Subscribe / Unsubscribe Enewsletters | Login | Register

Pencil Banner

Virtualisation, security advances on tap for ADCs

Jon Gold | Jan. 3, 2014
As 2014 kicks off, two of the main issues for the growing ADC market are security and virtualization – the technology has several features that have implications for denial-of-service protection, and the trend toward SDN and network virtualisation has many people looking for software-only application delivery.

The application delivery controller has been more than a simple accelerator and load balancer for some time now, becoming an increasingly important component of enterprise network infrastructures over the past couple of years.

This growth in importance is illustrated by a recent Infonetics research study, which found that ADC revenues in the second quarter grew by 4% year over year, while WAN optimization, a related network management technology, saw an 11% decline over the same period.

As 2014 kicks off, two of the main issues for the growing ADC market are security and virtualization the technology has several features that have implications for denial-of-service protection, and the trend toward SDN and network virtualization has many people looking for software-only application delivery.

But the technology isn't going to turn into a cloudified, all-inclusive network management panacea overnight experts say there is still some way to go.

F5 Director of Technical Marketing Alan Murphy says that modern ADCs are a natural fit for the security role, particularly in light of the fact that most of today's denial-of-service attacks target the application layer to begin with.

"The network tools that protect network perimeters from security attacks are great at network-level stuff knowing what IP address it's coming from, going to, source, and then protocol," he says. "But once the attacker moves over to the application, manipulating what's going on over the protocol ... issuing a million DNS requests, for example that's going over the network, but the attack is actually against the DNS application infrastructure."

ADCs, adds F5 Senior Product Marketing Manager Lori MacVittie, are better-suited than traditional firewalls to identify and defend against this type of attack, particularly where detection and classification are concerned.

"As we continue to evolve into the next year, it really becomes more important to start analyzing the behavior of the interaction with the application, and that's something that application delivery is well-suited to do," she says.

So will 2014 be the year to ditch your enterprise firewall and entrust everything to the ADC? Not entirely. Citrix Senior Product Management Director Steve Shah acknowledges that the issue is a hot one in the ADC market.

"Right now, the ADC landscape is getting a little conflated with the whole firewall landscape," he says. "Do ADCs take on firewall responsibilities or don't they? Or do we maintain separation of responsibilities? And this is where I actually believe that [in] 2014, we're going to see further clarification of that, and I believe that separation of duties is going to win out here."

A risk is created, according to Shah, when ADC admins are required to be constantly tinkering with an appliance that's also a primary security system.

 

1  2  Next Page 

Sign up for CIO Asia eNewsletters.