|
|
The only way to truly secure the computer is to isolate it from non-secured networks. Organisations are increasingly finding that they lose too much by adopting this approach and that an Internet connection is becoming a commercial requirement. Initially protection was provided by careful system management and clever router configuration. However as the number of, and demand for, Internet services grew proxy servers or application gateways have been the standard means of protecting an organisation from the Internet and have remained so for the past two or three years.
Organisations are now looking beyond passively protecting themselves to see what they can do to use the Internet for competitive advantage. This has led firewall vendors to focus on authentication and encryption technology and has led to the emergence of Secure Wide Area Networks or Virtual Private Networks, and to secure transactions being routed across the Internet.
There are still significant issues that need to be addressed, the speed and reliability of traffic movements across the Internet and key management protocols for example.
The role of the firewall is developing with the changing usage of the Internet as illustrated by the emergence of Intranets and the need to protect internal in addition to external boundaries.
Firewalls and other security measures have to be bolted on because adequate security is not built in, however the long term solution, e.g. IPv6, has to be to integrate security. Encryption plays a central role in this and US Govt export regulations represent a significant obstacle to the Internet's continuing commercial development.
There will be major structural change in the firewall market over the next eighteen months. Firewall vendors are starting to co-operate and standards are emerging. Both of these factors should benefit organisations that currently struggle to choose the right product.