Comparative Performance Review



Similar documents
Endpoint Security Solutions (Physical & VDI Environment) Comparative Testing Analysis

Optimize VDI with Server-Side Storage Acceleration

McAfee Optimized Virtual Environments - Antivirus for VDI. Installation Guide

VDI Security for Better Protection and Performance

Virtual Desktops Security Test Report

The impact of virtualization security on your VDI environment

Technology Blueprint. Secure Your Virtual Desktop Infrastructure. Optimize your virtual desktop infrastructure for performance and protection

VDI Without Compromise with SimpliVity OmniStack and Citrix XenDesktop

Endpoint Security Solutions Comparative Analysis Report

Hard Disk Drive vs. Kingston SSDNow V+ 200 Series 240GB: Comparative Test

The VMware Reference Architecture for Stateless Virtual Desktops with VMware View 4.5

VMware View Design Guidelines. Russel Wilkinson, Enterprise Desktop Solutions Specialist, VMware

Fully supported Antivirus software (Managed Antivirus)

Dell Compellent Storage Center SAN & VMware View 1,000 Desktop Reference Architecture. Dell Compellent Product Specialist Team

Consulting Solutions WHITE PAPER Citrix XenDesktop Citrix Personal vdisk Technology Planning Guide

NEXSAN NST STORAGE FOR THE VIRTUAL DESKTOP

Project Virtual Reality Check

Endpoint Protection Performance Benchmarks

Why Choose VMware vsphere for Desktop Virtualization? WHITE PAPER

Dell Desktop Virtualization Solutions Stack with Teradici APEX 2800 server offload card

Two Great Ways to Protect Your Virtual Machines From Malware

Endpoint protection for physical and virtual desktops

Security Industry Market Share Analysis

Symantec Encryption Satellite for Windows Version 3.3 Release

Security Industry Market Share Analysis

Client Manager for Endpoint Protection (CMEP) User s Guide

Core Protection Module 1.6 for Mac powered by. User s Guide

System Requirements and Server Configuration

Worry-FreeTM. Business Security Standard and Advanced Editions. System Requirements. Administrator s Guide. Securing Your Journey to the Cloud8

Analysis of VDI Storage Performance During Bootstorm

BridgeWays Management Pack for VMware ESX

McAfee Optimized Virtual Environments for Servers. Installation Guide

Performance Test Report: Novell iprint Appliance 1.1

Internet Explorer Exploit Protection ENTERPRISE BRIEFING REPORT

Deploying XenApp 7.5 on Microsoft Azure cloud

Devising a Server Protection Strategy with Trend Micro

McAfee MOVE AntiVirus (Agentless) 3.6.0

GRIDCENTRIC VMS TECHNOLOGY VDI PERFORMANCE STUDY

Symantec Endpoint Protection

Devising a Server Protection Strategy with Trend Micro

HOW MANY USERS CAN I GET ON A SERVER? This is a typical conversation we have with customers considering NVIDIA GRID vgpu:


Symantec Endpoint Protection 11.0 Architecture, Sizing, and Performance Recommendations

McAfee MOVE AntiVirus 2.6.0

McAfee MOVE / VMware Collaboration Best Practices

VDI Without Compromise with SimpliVity OmniStack and VMware Horizon View


Trend Micro Endpoint Comparative Report Performed by AV Test.org

DELL. Virtual Desktop Infrastructure Study END-TO-END COMPUTING. Dell Enterprise Solutions Engineering

Flash Storage Optimizing Virtual Desktop Deployments

Server and Storage Sizing Guide for Windows 7 TECHNICAL NOTES

Endpoint protection for physical and virtual desktops

An overwhelming majority of IaaS clouds leverage virtualization for their foundation.

Nimble Storage for VMware View VDI

Increasing performance and lowering the cost of storage for VDI With Virsto, Citrix, and Microsoft

An Oracle White Paper March Oracle s Single Server Solution for VDI

Boost your VDI Confidence with Monitoring and Load Testing

Tegile Zebi Application Selling. Virtual Desktop Initiatives

1. Server Microsoft FEP Instalation

Cisco, Citrix, Microsoft, and NetApp Deliver Simplified High-Performance Infrastructure for Virtual Desktops

Using McAfee VirusScan. Professional Edition Version 8.0. Software On a DX8000 DVR

Trend Micro OfficeScan Best Practice Guide for Malware

Flash Storage Roles & Opportunities. L.A. Hoffman/Ed Delgado CIO & Senior Storage Engineer Goodwin Procter L.L.P.

