News
Blogs
Shark Bait
Knowledge Centers
Opinion
Webcasts
Video
Podcasts
IT Careers
White Papers
Computerworld Reports
Zones
Case Study Library
RSS Feeds
Events
Industry
This Week in Print
Print Subscriptions


Ads by TechWords

See your link here


Subscribe to our e-mail newsletters
For more info on a specific newsletter, click the title. Details will be displayed in a new window.
Computerworld Daily News (First Look and Wrap-Up)
Computerworld Blogs Newsletter
The Weekly Top 10
More E-Mail Newsletters 
Eric Ogren's picture
Eric Ogren

Security Impact

More posts | Read bio

October 17, 2007 - 3:49 P.M.

The game is changing for appliance manufacturers

2 comments

Advances by Intel and AMD in compute power with multi-processors and management with virtualization have shifted the game for security vendors who are bringing their products to market as a high performance appliance. It is becoming increasingly harder to justify large engineering investments in custom-built ASICs or hardware that is not built on a standard platform. Just check out the specs of Intel's vPro capability and imagine how security vendors can use these features in next generation appliances.

One significant trend in appliance manufacturing will be the growth in virtual appliances. This makes it easier for vendors to create an environment that can easily be embedded in a standard Intel or AMD-based platform. These virtual machines can take advantage of multi-processors for performance and trusted execution environments for security. Virtual appliances will shift technical priorities from hardware engineering expertise to software functionality, management, and product distribution.

Appliances have customer benefits that are not going away any time soon. They avoid the headaches of software installation and configuration, they are easier to securely deploy in a dynamic network, and fewer organizations are involved in the purchase and support decisions. However appliances do require vendors to manage a distribution channel for delivery of a physical product and provide skilled remote support to keep help desk calls from whittling away the profits.

Lost in last week's security news was the acquisition of Alliance Systems by Network Engines. Most people don't recognize these names because they provide the behind-the-scenes custom manufacturing services that allow a software-based vendor to deliver their products as an appliance. Creation of an appliance from a software kit, and unified management of the software and hardware of the appliance will become differentiators. This new company, along with competitors such as Dell and IBM, are well positioned to help vendors produce quality appliances that can be managed in an enterprise network.

What People Are Saying

Add new comment

On first look, Intel vPro

Submitted by SixTen Research on October 19, 2007 - 3:20 P.M.

On first look, Intel vPro seems to be enhancing host based security and some NAC features that can be used and hopefully not abused. I did not see how it can replace custom ASICs that work at gige speeds. Maybe you had the the network processor line in mind.

One could possibly successfully use Intel/AMD processors to build security systems that can handle sub-1 Gbps traffic while doing deep packet inspection. It is however possible "to create an environment that can easily be embedded in a standard Intel or AMD-based platform" that can handle 10 Gbps of traffic. Even 1 Gbps of traffic could be more than 1 million packets per second. A multi-processor off-the-shelf system running RedHat AS5 or BSD may not be able to do deep packet inspection at those rates. Serious customization would be required to achieve such levels of performance.

Reply | Report this comment

Some good insights here, but

Submitted by Gary Kinghorn on October 18, 2007 - 8:11 P.M.

Some good insights here, but I don't see the game changing dramatically. As new generation security services move into the switch, performance will be far more important than maybe you've considered. Custom ASICs will be required in the future to stay on the performance curve and to achieve this security vision. We've posted a more in-depth rebuttal over on our Nevis blog.

Reply | Report this comment

Related Posts

Linux's dirty little secret: Uninstall
Intel to launch 32-nanometer CPUs by September 2009
Cloud computing security--coming soon to a device near you.
New Intel silicon breaks cover (and lirix)

Today's Top Stories

Context-aware mobility: What is it and how will it change the business world?
Vista Ultimate users fume, rant over Windows 7 deals
Elgan: The carrier coup must be stopped
DOJ officially opens investigation into Google Book Search
Judge temporarily dismisses MySpace cyberbully case
Mozilla slates first Firefox 3.5 patch
About Us Advertise Contacts Editorial Calendar Help Desk Jobs at IDG Privacy Policy Reprints Site Map
CIO Computerworld CSO DEMO GamePro Games.net IDC IDG IDG Connect IDG Knowledge Hub IDG TechNetwork IDG Ventures
IDG.net InfoWorld ITwhitepapers ITworld JavaWorld LinuxWorld Macworld Network World PC World The Industry Standard
Copyright © 1994 - 2009 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of
Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.