Facebook, Google Apps Use Soars in Enterprises, Security Firm Says
Social networks such as Facebook as well as several programs for communications and collaboration are being used in enterprises to a great degree, with 22 Google applications showing particularly strong usage, according to research from a network security firm.
Palo Alto Networks surveyed use of 750 applications across 347 organizations for its fifth Application Usage and Risk Report, released March 30. The company's firewall appliances and software monitored the use of Web apps for the volunteering companies from September 2009 through March 2010.
Social networking apps such as Facebook and Twitter and collaboration and productivity apps such as Gmail, Google Docs and Google Calendar were used with great frequency at businesses around the world, including companies in heavily regulated industries such as health care and financial services.
Some of the stats are eye-popping. The bandwidth consumed per organization by social networking applications doubled from 18 months ago to 9GB in this new report, with Facebook consuming an amazing 5GB of these companies' bandwidth counts.
Social network apps such as Facebook are used frequently by sales and marketing teams to close deals, Chris King, director of product marketing for Palo Alto Networks, told eWEEK. But Facebook, which has more than 400 million users, isn't the only beneficiary of increased use.
King said network bandwidth and the number of network sessions continue to rise for most apps, noting that "more people are using these apps more often." For example, the 22 Google applications identified by Palo Alto showed consistent usage, with Google Docs and Google Calendar showing increases in session and bandwidth consumption.
"The Google stuff is really sticky," King said. "Docs and Calendar are extremely well-used."
Google Analytics was used in 95 percent of the companies surveyed, followed closely by Gmail at 92 percent. Gmail Chat was used in 78 percent of organizations. Use of the Google Talk Gadget jumped 56 percent, while Google Talk dropped 76 percent.
While this seems counterintuitive at first, King attributed this rise and fall to the fact that many users with a Google account access Google Talk from the gadget they install on their iGoogle personalized home pages. "People are moving away from the Google Talk hard client and toward the gadget," he said.
Google Wave, the real-time collaboration platform used by more than 1 million people, was found in 10 percent of the participating companies. Google plans to place a greater emphasis on luring enterprise users to Wave in 2010.
Bandwidth consumed by SharePoint and LinkedIn is up 14 percent and 48 percent, respectively. No surprise there. SharePoint is a $1 billion-per-year business for Microsoft, while LinkedIn is still the leading business social network over Facebook.
Palo Alto researchers concluded:
"The data highlights the rapid dissolution of the barriers to application access which makes rapid and widespread application adoption very easy, as evidenced by the fact that applications of all types are being used with remarkable consistency-regardless of the sample size, geography, or vertical industry. Consistency is a double edged sword-on one hand it shows a certain level of predictability, while on the other hand, it introduces very different levels of business and security risk."
Indeed, while the rampant adoption is great news for Google and Facebook-vendors that offer their Web apps free but rely on advertising to make their money-Palo Alto found some disturbing news for the security-minded IT administrators.
The company said there are 177 applications that tunnel other apps unintentionally, or to boost accessibility, such as in the case of software updates, P2P, instant messaging and Webmail apps such as Gmail. "Others, such as UltraSurf, TOR, Gpass and Gbridge do so as a means of hiding the real nature of the application activity."
Use of external proxies and encrypted tunnel apps is high in universities as well as health care and financial services firms. That's enough to set teeth on edge for admins, which can quickly find their companies out of compliance or, worse, victims of leaked proprietary data or malicious malware.
"You can't block the apps because people use these apps to do their jobs, but if you blindly allow it, you're not in compliance of the FINRA [Financial Industry Regulatory Authority] and HIPAA [Health Insurance Portability and Accountability Act] regs," King said. "The real trick is allowing the app but mitigating some of the risk associated with it."