Your ISP as a Security Provider

Opinion: It should have happened years ago, but ISPs and security software providers are finally getting together to push security on users. They still have a long way to go.

The first one I noticed was AOL which began offering McAfee-based security products to its users.

Ive always had the impression that most ISPs just try to get along doing as little as possible for the money you spend on them, but AOL really does a lot of work trying to secure its heavily attacked network.

The good attitude may be spreading, and perhaps anti-virus companies are getting the idea too. Computer Associates, not a household name outside the data center, has started a campaign to get ISPs offering its eTrust security programs.

Some big ISPs, including Road Runner, Cablevisions Optimum Online and Yahoo-SBC have signed up, as well as some smaller ones.

The companies appear to be offering the software for free along with some free promotional period for updates, after which charges may apply. In effect, the ISPs become a sales and distribution channel for the security company.

Why did this take so long? Its such an obviously good idea, and well worth some marketing bucks for a player like CA who is, to put it bluntly, not a big deal in the anti-virus space.

What feedback I get from users of eTrust is positive, although I personally havent used it.

CAs marketing here for the campaign is all ISP-oriented and would work as well from any other security company:

  1. It increases consumer confidence by lessening fear of getting viruses or spyware, or being a victim of ID theft.
  2. By projecting an image as a "secure" ISP, it helps to attract new and retain existing customers.
  3. It reduces support costs, as ISPs take a large number of calls related to spyware and virus attacks.

Theres a lot of truth to this, although the process of setup for these products probably brings with it a nasty spike in support costs.

Once its up and running, everyone should be a lot happier: the customer, being protected, should have fewer problems.

The ISP gets fewer security-related support issues, and probably makes some money on the ongoing relationship. CA makes money and gets its brand out there.

This isnt exactly a new idea; It must be at least three years since I was talking to anti-virus companies, asking them why they didnt look at the ISPs as a distribution channel. Perhaps they just didnt want to share any of the proceeds.

Next Page: I have a security dream.