Network Security & Hardware - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


Is It the End of the Security World as We Know It?



 By: Dennis Fisher
2006-02-15
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Network Security & Hardware story.


Rate This Article:
Poor Best
Heavy hitters such as Sun, Cisco and Microsoft all want to build security into their own hardware and software, which could leave security vendors out in the cold.

SAN JOSE, Calif.—The folks running the annual RSA Conference here this week will tell you that the show is bigger than ever and security is at the top of every CIOs list of concerns.

And while all of that may well be true, if heavyweights such as Sun Microsystems, Cisco Systems and Microsoft have their way, enterprises soon will have little use for the wares that most of the security vendors here are hawking.

Its rare that those three vendors would all agree on anything, but in speeches and interviews this week, executives from all of them have said that its time to build security into hardware and software from the ground up and stop trying to fix problems after the fact.

Of course, each vendor has a different idea about how to accomplish that goal, but the underlying idea is the same: Make security an integral part of the network, and not an add-on.

To Cisco, this means enterprises buying into the companys Self-Defending Network strategy. In his keynote speech at the conference, Cisco CEO John Chambers showed off the companys new Security Management Suite, which is designed to automate protection features and management among routers, switches and client devices.

The Cisco Security Manager piece of the suite will enable administrators to create flexible policies that can be shared among devices and then modified on the fly to defend against new threats.

Resource Library:
"We want all of the security devices communicating with each other automatically," Chambers said.

But, as with Ciscos Network Access Control solution, the new suite is meant to run only on Ciscos own networking gear.

And, there are a number of hurdles to overcome before such integrated security will be cost-effective and efficient for enterprises, analysts said.

"Networking and security are separate units in the enterprise. So you need a closed loop between networking and security in order to make this work," said Abner Germanow, an analyst with IDC, based in Framingham, Mass.

"Automating that process is a fairly scary thing for a lot of people. Integration is classically the hardest and most expensive thing going. Will we get to automation? Yes, but this is more of an interim step to help solve the problem."

Sun executives have their own ideas about where security should lie. They believe security should be provided not by firewalls, IDS boxes or anti-virus scanners, but by the network infrastructure and the software running on it.

And that can only be accomplished by writing software based on open standards that has been developed using a community process, Sun executives said.

Click here to read about Bill Gates keynote speech at the RSA Conference.

"You use community development, an open interface and a public reference implementation thats guaranteed to be open. Thats the right way," said Scott McNealy, Suns CEO.

"Its mankind versus the proprietary answers. Vista security is a bolt-on [solution]. Solaris is a Unix and its meant for the network."

Sun has quietly been adding a number of security features to Solaris over the last couple of years, and McNealy said that will continue.

The company has started shipping its Trusted Extensions for Solaris, a toolkit that hardens the operating system. The idea is to make security a transparent part of the OS, not a group of add-on features.

"People think of security as a noun, something you go buy. In reality, its an abstract concept like happiness," said James Gosling, a vice president and Sun Fellow, and the man who invented Java. "Openness is unbelievably helpful to security."

The implication—sometimes spoken, sometimes not—of what McNealy, Gosling and Chambers all said is that all of these security technologies are necessary because of the deficiencies of Windows and other Microsoft products.

McNealy, in fact, spent much of his time on stage railing against Microsoft.

But, Redmond is not standing still either. Bill Gates, Microsofts chairman and chief software architect, used his conference-opening keynote to preview a few new security technologies that will be built into Windows Vista.

Many of the features, such as integrated anti-spyware software and upgraded online identity management tools, are things that dozens of security vendors are trying to sell as stand-alone products.

Many observers believe that once those technologies are integrated into Windows, they will quickly become commodities, much like browsers are today. But Gates knows there is still much more work to be done on security, by Microsoft, Sun, Cisco and hundreds of other companies.

"If theres an area that we absolutely need to do better in, [simplicity] is it. Ill be the first one to say that," he said.

Check out eWEEK.coms for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzers Weblog.



  Reader Comments: Is It the End of the Security World as We Know It?
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Network Security & Hardware Articles          >>> More By Dennis Fisher
 


