I'm picking on NAC in the title of this entry because it will drive Alan Shimel ape-shit and NAC has become the most over-hyped hooplah next to Britney's hair shaving/rehab incident...besides, the pundits come a-flockin' when the NAC blood is in the water...
Speaking of chumming for big fish, love 'em or hate 'em, Gartner's Hype Cycles do a good job of allowing
one to visualize where and when a specific technology appears, lives
as a function of time, adoption rate and utility.
We've recently seen a lot of activity in the security space that I would personally describe as natural evolution along the continuum, but is often instead described by others as market "consolidation" due to saturation.
I'm not sure they are the same thing, but really, I don't care to argue that point. It's boring. It think that anyone arguing either side is probably right. That means that Lindstrom would disagree with both.
What I do want to do is summarize a couple of points regarding some of this "evolution" because I use my blog as a virtual jot pad against which I can measure my own consistency of thought and opinion. That and the chicks dig it.
Without my usual PhD Doctoral thesis brevity, here are just a few network security technologies I reckon are already doomed to succeed as features and not markets -- those technologies that will, within the next 24 months, be absorbed into other delivery mechanisms that incorporate multiple technologies into a platform for virtualized security service layers:
- Network Admission Control
- Network Access Control
- XML Security Gateways
- Web Application Firewalls
- NBAD for the purpose of DoS/DDoS
- Content Security Accelerators
- Network-based Vulnerability Assessment Toolsets
- Database Security Gateways
- Patch Management (Virtual or otherwise)
- Hypervisor-based virtual NIDS/NIPS tools
- Single Sign-on
- Intellectual Property Leakage/Extrusion Prevention
...there are lots more. Components like gateway AV, FW, VPN, SSL accelerators, IDS/IPS, etc. are already settling to the bottom of UTM suites as table stakes. Many other functions are moving to SaaS models. These are just the ones that occurred to me without much thought.
Now, I'm not suggesting that Uncle Art is right and there will be no stand-alone security vendors in three years, but I do think some of this stuff is being absorbed into the bedrock that will form the next 5 years of evolutionary activity.
Of course, some folks will argue that all of the above will just all be absorbed into the "network" (which means routers and switches.) Switch or multi-function device...doesn't matter. The "smoosh" is what I'm after, not what color it is when it happens.
What'd I miss?
(Written from SFO Airport sitting @ Peet's Coffee. Drinking a two-shot extra large iced coffee)