I remain completely baffled as to why HP Networking does not have a firewall. Firewalls are like noses, everyone has one – in fact, we have lots of them – pass the tissues.
Notwithstanding that the Crunchy Edge / Soft Centre security strategy is widely discredited we still need firewalls. Am I right ?
So this glorious piece of “look at what we have, don’t look at what we don’t have” in one of the HP Security blogs seems like the right time to take them to task:
If you were somehow frozen in carbonite last summer and just now thawed, you would be shocked at how HP security looks today. HP is a security company. No, really. It’s a brave new world. As you dreamt your frozen dreams, HP was acquiring such security juggernauts as Arcsight and Fortify, bolstering a security portfolio that already included SPI Dynamics and TippingPoint.
But you don’t have a firewall product. In case you hadn’t noticed, none, nada, nyet, zero, of those products are a firewall.
Good things are happening. HP’s TippingPoint was again named a leader in Gartner’s network intrusion prevention system (IPS) magic quadrant in December 2010; Fortify followed suit in the static application security testing (SAST) MQ – in addition – just this week – to winning two 2011 CODiE awards (Best Software Development Solution, and “Best Security Solution”). ArcSight and ASC WebInspect are also consistently evaluated as market and technology leaders.
Blah blah blah, Nice but only used in combination with a firewall strategy. God I’m bored of hearing about Tipping Point – IPS is yesterdays news.
And HP Networking still doesn’t have a firewall solution.
HP is different. It is turning away from the Dark Side, using The Force to integrate its assets for cosmic good. From an Application Security Center perspective (as I’ve blogged before), WebInspect, Fortify SCA, and Fortify’s runtime analysis tool SecurityScope have combined to create Real-Time Hybrid Analysis, enabling security teams to discover vulnerability root cause as they observe attacks in real time. Subsequent near-term product releases across the application security portfolio will demonstrate further real-time integration innovation.
But you don’t have a firewall.
We are planning more coordinated efforts across the fleet in 2011, incorporating various technologies and delivery modes (The Force delivered from – and to – The Cloud? The mind reels!). Anyway, Admiral Ackbar can rest assured – HP security is NOT a trap.
Why the bloody hell does HP Networking not have their own Firewall ?