x}r㶲s\@♵M푦dKkŲ,xMT(SIVreoВ/㩱%l4ݍF޻$\i9cq͹M5>5dRr[dQ-ɲnMw3a[mޡlطǚZ*jUE9.TCxx-t}rNe,oFu/ jvz `h-vdu]+h0u=;yX8 D9;YJM~c/DR˅4D> Pczj`I%opa)ڱVP]F[<," J1~̢!2Iuoeu}uHuz~rn!|c9̠V*PFfЊ%+52^uܜ5o9nڗMuI}!+|v!5M0\ܱ:֪׷V\7`Kk'^MXCyC0-ߕҡ#3?_$>\OIN©,7M~tǷP[,.s$BrZ~@X*,>JAͼ94o o$SNE ;@:9];J}s$C6kiBuV!`JܺNR49Vˡ蟉$Wm4@r5)6B̄H )7R<&,)|YB* brݢPP3>ΧKdoF" ef"ȅQ.%u g|8JKu3ba>U<8^oVV͉:]XYujZnE?iQwθ~j?^wսuS5>`Ub}ƺƻKEhYf7-$ꨦUʇ,Vr*ǿX@8ʍ??1m!SGñA 3M:vy0`;}JOiͧ89~t$ࠣM/G˥~n1@ Ln0i\+Gݺ~L߳=Wԇ5D5i-D&q}@9qHhQ0<sz0Y[Sσ5[ JCˋF0P6xBe^~>axs݀ܧPr`@=XS9;ݲeǀxԜЇuKw2Z}c%n ȣ$@!-i]R@Az6W? -,rr 0#!bTLZ'9Tv{B#Tz(΍gR1eb -d[b~Il eV&vϏa[LboD6], S mo3-muk{XT5\O4MhFaf=@μ's6I`0HCb;NM: xoBCys;J`y0aEiŬ9g߃ 9 iAװ DؙZU{gm1Jqm?XĞ-f8[%,Y^/V꺰+]65e"@0m>`{>8`Tfha8l[b?xluj )ՃI ,䧒\R ~$[b"ud\6˰@e9ִ &;rm۽& zfdY01OK- M~ά! hPQ1 "IOu/F+/OY*#؉ko` 12l3u/.fr|pݱM% y4YU jqL?"5Ϩ}< __ p&7XfaY8 ~_m^J_09X>8ujN0alEc>eLFrlxTajN枏+kF$*XS F2j>Lk}]\SaWݬ`欄Bc$ D!#2z q[kh0hMf; wԪ6 h)6YS!RW dĞeeSetjC鳨<gf's& ޖOmwn;pi-uQby.Am /r/|&&q3旉^_䞫VJ% d,fqNg epvN{6us0XSf~`pl1\An>эLnyUc6~zzi0b`(n<0{L3wJ= Phnj`$dmhaYk-g}zGdCrfzB$~^[~w?I a9p驔rgHWtČer,×v8UU{MyR̚,*Cjm>a,0r`7.q,sqIZ'$MU"[ qe l&SbR/փ `kRUF`"U!TQ>ƞnRzQrZ%&jZ}$>JSO(7 FBR%%~ͳ!fA#'"ZAY_Mk8hs)p B0_\PF.^ʇ2wI$yF0ŗ!%KgO@lXC=B3ܒ(t]4.7f1secn/`I3N9`{IO$#3#nƭjCUNJZZ$t`1۳<%Q{q*NP Yo =$Ԅ_8 +~W?l)ɡ$>Diz\12fV(Yō?hhqLL w>ZU{"}QLޟUv٩G#{? t%.}ﻛv~D ۧ>^F}0q3now/319o?<{4{cq 4 8"/1U/Rga\dzLR(1Iw1]2~r&El/?HEFp0Z<!n8{ѽGE%%Ws=A DH#䄬W!yN/ZFSLuk;d4)(g~H13^3l&zi:Z_Kٺ̂KӜ$"k5 faoFhv~[_aݪ,d20.&Wtz̃}E9 c@JA=oh{Wё{mE&-@X:Ua2"(BShDO§,:^78S%j67 EGW%'K+ u{--':}mFџW` e܃*׌Vrh'5۟H‐ ׉ NAvhq_b%%h8W&Brc'xr'|xj}yUy^={GNÊĶS = m3rc%vd\:Gw*b9,_k=hrrӅ[ejw{tqF[ڭFg oc Ǿv/; ?--8cP!OKSϑ%٘NBEWU-u+ln(jYpJeOVr{ld+N$^d1׭P2vA JGs`ȞxqK7׷bRcJ?C?''kLw.z@z@pw{Zg%QJ=,q @jjiIr\"~^YZ䑽أp l$>?GFm"fFcME[ofO<|nF?qĨ`box?s䇷fd2e̚Z,?DI-OF bNO^~xަGY;1=^ ϔPu2 Q_%y.^O<_o` iҩ,qk=0VI nxPM!;e!bXOŦlD.Dx"s#?Ix1ŊLS2+!UHУVe_._R+V&fptn t-|?[;osJW8R(R(o╨OB$ $ Ar3q_^!)v~}W^ /a,;tNgs8Rѱ)^qKꂶ110m# g@J nq&XtOJ*¡O"RY&_~^Lu@ʈ>H+X 9'`1wKo_$ $ A$ W7#?$ e[V|Gҋsv *`Ȝq=۔@o4݊>it-~l 'm6z*qB<ىʒIji[+Ϊ"a\0lgLat{1} EX{3/LĊ'ln/"W1>!vz}Oc۲Ulөo[wt;֌zZ K~,.