Snyder's Hack Job
When I left CipherTrust, I closed the VP Marketing chapter of my career and started to focus on starting up Security Incite. There were lots of things that I liked about the marketing role, and lots of things that I didn't. Joel Snyder in a NetworkWorld column (link) reminds me of something I despised, which is product reviews. His column also questions why a vendor wouldn’t sell equipment to a customer. I have some thoughts on both of these topics.
First of all, let me say that I think Joel’s column was a hack job. This has nothing to do with the fact that I used to work at CipherTrust. It just reads like he’s crying over spilt milk and just being petty. The way he presents his case makes you think he’s hiding something. At least that’s the feel I got reading the column.
I’m very surprised that CipherTrust has not issued an official response to the article. They should. But not by posting anonymous personal attacks on Joel on the Techdirt blog. Mike
Arrington Masnick of Techdirt mentioned the column on his blog (link) and then someone from CipherTrust made anonymous comments that were less than flattering. That is cowardly. At least be man (or woman) enough to stand behind what you say. CipherTrust took a bad situation and made it a thousand times worse. Arrington Masnick calls them out on it in this post.
By the way, CipherTrust did not ask me to write this and they are not a client of my analyst firm. In fact, they'll probably be pretty pissed at me for breaking the code of silence. Whatever - I don’t work there anymore. I can say what I want. From a disclosure standpoint, I am a CipherTrust shareholder since I cannot unload the stock - they are still a private company.
First, let me deal with the NetworkWorld review which happened in December 2004. Joel’s recollection is slanted at best and bordering on revisionist history. Sorry, but I just can't let it lie. A bunch of my friends are scratching their heads wondering why I’m getting involved. It’s actually pretty simple, I think Joel is wrong and I’m going to call him on it.
Joel maintains that we did something below board by turning off the device in the middle of the test. I was the one who shut the box down and I can assure you there was no panic involved. And the only miscommunication was the fact that Joel told us he was going to be on a plane to Europe when the formal testing began, so we didn't think there was any way to contact him to discuss the issues.
Basically, we found that the test was not as we were told. In accordance with the testing methodology we tuned the product for a couple of days, based on what we believed was the entire mail stream. That was not the case. Joel had his mail still running through his managed service during the tuning period. So we were optimizing the product on an incomplete mail stream. So when the actual test began, we saw all the traffic and the box was not performing as it did throughout the entire tuning period. Clearly something was amiss - he sold me a bill of goods about the testing methodology.
I saw no option but to pull out of the test. I had lost confidence in the methodology and Joel's ability to test the product effectively. So I shut the box down. His test was screwed up and I called him on it. Joel got all pissed off (which I found entertaining), and evidently he wasn't on that plane to Europe. So we talked it out and came to a mutual understanding. He acknowledged that we should have time to retune the box, which is what we did. Quite effectively I might add. To my knowledge that was the end of the situation, it was in the rear view mirror and he published his findings on the product.
To bring that incident back up as he tries to condemn CipherTrust for something else is juvenile and ridiculous.
Now that's off my chest, let's discuss that other thing he mentions, which is that CipherTrust would not sell him a box. He says he's testing products for a "consulting customer." Well, what consulting customer? Is the company a vendor or an end-user? I checked with the CT people and Joel wouldn't tell them. Hmm. Is it just me or does this smells really fishy.
Why wouldn't the "consulting customer" work with CipherTrust themselves? Or at least say they were working with Joel's firm to test the products. This is not Consumer Reports here. And why would the "consulting customer" (assuming it's an end user) provide the money to actually buy the products they are testing? I’ve been in this business a long time and I’ve never seen an end user buy one of everything to test them out. It's not like you can get any of these products for $2000. If they are testing 4 products, they are looking at an additional $40k expenditure (an adequately configured box costs $10k), especially when all of the vendors would provide a trial version for testing. It just doesn't add up.
And then he changes the story, clearly this box was intended to do a competitive bake-off. But he tells CipherTrust after they won't sell him the box that it's for use in his company. How can that be the case, since everyone in the business knows that Joel uses a managed service? Now he's going to implement an enterprise class appliance for the 5 people in his company? Not likely. Again, I wasn’t there but I would have been a little wary of the situation also.
Arrington Masnick is right in supposing that part of the fear might have been that information would be passed onto a competitor. In general you never sell an enterprise class product to someone unless you know where it's going to be deployed. The unfortunate truth is a great majority of those boxes that are "unaccounted" for end up in the hands of competitors. To be clear, I'm not saying Joel would buy a product for a competitor, but if you are CipherTrust why would you take the chance? The fact that it's a blind test, done by an independent consultant makes your chance of success suspect at best. Certainly not worth the $5000 you'd make for selling the product.
And what about this "consulting customer?" I suspect any end-user would have told Joel to walk away. There are a ton of email security solutions and clearly CipherTrust doesn't want their business. So that should have been the end of it.
In my opinion, it was a no-brainer for CipherTrust to walk away from the deal. Anyone that’s spent any time in a product company knows that you need to focus resources on deals that you can win. Without proper qualification, you are wasting your time. Even worse, you have the chance (however unlikely) that the box falls into the hands of a competitor. That's not a risk worth taking.
Clearly Joel doesn't understand that. Instead of letting it go he chose to be vindictive and petty, spouting baseless innuendo about how a company must treat its customers because he felt slighted. It's disappointing to see a fellow NetworkWorld columnist use his space in the book to settle what is clearly a personal score.