BasicVirtual Security

White Paper: DLP - Data Loss/Leak Prevention

BasisVirtual Security for December 2022 protects confidential information from unauthorized access. Ensures the implementation of information protection measures from the set of measures provided for by Orders 17, 21, 239 of the FSTEC of Russia.

2025: Java Axiom JDK Certified Compatibility

Axiom JDK (Axiom JSC) and Basis announced a strategic cooperation agreement on June 2, 2025. The parties confirmed the technological compatibility of the Java Axiom JDK Certified secure execution environment and the Basis Virtual Security (BVS) security tool, which ensures data security in virtual infrastructures. Read more here.

2024: Release 3.2 FSTEC Certified UD4

On November 12, 2024, Basis introduced an updated version of its Basis Virtual Security product designed to protect data in virtualization environments. Release 3.2 received 118 features, various improvements and fixes. Almost simultaneously, Basis Virtual Security was tested for compliance with the FSTEC requirements for information security in the fourth level of trust (UD4).

𝓲

Фото: Basis

This release of Basis Virtual Security 3.2 introduces the ability to back up virtual machines (VMs), including incremental ones. Backups can be made for both running and stopped virtual machines, and NFS storage can be used to store them. The Basis Virtual Security GUI has also been significantly improved to make the VM backup and recovery process comfortable for the administrator.

Significant changes in the latest release also affected monitoring the integrity of virtual machines and working with checksums - the updated tools help the administrator to promptly notice unauthorized changes in controlled virtual environments and take action. In particular, integrity policies were updated: their applicability levels were implemented separately for computing nodes and virtual machines on Linux and Windows, actions were added on running VMs in case of integrity violation, it became possible to prohibit starting virtual machines in case of violation of the computer node checksum standard. In addition, logging of the checksum counting task appeared, and domestic algorithms of the national standard GOST R 34.11-2012 can be used to calculate them.

Basis Virtual Security version 3.2 has been tested by FSTEC, which after each update must pass all solutions certified as a means of protecting information. Together with the Basis Dynamix virtualization platform, this release confirmed 4 levels of trust certification for compliance with the FSTEC requirements for virtualization tools. Earlier, Basis halved - from 6 to 3 months - the period for passing the FSTEC tests due to the introduction of secure development tools in the company and the active work of the vendor's specialists in the Center for Safety Studies of System Software, created on the basis of the ISP RAS.

The updated Basis Virtual Security release is important for us not only as an opportunity to demonstrate the functionality of the product that partners expected from us, but also as another confirmation of the correctness of the secure development and design process we have built. We have already achieved a significant reduction in the time for testing for compliance with FSTEC standards and continue to optimize this process further. The results of this work allow customers of certified Basis solutions to quickly receive updates, and with them not only new product capabilities, but also a large number of various improvements and fixes, - said Dmitry Sorokin, technical director of Basis.

As a security tool, Basis Virtual Security allows you to control access to information systems (IS), implements single sign-on (SSO) technology in the IS, monitors the integrity of virtualization tools, provides multifactorial authentication, logs security events, etc. In general, the tools offered by Basis Virtual Security implement the vast majority of technical measures to protect the virtual environment.

2023

Confirmation of compliance with FSTEC requirements by level 4 of trust

On December 7, 2023, Basis announced the expansion of the FSTEC certificate of Russia to Basiz.Virtual Security, including the functions of Basiz.Dynamix and Basiz.vCore.

The results of certification tests confirmed that the company's software product complies with the governing documents and regulatory requirements for software, complies with the "Information Security Requirements Establishing Levels of Trust in Information Security Tools and Information Technology Security Tools" (FSTEC, Russia) - 4 levels of trust, "Information Security Requirements for Virtualization Tools ." The FSTEC certificate allows users to obtain a certified product in two versions at once. The use of the product is also now possible in GIS up to class 1 of protection (Order of FSTEC No. 17), ISDS up to level 1 of protection (Order of FSTEC No. 21), public information systems of class II (Order of FSTEC No. 489), significant objects of CII up to category 1 of significance (Order of FSTEC No. 239).

Confirmation of the product compliance with the new FSTEC requirements in level 4 of trust will allow Basis to significantly expand the range of customers from the public sector. As of December 2023, the number of cyber threats is growing, as are security requirements, especially for state-owned enterprises and institutions. For us, as well as our customers, this is not just a formality, but documentary expert confirmation of the fact that the products used are high-quality and reliable, - explained Dmitry Sorokin, technical director of Basis.

The product can be delivered in two versions. The first modular one consists of Basiz.DynamiX, Basiz.Virtual Security, Basiz.vCore. The second is Basid.DynamiX, Basid.Virtual Security and a certified domestic OS like Astra Linux or Alt.

BasicVirtual Security is a software tool that provides secure creation and operation of isolated software environments consisting of virtual equipment, guest operating systems and application software (VM).

As part of PAC to protect service information

Russian manufacturers and developers presented a joint secure software and hardware complex of the information security administrator (PAC IB). It is designed to protect service information and personal data in customer information systems. Fplus announced this on November 10, 2023. The information security PAC also includes Basiz.Virtual Security. Read more here.

As part of the "Server PAC" of domestic developers

The companies Basis Fplus",,,,", " MyOfficeKaspersky Lab and DION Getmobit BASEALT September 21, 2023 presented software and hardware complexes for a stationary workplace and ensuring the operation of the server center. Server PAC includes virtualizations BasicVirtual Security protection. More. here

2022: zVirt 3.0 compatibility

On December 19, 2022, the company Basis"" announced that it had tested and confirmed the compatibility of Basid.Virtual Security virtualization systems zVirt and from Russian the developer of virtualization products. "" Orion soft Compatibility of technological solutions, according to representatives of developers, will give domestic companies the opportunity to protect their virtual infrastructure at a different level. This is achieved by installing the BasicVirtual Security virtual environment protection module on top of the zVirt virtualization environment.

Compatibility with zVirt 3.0

According to the company, during the tests, the specialists deployed an infrastructure that integrates the solutions of the zVirt 3.0 and Basis virtualization systems. Virtual Security, checked the performance of the solutions and made sure that they were fully compatible - the capabilities announced by the developers are available to users.

Virtualization management administrators were identified and authenticated, subject access control to virtual infrastructure components management tools was established, and the state of virtual machines was monitored. Virtual machines were started based on operator-defined rules, with security groups that prohibit or allow virtual machines to run on compute nodes. Network traffic filtering between virtual infrastructure components was tested, including between networks external to the virtualization server and networks internal to the virtualization server, including when organizing network exchange with public communication networks. As part of the compatibility test, scenarios were played to disable unused network protocols by components of the hypervisor virtual infrastructure, virtual computing network, and control the registration of security events in the virtual infrastructure.

In the current realities, attacks on the information infrastructure of domestic companies in all sectors of the economy have multiplied, this also applies to virtual infrastructure based on KVM-like hypervisors. By using BasicVirtual Security, you can reduce the risk of disrupting the virtualization environment by ensuring reliability and stability, protecting information and data integrity, and correctly distributing the load on computing resources. In addition, using Basis products, a potential consumer removes the risks of CII certification. commented Dmitry Dvortsov, Partner Relations Director of Basis

According to the results of the set of tests, the compatibility of Basiz.Virtual Security 2.2 and the zVirt 3.0 virtualization system was confirmed. Thus, organizations switching to import-independent technologies can be confident in the health and reliability of the software stack, on the basis of which you can create, use and administer secure virtual infrastructures. explained by Mikhail Orlovsky, Product Director of Orion Software