~AWd;`Rmuc0t @8۾e1wc3 Eb;%" v^Xz N9|Xz =ۘYS}ȱz WzgU&ե2Z^)^p1O: d$#]l ,fܒZ)FP?"+pcIg!H_ɸ 5BBD.s& 4vȨb>zF)Rٗa:ES*(EGse%"A$H"aI ,6CmjbW!WROP/osŗO=Gi[w)px m.ɍKx C6|Oc'>$aף//jK>}tbY">/=`AtI %. \3 q%w_kkQy ;ޜ9;Fs[u?` b0j#Gbx<$ђ^zUO~uKΪ2gT j׃1D".+'_=lC%N٢nr3~3ooooƯX(Uv4FYa׽oQh5`h_5  xAxbyZ~ 䝩`~w~K;9#1ھԤDxGTr̒`dH'tH%NٰdGݏ{Kظ$ Xn?l 3Ÿ<*grW#"Aav|kL d>w|K/*%%ȞB+BB3)ˮ/6$!uEH_fٝщ]^>0iݱEw#Gݫ?^K;6 ;/:b}AuٱPmw|K8$ HHԏ j}"qO~u0L&:4Wq$3Un~bt҃V{trş-{>,ұ)E3wrDR|W ɿ2F[rO|kNG"iޘpy+BR֚C-𛷿c.*d;1ٕ5㵙vm{{ŷi`W۲:>/=}6dUokocwt%۬R2ײ#1}qilDg`lï^Jif#eĆ,ga+I錃qlr gS&ekE_A--Ҵjgϡ6 ?3{>ͨ4$tw[,́ȱ_Y7 :âIYpRfSxk vf0}QCpo7wb䭽qd?߿ߋ!?Xәȓ~ j~h!v"AfӃo)?g0-^awvᮦ%s,Ԯ}q6Aca$+^Rc"W6AdR!t:wOF;6vwڦRs>н^3B;s(ˎ{^n9z.z{԰,Yql[.0 NQ)q:.ȹ莥5"z74 ?R)!m%&*=W"гaܳVܞVk}w1)Tg9 Lm W1儔JzN۠Ļeq+U$@>+pS CR,6$AeЃ5T?0pԽ~#nZU{FGȚXWRt J n,ӠMhi17E߄^P>= :{ᛂrPZ-+Fw_ 6f^ZGZQ!IGa<$wzS4mԓFG])׀gxRW7 UlNh$~b 2uFf."T( 7`뭛VgF\nz~uC@,xQ_[ͱ1|s̖~/8 s˙{9asH ]TW\A.!n0Os.cb4{χ\oX|J7QǷ |$rkqC9Ҕw 5j/{ʡR0F$u2Dt083*%rS&P9 dU ?M=/׽nrj5-i`Ik„ ld DzL;6")(ĴF#1C͈ ic6K=OcZ|"1^#&3( 9;,Rr$U,%"E Q\UP*@J>S|?pk2%Tmn$Gu~kvK) &.X`3Yej xpƧx}:;jܕiV.Ln 0Y:oN*r P:ςXn\b @Ԑ0(VIB uXRFB(s 6fHglulb@h),f,TՊR &uU !2,j)@(OoYh?X+/0M蕴B%^Ȉq~/wSs_Ч6#&Dwn ̃ѸLκפAή[-x;n_KrҺ+lk ni|ԝ96?v>/[W~~fy0cQlB_d,g6OFYi1;eNq(M1B*rԗ,xE^%Lqx&0,D~D(/pYQJNi21Sh6[M֖C~ƫx]bȩkfhw>vN^^Z+!PU8iz67ax<P "Z>^rФo%u?C@/P~(By79 4h2Ots,>7sv3Wo73v~i_f ?2?C">vNtw~' >зAЧAg'?; D'(Q~dwQ{1 ?s w1~]O7CtAt3U\W_\gOA6_SV9SF>>eoʁo2ڿh&s$eCPȐ.NpN2KIʠ/ޯ a0'VbgHIأ_BDOv֤-JK`"cOil@O 0Wd]fA_f|bOh>Zo/TùLHd v"}M(Xf/X9VX#e m_1S&'}EzXZn``a?Yw2:>Fˮ+ׇ"2cX {ԟ1P EY/u:\/5*:L ALH\>oz^Dl,+- O*nj3鱻$nd~d;Thv[1ZOe;BI<ŗ-<>,D*9"[o %P)@EikI/?mwI3軉Wd;Oulם@ d9e7v1$+nvGD g>6'كl2ps`ܐ}olI COx r:Y W96;4[ +"ۂ KmӴ6uW¥"UXJMX,8. 44[QK.9BuzϷ;<v7͇Oe$| _[0~OX+ʕbA,\A 7tl-NgsZ%n_Ho".Rޖnfة5`y+@44zW qS`huq#1uB\ (cto L?Q1?c}]nJQXƦa#QaW:67n Myww{&7{.**kW46* <Ǥ9mo@>1[?܋"w}#\m:1V`g7Y?Wͳ-I>2#" $8zIW{{a0&iE㨤t`C v_ <8 ci,;fcXJ ,oԛŒ'TS*4.v>ϝn,\2xDh\Nق"?X=<,N~LʹkcPѽk xٚջHR#z3L味%hw2b59_yfO;W?aMd|Zk/oYY/5:G<|;Xyx8~']f(FRqO\|j8)>^tc3u㖗4NpxٔŠ6҂%!t4!ջj4ɊxY0 .A|>ǐy6xL 2kV*wN㛼V cSEᘸe*jaKm9n~;1{l~r[)CUs̥D/5^JB\sjh6