a single solution, companies can streamline automation, reduce cost, increase performance, and provide flexibility and scalability for IT resources. Purpose-built for virtualization, Reflex VMC (Virtualization Management Center), in conjunction with vWatch, vTrust, vProfile and vCapacity, provides infrastructure discovery and visualization, timeline-based management, application/services inventory, network security, performance, capacity, configuration management and dynamic policy enforcement. Reflex Systems is based in Atlanta, Georgia and is privately held. For more information, including a trial download of Reflex VMC, visit www.reflexsystems.com. Follow Reflex at http://twitter.com/ReflexSystems and The vCurve Blog: blog.reflexsystems.com.

Reflex Systems is a registered trademark of Reflex Systems, Inc. All other marks are property of their respective owners.

Media Contact
Janice Bedsole
ZAG Communications for Reflex Systems