Intel Cloud Builders Guide to Cloud Design and Deployment on Intel Platforms

Client Manager for Endpoint Protection (CMEP)

How To Protect Your Cloud From Attack

Virtual Desktop Infrastructure Optimization with SysTrack Monitoring Tools and Login VSI Testing Tools

Why AppSense for VDI. How User Virtualization performs and adds value. Page 1 of AppSense Ltd. All Rights Reserved.

Pricing Guide. Service Overview

Symantec Endpoint Protection

A Dell White Paper Dell Compellent

Created By: 2009 Windows Server Security Best Practices Committee. Revised By: 2014 Windows Server Security Best Practices Committee

2012 Endpoint Security Best Practices Survey

SIZING EMC VNX SERIES FOR VDI WORKLOAD

VDI Optimization Real World Learnings. Russ Fellows, Evaluator Group

SanDisk SSD Boot Storm Testing for Virtual Desktop Infrastructure (VDI)

VDI FIT and VDI UX: Composite Metrics Track Good, Fair, Poor Desktop Performance

DIABLO TECHNOLOGIES MEMORY CHANNEL STORAGE AND VMWARE VIRTUAL SAN : VDI ACCELERATION

ISE 820 All Flash Array. Performance Review. Performance Review. March 2015

Enterprise Anti-Virus Protection

McAfee Server Security

How To Set Up A Shared Insight Cache Server On A Pc Or Macbook With A Virtual Environment On A Virtual Computer (For A Virtual) (For Pc Or Ipa) ( For Macbook) (Or Macbook). (For Macbook

ESAP Release Notes. SDK Version: Windows (V2 Unified + V3), Mac

Citrix XenDesktop Validation on Nimble Storage s Flash-Optimized Platform

AlwaysOn Desktop Implementation with Pivot3 HOW-TO GUIDE

WHITE PAPER 1

Prinect. Is Your Prinect Workflow Safe from a Cyber Attack?

Transcription:

Comparative Performance Review Endpoint Security Performance in Desktop Virtualization Environments A Trend Micro White Paper

Executive Summary In June 2010, Indusface Consulting Ltd performed a test that primarily focused on analyzing various latest generation Anti-Virus products available in the market to measure the performance of each in virtual desktop environments. The full report contains empirically validated data gathered during 8 weeks of testing. The goal of these tests was to establish the availability, and where possible effectiveness and performance, of leading endpoint security products, specifically in a Virtual Desktop Infrastructure. Several critical virtualization metrics were analyzed in multiple deployment scenarios. These metrics include memory and CPU utilization and storage IOPs. The tests clearly showed that endpoint security solutions not optimized use in virtualized environments introduce so significant load to the VDI-Host, they effectively render the system unresponsive and thus unusable in a production environment. Only Trend Micro OfficeScan 10.5 showed only small increases in load, making it the only viable solution for deployment on a Virtual Desktop Infrastructure. 1 White Paper Endpoint Security Performance in Virtual Desktop Environments

Disk Utilization Observations Figure 1: Comparative Assessment for Disk Utilization for Trend Micro OfficeScan 10.5, Symantec Endpoint Protection 11.00 and McAfee VirusScan 8.7. The results in the vdisk utilization graph show that Trend Micro OfficeScan 10.5 performs remarkably better than others AV vendors from an IOPS perspective. The difference between baseline (without any Anti-Virus deployed) and Trend Micro OfficeScan 10.5 (with full scanning ON) is marginal. IOPS generated by Trend Micro OfficeScan10.5 has the lowest deviation of only 0.77 MB/s and 3.66 MB/s from baseline in Normal Mixed 20 User Profile (No AV scanning) and Mixed 20 User Profile (Full scanning mode) respectively compared to other security solutions. 2 White Paper Endpoint Security Performance in Virtual Desktop Environments

