 |
|
Contents
TippingPoint Officially Enters the NAC Market| Analyst: Andrew Braunberg | Enterprise Security | Client Access | Announcement Summary
February 6, 2007 -- TippingPoint has announced the availability of its fine-grained network access control (NAC) solution. TippingPoint NAC enables enterprises to enforce device and user policies to ensure both endpoint compliance and granular post access compliance. This solution goes beyond traditional pre-check and post-check NAC solutions by linking device and user policies to fine-grained, continuous traffic control made possible only by an intrusion prevention system (IPS). Analytical Summary • Current Perspective: Positive on TippingPoint’s entrance into the network access control (NAC) market, because the company’s IPS technology can be fairly easily and logically repurposed for NAC enforcement applications. TippingPoint, therefore, has the opportunity to become an immediate force in the market. • Vendor Importance: High to TippingPoint, because NAC has the potential to drive much more business than the standalone network IPS market, which is maturing. NAC provides TippingPoint with an avenue to become much more embedded and strategic to corporate networks. • Market Impact: Moderate on the NAC market, because TippingPoint has been telegraphing its intentions to enter this market for at least a year now. In that respect, the market has been anticipating and preparing for this move for some time. Microsoft Emphasizes Identity| Analyst: Andrew Braunberg | Enterprise Security | Client Access | Announcement Summary
February 6, 2007 – Top executives from Microsoft Corp. have outlined a vision for secure and easy “anywhere access” and committed to working with the industry to evolve networks, protection and identity to achieve that vision for customers. Analytical Summary • Current Perspective: Slightly positive on Microsoft’s numerous security related announcements at RSA, because although there is some meat in these announcements, Microsoft spent a lot of time highlighting obvious market trends as opposed to detailing specific market progress. • Vendor Importance: High to Microsoft, because security is a critical issue for the company and the RSA Conference has become an important platform by which it gets its security message out to the market. The important of the event is highlighted by Bill Gates’ appearance the last few years to deliver the open day keynote address. • Market Impact: Moderate on the enterprise security market, because Microsoft demands attention in every segment it plays in. Most of Microsoft’s important announcements at RSA related to its identity management business and these markets are therefore most impacted. SAVVIS’ New Managed Security Service Leverages Cisco ASA| Analyst: Counse Broders | Internet/Managed Services | Client Access | Announcement Summary
February 6, 2007 -- SAVVIS launched a new managed security service for its business customers based on the Cisco Adaptive Security Appliance (ASA), which SAVVIS will configure, support, manage, and monitor. SAVVIS leverages the Cisco ASA to offer both managed firewall and network intrusion detection systems (NIDS) to customers in a unified delivery platform. SAVVIS’ managed Cisco ASA service also provides business customers with IPSec VPN capabilities, which allow customers to connect remote sites to the Cisco ASA, utilizing 3DES or AES encryption standards. SAVVIS will also gain certification as a Cisco Powered Network for managed security services. Analytical Summary • Current Perspective: Slightly positive on SAVVIS’ new managed security offering, as it delivers a unified option for clients that want to use a Cisco Adaptive Security Appliance to get a managed firewall, network intrusion support, and VPN for remote users in one solution. SAVVIS’ new service also brings it certification as a Cisco Powered Network for managed security services. • Vendor Importance: Moderate to SAVVIS, because the company already delivers a pathway for clients looking for a next-generation solution for their managed security and remote VPN access needs. Working with Cisco gives SAVVIS a well-known vendor that provides a comfort factor for clients wanting assurance that the underlying technology is a proven product from a company with credibility in the network security field. • Market Impact: Moderate on the managed security market, as this is more an incremental move that delivers a minor boost to SAVVIS’ overall managed security efforts. Competitors will need to monitor SAVVIS’ progress with the product, but they do not need to take immediate action. Lancope’s New Version of StealthWatch Adds More Network Ops Support| Analyst: Charlotte Dunlap | Enterprise Security | Client Access | Announcement Summary
February 6, 2007 -- Lancope, provider of StealthWatch, Network Behavior Analysis (NBA) and response solution, announced StealthWatch System 5.6, a system-wide upgrade which includes powerful new features that significantly extend the scalability and value of behavior-based anomaly detection and network performance monitoring for enterprise organizations. Analytical Summary • Current Perspective: Slightly positive on Lancope’s release of StealthWatch System 5.6, because the company is continuing to develop the product’s network performance monitoring capabilities in order to appeal to enterprise network operations groups. • Vendor Importance: Moderate to Lancope because the new release builds on what the company began with StealthWatch 5.5, after a growing awareness that the network behavior detection tool provides valuable information on the enterprise network posture, such as associating user or host identity with network activity. • Market Impact: Moderate on the network behavior anomaly market segment because Lancope is a leading NBA provider with a solid offering; however, additional compelling solutions are going to vie for enterprise customers’ attention because they integrate NBA functionality with SIM correlation technologies. CA Releases First Host IPS Product| Analyst: Charlotte Dunlap | Enterprise Security | Client Access | Announcement Summary
