I’m picking on NAC in the title of this entry because it will drive
Alan Shimel ape-shit and NAC has become the most over-hyped hooplah
next to Britney’s hair shaving/rehab incident…besides, the pundits come a-flockin’ when the NAC blood is in the water…
Speaking of chumming for big fish, love ’em or hate ’em, Gartner’s Hype Cycles do a good job of allowing
one to visualize where and when a specific technology appears, lives
as a function of time, adoption rate and utility.
We’ve recently seen a lot of activity in the security space that I
would personally describe as natural evolution along the continuum,
but is often instead described by others as market "consolidation" due to
I’m not sure they are the same thing, but really, I don’t care to argue
that point. It’s boring. It think that anyone arguing either side is
probably right. That means that Lindstrom would disagree with both.
What I do want to do is summarize a couple of points regarding some of
this "evolution" because I use my blog as a virtual jot pad against which
I can measure my own consistency of thought and opinion. That and the
chicks dig it.
Without my usual PhD Doctoral thesis brevity, here are just a few
network security technologies I reckon are already doomed to succeed as
features and not markets — those technologies that will, within the
next 24 months, be absorbed into other delivery mechanisms that
incorporate multiple technologies into a platform for virtualized
security service layers:
- Network Admission Control
- Network Access Control
- XML Security Gateways
- Web Application Firewalls
- NBAD for the purpose of DoS/DDoS
- Content Security Accelerators
- Network-based Vulnerability Assessment Toolsets
- Database Security Gateways
- Patch Management (Virtual or otherwise)
- Hypervisor-based virtual NIDS/NIPS tools
- Single Sign-on
- Intellectual Property Leakage/Extrusion Prevention
…there are lots more. Components like gateway AV, FW, VPN, SSL
accelerators, IDS/IPS, etc. are already settling to the bottom of UTM
suites as table stakes. Many other functions are moving to SaaS
models. These are just the ones that occurred to me without much
Now, I’m not suggesting that Uncle Art is right and there will be no
stand-alone security vendors in three years, but I do think some of this
stuff is being absorbed into the bedrock that will form the next 5
years of evolutionary activity.
Of course, some folks will argue that all of the above will just all be
absorbed into the "network" (which means routers and switches.) Switch
or multi-function device…doesn’t matter. The "smoosh" is what I’m
after, not what color it is when it happens.
What’d I miss?
(Written from SFO Airport sitting @ Peet’s Coffee. Drinking a two-shot extra large iced coffee)