CPU Utilization Observations Figure 2: Comparative Assessment for CPU Utilization for Trend Micro OfficeScan 10.5,Symantec Endpoint Protection 11.00 and McAfee VirusScan 8.7 From the above vcpu utilization graph, the baseline test system (without any AV Solution deployed) in Mixed User Profile consumes around 33.23 % of vcpu. Trend Micro OfficeScan 10.5 adds an overhead of (41.33-33.23) 8.1 %. For the other security solutions, extremely long answer-times rendered the images unusable from an end user experience perspective. With 10 desktop images, Trend Micro OfficeScan 10.5 adds 11% CPU overhead compared to baseline versus Symantec which adds 29% CPU overhead and McAfee adds 83% CPU overhead. Even though Symantec and McAfee solutions utilize much higher average CPU in 4 users and 10 user scenario, Symantec Endpoint Protection 11.00 and McAfee VirusScan 8.7 remained fairly responsive at 10 VDI s and below. CPU does not really become the choke point for all of the four solutions until the number of VDI grows from 10 users to higher. 3 White Paper Endpoint Security Performance in Virtual Desktop Environments

Memory Utilization Observations Figure 3: Comparative Assessment for Memory Utilization for Trend Micro OfficeScan 10.5, Symantec Endpoint Protection 11.00 and McAfee VirusScan 8.7. From the vmemory utilization graph shown above, the baseline system (without any AV Solution deployed) in Mixed User Profile (Scanning Mode) consumes around 7.74 GB of Active Memory while Trend Micro OfficeScan 10.5 only adds an overhead of 1.32 GB in maximum VDI density environment. As per the data collected, McAfee solution has most memory consumption in all tests. Even though OfficeScan 10.5 shows the best memory performance, also Symantec Endpoint Protection 11.0 does fairly well from memory perspective. The vmemory differences in VDI Pool environment for various security solutions are not significant due to the vkernel transparent page memory scheduler which consolidates repetitive user tasks, thus memory utilization slowly begins to decrease and memory sharing begins to increase. 4 White Paper Endpoint Security Performance in Virtual Desktop Environments

Scan Time Observation Figure 4: Comparative Assessment for Scan time for Trend Micro OfficeScan 10.5, Symantec Endpoint Protection 11.00 and McAfee VirusScan 8.7 The scan time graph above shows Trend Micro OfficeScan 10.5 scanning approximately 15-25 times better in Mixed low density VDI pool and 4-8 times better in Mixed maximum high density VDI pool. 5 White Paper Endpoint Security Performance in Virtual Desktop Environments

Number of VDI Images Supported Figure 5: Comparative Assessment on Count of VDI supported with good end user response for Trend Micro OfficeScan 10.5, Symantec Endpoint Protection 11.00 and McAfee VirusScan 8.7 by keeping IOPs approximately between 6-8 MB/s. The VDI sample test environment is sized for 20 VDI s with mixed user profile (4 Heavy and 16 Light Users). IOPS is a very important metric in an Anti-Virus deployment in a VDI environment. One way to do a fair comparison between various solutions is to keep the load creation script as is and keep IOPS fairly constant so that the user response is good (the ideal we observed for the test infrastructure was between 6-8 IOPS). At these IOPS, we tested how many VDI s can be supported by the solution. The baseline IOPS with 20 VDI s is 2.76 (without any AV solution see figure 2). With Trend Micro OfficeScan 10.5 with all 20 VDI s scanning the IOPS increases to 6.42, but remains in acceptable range. The script remains the same which is a mix of 80% Light users and 20% Heavy users. With Symantec Endpoint Protection 11.0 and McAfee Virus Scan 8.7, regardless of IOPS we could not deploy 20 VDI s. When we reduced to 10 VDI s for those 3 solutions the IOPS still remained very high with McAfee IOPS in critical state. We continued reducing the IOPS and adjusting mix of light users versus heavy uses until the IOPS came within the acceptable range of 6-8 IOPS. With Symantec Endpoint Protection 11.0 only 4 users (3 Light and 1 Heavy) can be supported. With McAfee VirusScan 8.7 only 2 systems of light users produce an IOPS over 8. Storage is an area where customers need to make a conscious decision as to whether they optimize for the average IOPS, especially when there is such a disparity between the two measurements of AV and Non-AV environments. Optimizing for the IOPS and performance will not suffer if suitable security solution has been selected. On the other hand, it s significantly cheaper to optimize for the average readings, but administrators could be faced with increased support calls due to poor performance in the event of a log-in or boot storm. 2010 Trend Micro, Incorporated. All rights reserved. Trend Micro, OfficeScan, and the t-ball logo are trademarks or registered trademarks of Trend Micro, Incorporated. All other product or company names may be trademarks or registered trademarks of their owners. Information 6 White Paper Endpoint Security Performance in Virtual Desktop Environments

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information