The role of load balancing is growing in the genAI era. Credit: Shutterstock Buried inside the news from the VMware Explore event were a series of security related updates. The big headline was the expansion of security for AI, but there is more to the story. A core element of VMware’s security update is its Avi load balancer platform, which it acquired back in 2020. The classic task for a load balancer is exactly as the name implies, to balance traffic. Over the years, network traffic and deployment demands have changed, however. Load balancers must now handle diverse traffic patterns while providing unified security policies across hybrid cloud environments. The VMware Avi platform has emerged as a key player in this space since the 2020 acquisition. Broadcom recently outlined significant enhancements coming to VMware Avi release 31.1.1. The update introduces plug-and-play integration with VCF 9.0 private cloud, AI-powered operational capabilities, and post-quantum cryptography support. These developments reflect the platform’s evolution from a traditional load balancer into a comprehensive application services platform. “Enterprise customers depend on Avi as a critical infrastructure component to make applications available, scalable and secure,” said Umesh Mahajan, vice president and general manager of VMware’s application networking and security division, told Network World. Platform evolution since VMware acquisition Since VMware acquired Avi Networks, the platform has expanded significantly beyond its original load balancing roots. The technology now delivers a unified approach to application services that spans multiple infrastructure layers, enabling customers to consolidate previously disparate networking functions onto a single platform. Current deployment patterns show this expanded scope in action. “Over the last couple of years, we have seen customers expand from local server load balancing to global server load balancing as well as web application security,” Mahajan said. “We see a significant increase in demands for the container ingress use case at the rise of Kubernetes and AI workloads.” Web application security has also seen growth as the Avi platform provides Web Application Firewall (WAF) capabilities that are required to be compliant with PCI-DSS (payment card industry data security standard) and other regulations. AI-powered operations leverage real-time data VMware’s AI strategy for Avi extends beyond traditional monitoring approaches. The company is also developing a GenAI assistant that capitalizes on the platform’s infrastructure position. The GenAI assistant will analyze live traffic patterns, application performance metrics, and infrastructure health data. This real-time analysis enables proactive issue identification and automated remediation recommendations. “Avi has the best access to comprehensive, contextual and real-time data regarding the VCF infrastructure and apps/workloads on VCF (VMware Cloud Foundation), ” Mahajan said. Support for emerging AI workload patterns Avi is also introducing specific capabilities for Agentic AI architectures. The platform will support Model Context Protocol (MCP) session persistence to enable load balancing of MCP services for agentic AI. This functionality addresses the stateful nature of AI agent interactions. Security controls in Avi will also target AI-specific requirements. The platform provides JSON Web Token (JWT) authorization support based on job roles so that app owners and operators can have differentiated access to MCP tools. This role-based approach enables granular access control for AI services. MCP Server functionality extends the platform’s programmability. AI agents will be able to invoke Avi load balancing and web app security services programmatically. This capability supports automated infrastructure management within AI workflows. Security enhancements target current and quantum threats Security improvements in Avi address both immediate operational needs and future cryptographic challenges. Among the improvements is support for Mutual TLS (mTLS) authentication. That capability establishes certificate-based trust for both client and server connections. This bidirectional authentication strengthens communication security beyond traditional server-only certificate validation. The platform is also getting support for Post-Quantum Cryptography (PQC). The implementation supports quantum-resistant cryptography, based on NIST specified entropy functions to generate cryptographic keys. This capability addresses the ‘harvest now, decrypt later’ security concern” where adversaries collect encrypted data for future decryption once quantum computers become viable. Additionally, Web Application Firewall capabilities receive operational improvements through automated assessment functionality. According to VMware, the WAF assessment and report feature quickly assesses security posture of web traffic and helps users to deploy WAF progressively based on assessed risk posture. Overall, VMware’s 2025 roadmap positions Avi for the expanding AI workload market while maintaining its core infrastructure role. “We’ll continue to be the best load balancer for VCF, simplify operations and operationalize customer deployments,” said Mahajan. Read more news from VMware Explore 2025: Broadcom’s VMware strategy pays off financially, but customers not as keen as Wall Street: To many attendees at this year’s VMware Explore conference, turnout felt smaller, there were fewer sessions than last year, and there were markedly fewer vendors on the exhibit floor. But while the mood among VMware Explore attendees was dour, Broadcom is seeing record gains. Broadcom touts AI-native VMware, but gains aren’t revolutionary: Broadcom’s VMware has taken on the AI mantle, declaring that the VMware Cloud Foundation platform is now “AI native.” In the big picture, however, Broadcom didn’t set the world ablaze with its announcements. They were all the obvious next steps for the company and do not move the needle forward on AI technology. How one midsize enterprise is making VCF work: Broadcom’s shift to all-in-one, perpetual licenses for VMware Cloud Foundation has infuriated customers and priced out some companies, but 750-employee Grinnell Mutual has managed to save money on the new platform. Broadcom tackles agentic AI security challenges: Broadcom announced new security enhancements for its VMware vDefend and VMware Avi products, which are part of the VMware Cloud Foundation Cyber Compliance Advanced Services. Upgrades include more security for agentic workflows, including model context protocol (MCP) servers, and support for post-quantum encryption, among other improvements. Broadcom and Canonical expand partnership, promising accelerated innovation: The combination of VMware Cloud Foundation and Ubuntu Pro offers enterprise-grade container-based and AI applications. Broadcom launches VMware Tanzu Data Intelligence and Tanzu Platform 10.3 to drive agentic AI: Broadcom is pushing its new data lakehouse platform as the answer to all an enterprise’s data challenges — or almost. Network Management SoftwareNetwork SecurityNetworking SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below.