This page contains a Flash digital edition of a book.
how to guide: comment


Security is not a product


Organisations must consider security at every level of the IT infrastructure if they are to combat today’s diverse security threats, writes Nathan Pearce, EMEA product manager at F5


MOST IT security spending is aimed at deploying solutions that do not protect against today’s most likely, most damaging and costliest threats. It can take a massive denial-of-


service attack, data theft from SQL injection or some other sophisticated threat before an organisation realises that it needs stronger protection against diverse attacks. Security is not a product and it never has


been. You cannot buy security in a box – you can only buy and deploy solutions that address security and other operational risks, and that enable the implementation and enforcement of security policies designed to mitigate risk. Most organisations that claim to be


‘security companies’ are narrowly focused on one particular aspect of security, such as application, network or storage. A true ‘security company’ takes security


into consideration at every layer of the stack at which they touch the data, the network and the applications, regardless of what product they ultimately produce. If you focus on application security, that does not eliminate your responsibility to the other layers of the stack upon which your solution is deployed. Sure, you can stop the application-focused attack, but what about the


4 WWW.INFORMATION-AGE.COM


network-focused attack coming in ahead of it or behind it? If the network attack takes your application security solution out of commission, then who is held responsible? F5 cannot sell you security. Neither can any


other vendor – it is not something that can be bought and sold. F5 provides products, solutions and even architectural advice that enable organisations to secure data centre resources; that allow the codification and enforcement of policies regarding access and delivery of data centre resources; that provide the means by which risk can be mitigated. But it cannot sell you ‘security’ – and neither can anyone else.


F5 security solutions bring together the


network, applications, data and users under a single security strategy that protects against rapidly evolving threats. For organisations worldwide, F5 provides unified security that keeps business moving, including: • Scalable denial-of-service protection for the world’s largest ecommerce sites


• Ten times faster performance than many network firewalls


• Protection for hundreds of thousands of applications


• Secure and accelerated mobile access • Uninterrupted operations during massive, high-profile attacks.


WWW.F5.COM


Page 1  |  Page 2  |  Page 3  |  Page 4  |  Page 5  |  Page 6  |  Page 7  |  Page 8  |  Page 9  |  Page 10  |  Page 11  |  Page 12  |  Page 13  |  Page 14  |  Page 15  |  Page 16  |  Page 17  |  Page 18  |  Page 19  |  Page 20