February 6, 2007 – CA announced CA Host-Based Intrusion Prevention System, CA HIPS, a new solution that combines advanced firewall, intrusion detection, and intrusion prevention capabilities to defend enterprise computing assets against today's blended threats. Analytical Summary • Current Perspective: Neutral on CA’s announcement of a brand new desktop firewall and host-based intrusion prevention product, called CA HIPS, because CA will have to explain to customers the product’s advantage over already established host IPS products, competing network IPSes, and broader integrated client security solutions. The CA HIPS product would be much more attractive as part of a NAC solution eventually, and as part of an integrated client security solution today. • Vendor Importance: High to CA as this will help it stay competitive with core threat protection providers by providing endpoint intrusion prevention. We would like to see the product bundled into an integrated client solution to bring customers more of CA’s core antivirus technology. • Market Impact: Moderate on the IPS market segment because CA does not offer a network IPS solution, but instead is opting to provide enterprise customers with management policy controls and access control policies through this firewall and host intrusion prevention system. Verizon Business Extends Network-based DDoS Protection to Europe| Analyst: Counse Broders | Internet/Managed Services | Client Access | Announcement Summary
February 5, 2007 – Verizon Business announced that it has expanded its network-based Denial of Service (DoS) security offering to Europe. Verizon DoS Defense Mitigation is available in Belgium, Denmark, France, Germany, Luxembourg, the Netherlands, Norway, Spain, Sweden, Switzerland, and the United Kingdom. The company plans to roll out the service later in 2007 in the Asia-Pacific region, Canada, and Latin America. Analytical Summary • Current Perspective: Slightly negative on Verizon Business’ extension of its network-based DoS Defense Mitigation Service to Europe for while this is a welcome move on the carrier’s behalf, as a global company, Verizon does not offer universal coverage of this service offering. The carrier plans to make the service available in the Asia Pacific and Latin American regions later in 2007. • Vendor Importance: High to Verizon Business as it strives to offer an array of services globally in order to successfully compete for MNC client business. Verizon needed to be able to extend its security DDoS protection to clients around the globe, and Europe represents a key step in that effort. • Market Impact: High on the managed security space, as this will impact carriers such as AT&T and BT that are competing against Verizon for global clients that have locations in Europe and the United States. Cisco Emphasizes Collaboration in New Self Defending Network Releases| Analyst: Charlotte Dunlap | Enterprise Security | Client Access | Announcement Summary
February 5, 2007 – Cisco announced new capabilities for enhanced collaboration among several products and services in its security portfolio, simplifying the ability for organizations to control and contain information security threats in a more coordinated, flexible fashion across networks while streamlining management and protecting confidential communications to remote users. Analytical Summary • Current Perspective: Slightly positive on Cisco’s announcement of a number of new releases within its Self Defending Network strategy, because the company is delivering on its promise of collaboration among its security products in order to leverage threat information between endpoint devices, network devices and management products to provide customers with greater blanketed security. • Vendor Importance: High to Cisco, because based on better integration and collaboration among its products, the company can promise its customers a reduction in false positives, along with the ability to provide more fine-tuned IPS signatures enabled through the sharing of information from endpoint products, namely Cisco Security Agent. • Market Impact: Moderate on the threat protection market, which includes IPS, integrated endpoint security, SIM and security management because obviously Cisco is a force to be reckoned with simply by the sheer size of the company and its market share grip. The competitive landscape should feel some impact from Cisco’s announcement because of the breadth of the functionality that comes from integrating a number of key technologies throughout the network and leveraging information coming from those different points. Arbor’s ATLAS Shines Light on Darknet| Analyst: Counse Broders | Internet/Managed Services | Client Access | Announcement Summary
February 5, 2007 – Arbor Networks announced its Active Threat Level Analysis System (ATLAS) Initiative, a multi-stage project to develop the world’s first globally scoped threat analysis network with the help of the service provider community. Arbor will leverage the ATLAS Initiative to introduce a series of products and services, the first of which is a public portal delivering high-level global intelligence, available today. Analytical Summary • Current Perspective: Very positive for Arbor Networks as the company is pursuing a new vector in early warning security protection by focusing on the darknet, as it seeks to capture security intelligence to give an early alert to malicious intent. Once the service is complete later in 2007, Arbor will be able to offer enterprises and service providers a global threat analysis service that will combine information from a variety of sources to offer a comprehensive view of potential network security threats. • Vendor Importance: High to Arbor Networks because the company needed to expand its scope to help carriers and clients protect themselves against criminal actions. This move tackles a previously little explored area for threat analysis, and Arbor can leverage its network security expertise and its carrier relationships to gain a lead in gathering this intelligence from this sector source. • Market Impact: High on the managed security market as competitors with early warning alert services such as Symantec and VeriSign will find that the bar tracking malicious criminal activity has been raised, and will need to determine if they also need to add darknet analysis to their mix.
|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
 |
|
|
|
OFFICES |
|
