Security functions move to network core

Seizing an opportunity to centralize WLAN security, startup networking vendors will tackle established competitors this week at...

Seizing an opportunity to centralise wireless Lan security, startup networking suppliers will tackle established competitors this week at NetWorld+Interop in Las Vegas.

Newcomers BlueSocket, ReefEdge, Aruba Wireless Networks and Perfigo will introduce and demonstrate WLan products that shift the locus of management, monitoring, and configuration away from individual access points, moving these security activities instead to a centrally located device.

Attacking a market occupied by incumbents Proxim, Cisco Systems and Symbol Technologies, the new entrants have developed software that resides within appliances to offer Layer 2 and Layer 3 security, access control, authentication, QoS (quality of service), and roaming capabilities.

Centralised WLan switches are gaining attention as enterprises seek ways to ease the configuration and management of wireless access points to keep in step with changing security specifications and user-access privileges.

ReefEdge will introduce Wireless Service Platform, according to Sandeep Singhal, its chief technical officer.

The platform offers services - including security, performance management, and multisite management - that run in conjunction with existing networks or with its own CS200 Wireless Services Concentrator.

"We think enterprises will deploy services dedicated to single tasks, while others will deploy lots of services," Singhal said. "The one-size-fits-all model does not fit most enterprises."

Singhal notes that, unlike most of its competitors, the CS200 is not a switch. "All enterprises have enough switching capacity," he said. "They do not want a solution that replaces their existing environment. We are not replacing other suppliers' equipment."

BlueSocket will introduce its WGX-4000 WLan switch, which it says supports third-party access points, while Aruba will demonstrate its WLan switching system, Aruba 5000 - a four-slot system, which is designed for use in the datacentre, will be used as part of the conference's eNet - the network that will provide Internet connectivity for exhibitors and visitors.

Perfigo, another entrant in the WLan fray, will introduce SecureSmart, WLan software that will help to integrate wireless networks into existing wired networks.

The startups will have a tough time out-engineering the veterans that have already adopted their own centrally managed architectures, according to Gemma Paulo, senior analyst at In-Stat/MDR.

"The WLan market is large, and there is still a lot of opportunity, but you have to wonder if all of them will make it this year," Paulo said.

One concern Paulo and others have is that many wireless switches are designed to work with their own access points. Aruba, among others, has taken this approach. Last week Aruba introduced the Aruba 5000 switch and the Aruba 50 access point. The two products work in concert, and Aruba is betting that several greenfield deployment opportunities still exist.

"Today most enterprises still have pilot WLans," said Pankaj Manglik, president and chief executive of Aruba. "We moved all the stuff that used to change into the switch."

Also at the show, Forum Systems and Tarari will introduce technologies that relieve servers from the burden of processing content.

Tarari will introduce two versions of its programmable content processor, built specifically to handle anti-virus functions such as decoding and decompression. The San Diego-based company will also introduce a processor that parses XML.

Forum Systems will introduce Version 2.0 of its Forum Sentry 1500 XML security appliance. The new iteration takes advantage of evolving common web service security specifications such as Data Privacy Server, Digital Signature Server, and XML-Aware Firewall.

Foundry Networks will make news on the switching front by introducing its next-generation 10GbE architecture, which will anchor a series of products to be released during the next few years, said Bobby Johnson, chief executive and founder of the company.

The first two products based on the new architecture are expected to be BigIron MG8 and NetIron 40G, which are aimed at the enterprise and service-provider markets, respectively.

Initially the MG8 will be geared toward companies that run high-performance, grid-computing-based networks and those that offer Gigabit connections to desktops and servers.

Read more on Wireless networking