Fortinet

This month's SearchSMB column talks about UTM, within the context of the SMB market. So, that means "small UTM" just to be clear. If the column seems a bit short, well it is. That's because it was, let's say, heavily edited. Is it better? I don't think so because a lot of my informal vernacular has been gutted out. This is clearly not my style, but whatever. The points are the points, and at least they didn't mess with them.

I've got a unique style of writing, and if you couldn't tell I get a bit burned when it's messed with. But that's part of writing for some of the media outlets. So at the risk of getting into trouble, I'm going to post my original version here.

Of course, you can read the edited version here: http://searchsmb.techtarget.com/tip/0,289483,sid44_gci1205017,00.html

The Original:
SearchSMB column/tip – July 7, 2006

UTM is in your future
By Mike Rothman

The network security business has evolved rather incrementally over the years, largely driven by threats – as opposed to thoughtful architecture. First there was the token authenticator, designed to protect all of those crazy employees dialing up into a remote access environment.

Then as direct connections to the Internet hit widespread deployment in the mid-90’s, there was a need to protect those connections with firewalls. But firewalls were rather unsophisticated devices, so products that could detect an attack pattern (intrusion detection) came into vogue. Subsequently we’ve seen gateway anti-virus, anti-spam, web content filtering, anomaly detection, web application firewalls, and a host of other new products emerge to stop very specific threats.

You as a SMB technologist are sick of it. At least the folks I talk to are. All of these products have different management consoles, none work together, and most are marginally effective. We all know that you don’t have extra people or dollars lying around to maintain the status quo. You need to do more with less and you need to do it now.

One of my favorite sayings is “No mas box.” My clients don’t want to see any more appliances; they want integrated solutions or at least the visage of integration anyway. Thus a new product category called unified threat management (UTM) has emerged. Pioneered by folks like Fortinet, SonicWall and Astaro, but more recently being joined by pretty much every security vendor – these devices promise integration, convenience and protection from pretty much every threat out there.

Should you turn off your existing equipment and move to these new platforms? In a nutshell, the answer is most likely yes. Your choices are pretty straightforward, continue to renew the maintenance on your existing device(s) or buy something new. In many cases, given the competitive nature of the UTM market, out of pocket costs may be comparable to upgrade to a new device.

Even if you are talking about a 15-25% increase in year 1 cost for a new box, it’s worth it. You’ll save at least that much time in not having to troubleshoot different equipment when you have a problem and your protection will be broader.

That begs the next question, who do you buy it from? The answer largely lies in your comfort level. Each vendor has strengths and weaknesses. Some are built using mostly open source software; others have proprietary chips to get the job done. Given where the market is now, you should strongly consider your incumbent network security provider. In all likelihood they also offer a UTM device, and you already are familiar with the vendor and the management interface.

At a minimum, you should kick the tires of at least one or two other devices. Only by getting hands-on a few boxes will you figure out what is the best fit for your environment. But for SMB customers, UTM is the shape of things to come.

The next webcast hosted by Fortinet on the topic of securing the instant messaging (IM) and peer-to-peer (P2P) applications will be next Tuesday, April 25 at 3PM EST (12 noon PST). Here is the invitation:

Managing IM/P2P in Enterprise Networks 

Fortinet will discuss best practices for securing and managing the use of instant messaging (IM) and peer-to-peer (P2P) applications during a 45-minute webinar on April 25, 2006.

The educational webinar, led by Mike Rothman, president and principal analyst of Security Incite, will provide valuable information on how enterprises can reap the rewards of IM and P2P applications without jeopardizing the security of their networks. The webinar will address critical issues such as:

• Benefits and pitfalls of enterprise IM and P2P usage
• Security risks resulting from IM and P2P applications
• Solutions architectures and best practices for securing against IM and P2P threats

The webinar will also feature Chris Roeckl, vice president of marketing for Fortinet, who will speak about the company's integrated multi-threat security solutions and how customers are using them to protect against all types of threats, including IM and P2P.

To register for the event, which will take place at noon PDT on Tuesday, April 25, please visit http://www.fortinet.com/promo/IMwebinar2006.html.

I'm pleased to be the featured speaker for two upcoming webcasts hosted by Fortinet on the topic of securing the instant messaging (IM) and peer-to-peer (P2P) applications. Here is the invitation:

IM/P2P Security Roll Call:
Protecting Your Network against Growing Threats

Instant Messaging (IM) and Peer-to-Peer (P2P) applications are popular ways for students to stay in touch and exchange information. Do you understand the cost and security risk of these applications? If not, then you need to find out QUICK.

You’re invited to attend an information packed, fast-paced,
45-minute webinar that will give you the knowledge you need to effectively plan your IM/P2P security strategy.

Mike Rothman, President and Principal Analyst of Security Incite, will provide an industry view of IM and P2P, answering critical questions such as:

• Is IM good (or unavoidable at best)?
• Are there any positive uses of P2P?
• What are the security risks of both?
• What are some solution architectures to protect against the threats?

Chris Roeckl, Vice President of Marketing for Fortinet, will briefly present Fortinet’s integrated solutions for complete content protection and present a case study of how Fortinet’s education market customers are handling IM and P2P traffic. Fortinet's latest operating system FortiOS 3.0 includes new features and enhancements for IM/P2P threat management, including access control, monitoring & audit, antivirus, and attack prevention.

Date: April 11, 2006

Time: 12 noon to 12:45 p.m., Pacific Time

Please click on the following link to enroll: Fortinet Web Event Center

Attendees have the opportunity to win a 1 GB iPod Nano.