|
Napisano: 22 Avg 2010 22:46
Usrecili su se ako su McAfee uzeli za partnera oko pravljenja hardverske zastite...
Dopuna: 22 Avg 2010 23:05
@Simke
Evo jednog komentara sa OSNewsa:
http://www.osnews.com/permalink?437563
Citat:My thought is that this is about two things:
1. The patents. McAfee has a patent portfolio that includes the following:
http://www.uspto.gov/web/patents/patog/week07/OG/h.....00216.html - Virus Scanning of a Storage Subsystem
http://www.uspto.gov/web/patents/patog/week42/OG/h.....91020.html
http://www.uspto.gov/web/patents/patog/week09/OG/h.....00302.html
http://www.uspto.gov/web/patents/patog/week07/OG/h.....00216.html
2. Their products for high-speed network scanning and data loss prevention, and their enterprise products. Consumer software is a low-yield investment. I would be surprised if McAfee made a significant amount of money from actual consumer product sales as opposed to bundling.
However, McAfee gets a ton of money from ePolicy Orchestrator, Safeboot, their DLP products, IntruShield, their firewall products, and their server-side products for Microsoft Exchange and SMTP that quietly sit on millions of corporate PCs and ring up consistent dollars in support fees every year.
Symantec, on the other hand, released Endpoint Protection for the enterprise, which had major deployment and adoption issues because it was the integration of the Symantec AV software with the Sygate personal firewall software they acquired, and they did not go well together. They also bought Vontu for their DLP software, which is still top of the class despite their best efforts.
IBM just introduced ISS for VMWare. It's an excellent product that provides IDS/IPS for virtual machines at the hypervisor level.
Intel is probably going to go after Symantec by tightly integrating the McAfee engine into the AV, DLP, and encryption products, and having one tool that allows AV, IDS, IPS, DLP, and Safeboot updates in ePolicy Orchestrator, as opposed to the travesty known as LiveUpdate. The fact that everything will be integrated and work with Intel CPUs will also help significantly, as Intel can control the entire software/hardware stack in ways that only two other companies can, Oracle and IBM. Oracle doesn't have much interest in endpoint security these days, and IBM has ISS. Intel will make their software work better with their chips and chipsets for the products that quietly sell for 6 figures a pop to large companies, and Safeboot, which is bought by the truckload. Any company selling full disk encryption software really needs to worry right now!
Secondly, I expect Intel/McAfee to announce virtual machine security products to directly compete with IBM ISS's SiteProtector, but that will work cross-platform (VMWare, Xen, KVM, SWSoft Virtuozzo/Parallels) and at a very low level.
Third, I expect Intel to start integrating hooks for security products into the lowest level of their device drivers for their networking products, which are actually quite good. Remember that a lot of systems administrators will use the Intel cards and turn off the OEM Broadcom cards on Dell or HP servers because they don't have bad drivers. This is going to provide for offload of security products onto the card, which will be a big help with 10G and 100G network scanning. This is something that you would only ever hear about Cisco pulling off, and they don't have the skills at making chips that Intel does. Cisco still depends on Freescale for the chips they need for their routers. Do not be surprised if more Intel chips show up in Cisco products, or if Intel re-invigorates McAfee's network-based IDS/IPS tools to work better with 10/100G Ethernet with customized appliances capable of scanning that much data, and beats them to market with better tools.
I think there was a bidding war. I think that one of the other players was Cisco, and another was IBM. I think Cisco wanted the patents and to integrate their network-based IDS/IPS tools into their product line, as did IBM (who did spend $1B+ on ISS).
Intel just made a big announcement to the world that they're going to start playing more heavily in network-based security, and that they think that the integration of their knowledge of microprocessor and network processor design with relatively good network scanning software and the required patents is going to allow them to build better products that are going to let them stand up against Symantec, m86 Security, Cisco, and IBM.
Lako je moguce da je tip u pravu, da se ovde cilja na skeniranje dolaznih podataka sa mreze i to u samoj mreznoj kartici, ili barem u sprezi softvera i mrezne kartice. Time bi dosta ubrzali skeniranje dolaznih podataka u poredjenju sa softverskim snifovanjem.
|
ko bi znao ?
)
