- BlackBerry Storm vs. the iPhone
- Digg's Kevin Rose: "We have to do better"
- Blogger warns: "Nortel doesn't make it out alive"
- Financial quagmire bringing out the scammers
- Verizon plays with the wrong e-mail addresses
Newsletters | Podcasts | Chats | Opinions | RSS Feeds | This Week In Print | IT Careers | Community | Reports | Downloads | Slideshows | New Data Center
Partner Sites:Application Performance Solutions | App Performance | Networking Solution | SafeGuard Enterprise Solution Center | SOA | Test your Web Filter | Value of WDS
 |
With a healthy, vigorous market in security appliances based on open source components (see related story), why would anyone in a data center go to the trouble of assembling their own? The arguments boil down to agility, control, customization and affordability.
In the world of security, agility means being able to respond quickly to threats and to change policy and products to maintain a secure network. With a packaged solution, responding to a new threat may mean installing a new box. If a company builds its own appliance based on existing tools, it can vary the components and configuration quickly. This may be true even if the company isn't using open source tools. For example, an e-mail security gateway typically has a virus scanner, and while there is a good open source option in ClamAV, a corporate license might make products from Trend Micro, McAfee or Sophos just as good choices. Changing the antivirus engine is easy if a company controls the appliance, but not as easy if it has a packaged solution.
In the data center, control can mean many things, but often control means knowing that if push came to shove, a company could always fix the open source tools itself. In addition, control means knowing that the product will be around for as long as a company wants to use it: Although the security marketplace is active, it has a high churn rate, and today's great product from a small start-up can be tomorrow's dot-com scrap. Also, success can weigh on new products: Vendors are bought; products go on hiatus for a year or are cancelled entirely. Open source code is insurance against that happening, even though developer organizations are just as likely to disappear as commercial vendors.
Customization long has been a benefit of open source, and it's just as important in security. If a company's unique security requirements can't be met by off-the-shelf products, it probably can put together what it wants out from open source components. Sometimes customization is more important on the control plane, especially in large data centers. For example, if the data center has a provisioning system that needs to interact with parts of the network's security infrastructure, it's more likely that an open source tool built by the company can be controlled with configuration files and command lines - unlike a commercial product that requires a Java-based GUI for configuration.
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 |
Copyright © 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comment