Upcoming Events

Cloud Connect
Santa Clara
Feb 13-16, 2012

Cloud Connect brings together the entire cloud eco-system to better understand the transformation we're experiencing and promises to be the defining event of the cloud computing industry. Learn about the latest cloud technologies and platforms from thought leaders in Cloud Connect’s comprehensive conference.

Register Now!

More Events »

Subscribe to Newsletter

  • Keep up with all of the latest news and analysis on the fast-moving IT industry with Network Computing newsletters.
Sign Up

Vendor NewsFeed

More Vendor NewsFeed »

Security
F E A T U R E  
Tactical Security 101

  January 23, 2003
  By Greg Shipley


>> continued from previous page

Firewalls Get Hotter
TOC Issue TOC
Printer Print full article
Printer Print this page
Printer Download as PDF
E-Mail E-Mail this URL
Discuss Discuss this article
flame author Flame the author
 
  In this article
arrow
 Introduction
arrow
 Vulnerability Management
arrow
 Firewalls Get Hotter
arrow
 Control Issues
arrow
 Event Correlation
arrow
 HIP Hosts
arrow
 Technology Areas
arrow
 How We Got Here

Gone are the days when network administrators had to beg for firewalls. The firewall market is the most mature in the security industry, dating back to the mid-1990s. Firewall technology basics are well understood--even by upper management.

However, as mature as the products may be, a number of dynamics bear watching in 2003. First, our recent poll of 90 readers on security suggests that organizations are still making firewall changes. Firewall deployments/replacements ranked second only to NIDS (network-based IDS) and spam-filter deployments (see chart at right).

Second, it will be interesting to see if vendors can meet gigabit and multigigabit requirements--particularly at the core. Many of the industry's leading firewalls rely on mainstream hardware (SPARC and Intel), and we're not sure whether those architectures can provide enough power to push firewalls to, and beyond, the gigabit barrier.

Third, integration between technology types (anti-DoS, IDS and traditional infrastructure, for example) will bring new options to the enterprise. We expect firewalls to gain features, and market consolidation to continue.

What does this all mean for the enterprise? For starters, smart organizations will start looking to manage their firewall deployments more effectively. Firewalls typically serve as good network access control devices and can help protect host and infrastructure assets. However, they are often ineffective when it comes to host protection--too many operating-system and application vulnerabilities sail right past them. Moving forward, you'll need to ensure that your organization's critical assets are protected by firewalls and more asset-centric controls, such as HIPS (host-based IPS) and encryption suites, where appropriate.

While some organizations have critical assets in DMZs (demilitarized zones) and other perimeter points, many have critical systems at the core of their enterprise. Smart firewall placement can help both internal- and external-facing assets, and "endpoint" protection solutions from companies such as Sygate Technologies, Zone Labs, Secure Computing and 3Com are worth investigating.


start top  Vulnerability Management Control Issues 

Research and Reports

Hypervisor Derby
August 2011
Network Computing: August 2011

Video


WATCH: Box.net CEO Aaron Levie Takes On Microsoft

WATCH: HP Chairman Ray Lane: Focus On Innovation

WATCH: How OpenFlow Changes Networking


View All Videos
Previous Page First Page Second Page Third Page Next Page

Most Popular

Stories Blogs

More Stories »

Featured Whitepapers

Featured Reports

BlogRoll

TechWeb Careers