December 16, 2003 -- Volume 1, Number 8 
2004 Product Outlook
Information Security Industry
By
Jon Oltsik
Senior Analyst
Enterprise Strategy Group
In calendar year 2003, information security finally got some respect, led by the U.S government. Budgets for related technologies are being driven by visible events and homeland security concerns. For example, government security budgets will increase 12% this year.
So what will the information security industry deliver in 2004? Here are a few product trends:
Fat Security Gateways
Why run 4 boxes to do individual jobs when you can squeeze all of this functionality on to one super system? This is the exact question the security industry is asking users today. Several vendors have solutions that include stateful inspection firewalls, IP-Sec VPNs, intrusion detection, and anti-virus scanning. Next year, you’ll see vendors add additional functionality to the mix like SSL-based VPNs and accelerators, application stream inspection firewalls, content filtering services, and anti-spam. It won’t be long until you have the equivalent of a Cray supercomputer at the edge of your network performing a multitude of security tasks.
While these systems offer a clear operational value proposition, remember to purchase multi-function systems from established vendors that have proven ability to introduce solid products and support customers while maintaining tight security designs.
Application Security
Applications and databases store the crown jewels. External bad guys can penetrate perimeter defenses using ‘legal’ methods only to directly attack these valuable assets. Even if you successfully block outside riff raff, unscrupulous insiders still may attack. Application security is designed to block this threat. Rather than try and take out the black hats at the network where traffic is buzzing by every second, reinforce the applications themselves with application firewalls or host-based intrusion detection systems. The volume on these products will definitely amplify in 2004 as security big wigs Cisco and Network Associates look to exploit their FY 2003 acquisitions (Okena and Entercept respectively). Other hopefuls include Enterasys, ISS, Sanctum, and Vormetric.
Application security does add cost and management overhead. Nevertheless this technology is a ‘must have’ for mission critical systems moving forward.
Improved Security Management
During 2004, you’ll hear a lot more about security event management and security operations management products.
Security event management is basically the security equivalent of venerable HP OpenView. Some security event happens on a firewall, IDS system, or host and it is immediately reported to a central console. Security operations management means that you can control multiple devices and technologies from a single point. Want to change a firewall rule across multiple global sites? Make one change and it will cascade throughout the network. This realm will be a combination of big established players like Computer Associates, IBM, and Symantec with startups like Arc Sight, e-Security, and Intellitactics.
Improved security management software sounds like a dream come true, but before you go gaga, look over your shoulder at network ops. Those guys are still struggling with software integration, incomplete solutions, and point products. Anticipate a similar path.
2004: A Good Year
In 2004 two other serendipitous things will happen. First, IT vendors at large (applications, operating systems, servers, storage, and networking) will be forced by their customers to pay more attention to security. The benefits here are obvious, better products and more help for overworked security staff. Second, based upon another year of security exposure, executive management will be smarter and more open to security strategy and tactics. This will help the CISO push through policy decisions, training courses, and budget requirements. These trends, coupled with a keen government focus on homeland security, will make 2004 a very happy new year indeed.
See Solutions On Display At FOSE2004
For more information on emerging trends in information security, please visit the Storage and Security Pavilion at FOSE show on March 23-25 at the Washington, DC Convention Center. Information regarding vendor sponsorships at FOSE can be obtained by contacting Stephanie Haney at shaney@theexpogroup.com or calling 972-751-9628.
Author Jon Oltsik is a Senior Analyst at the Enterprise Strategy Group. You can reach him at jono@enterprisestrategygroup.com.
|
