An emerging technology is helping to solve security issues within the financial industry: virtual desktop infrastructures.
With a virtual desktop infrastructure, an organization actually executes desktop applications on servers in the data center, relying on remote display protocols to give the user a localized look and feel. The security benefits of VDI in the data center are clear: IT controls software configurations, assuring that users execute software with the latest patches and upgrades applied; sensitive data remains in the data center where security teams can protect against theft and easily audit the infrastructure; and operations can more easily control a security incident. Operating in a highly regulated industry that requires a high level of security, a number of financial-services firms are initiating virtualized desktop projects for office workers and virtual workspace projects for remote users. A virtual workspace isolates business software from the host operating environment, enabling a higher degree of protected remote access from an otherwise untrusted host.
While the cost savings of increasing the density of virtualized applications on fewer servers in the data center are understood, VDI programs require additional servers to run desktop applications and additional virtual desktop software to manage the new infrastructure. Vendors promise operational savings derived from enhanced centralization, but to date the case history is emerging and isn't ready to substantiate a strong total cost of ownership (TCO) justification. However, IT teams exploring virtualization for endpoints can find plenty of justification for VDI projects by focusing on the security elements of malware-resistant software configurations and protection of regulated data.
Here are four major security benefits of virtual desktop infrastructures:
Most enterprises are turning to Citrix Systems Inc., Microsoft Corp., and VMware Inc. for their virtual desktop software. Interesting complementary vendors include AppSense Inc. for user profile management; IGEL Technology Inc. and Wyse Technology Inc. for turning desktop PCs into manageable thin clients; NComputing Inc. and Pano Logic Inc. for cost effectively virtualizing small offices, and Check Point Software Technologies Ltd., Quest Software Inc. and RingCube Technologies Inc. for virtual workspaces.
Virtual desktop infrastructure deployments are strategic and often complicated efforts involving end users, networks, data centers and applications. Early stages of VDI projects should focus on demonstrating performance for end users and operational savings with a new architecture for executing desktops in the data center. While the startup hurdles may be higher than expected, the payoff in enhanced security and data protection is worth it.
About the author:
Eric Ogren is founder and principal analyst of the Ogren Group, which provides industry analyst services for vendors focusing on virtualization and security. Prior to founding the Ogren Group, Eric served as a security industry analyst for the Yankee Group and ESG. Ogren has also served as vice president of marketing at security startups Okena, Sequation and Tizor. He can be reached by sending an email to [email protected].
03 Nov 2009